Total vulnerabilities in the database
The publickey_from_privatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a "Client: Diffie-Hellman Key Exchange Init" packet.
| Software | From | Fixed in |
|---|---|---|
| libssh / libssh | 0.5.1 | 0.5.1.x |
| libssh / libssh | 0.5.0-rc1 | 0.5.0-rc1.x |
| libssh / libssh | 0.4.7 | 0.4.7.x |
| libssh / libssh | 0.5.2 | 0.5.2.x |
| libssh / libssh | 0.5.0 | 0.5.0.x |
| libssh / libssh | 0.4.8 | 0.4.8.x |
| libssh / libssh | - | 0.5.3.x |