CVE-2014-8132

EPSS 2.8%

發布日:2014/12/29修改日:2026/4/28

描述

Double free vulnerability in the ssh_packet_kexinit function in kex.c in libssh 0.5.x and 0.6.x before 0.6.4 allows remote attackers to cause a denial of service via a crafted kexinit packet.

受影響套件(1)

Debian/libsshfrom 0, < 0.6.3-4

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8132