shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-04 20:30:38 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
266174a6d36687b65cf90174f06af90b8b27c65f
libssh/src
History
Francesco Rollo 266174a6d3 CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess 
Signed-off-by: Francesco Rollo <eferollo@gmail.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
(cherry picked from commit ccff22d378)
2025-08-14 11:02:39 +02:00
..
ABI
Bump version to 0.11.2
2025-06-24 10:35:39 +02:00
external
external: Update OpenSSH blowfish implementation
2024-05-21 11:33:17 +02:00
threads
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
agent.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
auth.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
base64.c
CVE-2025-4877 base64: Prevent integer overflow and potential OOB
2025-06-24 09:08:24 +02:00
bignum.c
bignum: Avoid trailing newline in log message
2023-12-05 14:45:51 +01:00
bind_config.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
bind.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
buffer.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
callbacks.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
chachapoly.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
channels.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
client.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
CMakeLists.txt
zlib: Move conditional compilation inside of the gzip.c
2025-06-23 13:13:18 +02:00
config_parser.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
config.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
connect.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
connector.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
crypto_common.c
crypto: Use stdint types and make code more readable of secure_memcmp()
2022-06-20 09:18:59 +02:00
curve25519.c
CVE-2023-48795: client side mitigation
2023-12-18 17:35:04 +01:00
dh_crypto.c
CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess
2025-08-14 11:02:39 +02:00
dh_key.c
CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess
2025-08-14 11:02:39 +02:00
dh-gex.c
dh-gex: Reformat the dhgex_server_callbacks structure
2025-06-24 10:15:43 +02:00
dh.c
CVE-2023-48795: client side mitigation
2023-12-18 17:35:04 +01:00
ecdh_crypto.c
CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess
2025-08-14 11:02:39 +02:00
ecdh_gcrypt.c
CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess
2025-08-14 11:02:39 +02:00
ecdh_mbedcrypto.c
CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess
2025-08-14 11:02:39 +02:00
ecdh.c
CVE-2023-48795: client side mitigation
2023-12-18 17:35:04 +01:00
error.c
SSH_LOG_TRACE: Recategorize loglevels
2022-10-07 09:13:19 +02:00
gcrypt_missing.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
getpass.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
getrandom_crypto.c
getrandom_crypto.c: Add function to the documentation
2022-09-29 11:12:55 +02:00
getrandom_gcrypt.c
Build external override library with all symbols
2022-07-19 15:21:50 +02:00
getrandom_mbedcrypto.c
Build external override library with all symbols
2022-07-19 15:21:50 +02:00
gssapi.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
gzip.c
zlib: Move conditional compilation inside of the gzip.c
2025-06-23 13:13:18 +02:00
init.c
Add missing includes for fprintf()
2022-11-23 15:29:29 +01:00
kdf.c
CVE-2023-6918: kdf: Detect context init failures
2023-12-18 17:35:04 +01:00
kex.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
known_hosts.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
knownhosts.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
legacy.c
CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference
2025-06-24 09:28:09 +02:00
libcrypto-compat.h
Move old DSA and RSA structs into EVP_PKEY
2022-12-20 10:07:27 +01:00
libcrypto.c
Cleanup the loaded pkcs11 provider
2025-08-08 11:28:13 +02:00
libgcrypt.c
Detect blowfish in mbedtls and skip it if not found
2024-05-16 09:56:38 +02:00
libmbedcrypto.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
libssh.map
API: Bump SO version to 4.10.0
2024-07-31 15:00:24 +02:00
log.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
match.c
match: Workaround matching on systems without IPv6
2024-08-02 11:20:54 +02:00
mbedcrypto_missing.c
crypto: Add ssh_crypto_free().
2023-08-25 15:13:31 +02:00
mbedcrypto-compat.h
Fix mbedTLS issues caused by v3 API changes
2022-07-04 08:52:18 +02:00
md_crypto.c
CVE-2023-6918: Systematically check return values when calculating digests
2023-12-18 17:35:04 +01:00
md_gcrypt.c
CVE-2023-6918: Systematically check return values when calculating digests
2023-12-18 17:35:04 +01:00
md_mbedcrypto.c
CVE-2023-6918: Systematically check return values when calculating digests
2023-12-18 17:35:04 +01:00
messages.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
misc.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
options.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
packet_cb.c
packet: Implement logging of SSH2_MSG_DEBUG message
2025-06-23 13:10:09 +02:00
packet_crypt.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
packet.c
CVE-2025-8277: packet: Adjust packet filter to work when DH-GEX is guessed wrongly
2025-08-14 11:02:39 +02:00
pcap.c
pcap: Reformat
2023-07-11 17:45:31 +02:00
pki_container_openssh.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
pki_crypto.c
pki: Make sure the buffer is zeroized too
2025-08-08 13:49:26 +02:00
pki_ed25519_common.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
pki_ed25519.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
pki_gcrypt.c
pki: Make sure the buffer is zeroized too
2025-08-08 13:49:26 +02:00
pki_mbedcrypto.c
mbedtls: Avoid one more memory leak
2025-08-08 13:49:35 +02:00
pki.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
poll.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
scp.c
fix: sftp_packet_read stuck in an infinite loop in blocking mode
2024-07-01 13:22:35 +00:00
server.c
Fix ssh_handle_key_exchange() timeout
2025-08-08 11:24:28 +02:00
session.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
sftp_aio.c
sftp_aio.c, sftp.h: Add capping to sftp aio write API
2024-01-15 10:47:59 +01:00
sftp_common.c
sftp: Do not fail if the status message does not contain error message
2025-06-23 13:26:47 +02:00
sftp.c
CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch
2025-06-24 09:27:52 +02:00
sftpserver.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
socket.c
socket: Check return value to avoid NULL deref
2024-07-18 21:34:52 +02:00
string.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00
threads.c
threads.c: Remove dot from documentation group definition
2022-10-04 10:35:02 +02:00
token.c
CVE-2023-1667:token: Add missing whitespace
2023-05-04 11:51:17 +02:00
ttyopts.c
ttyopts: Adjust the default TTY modes to be sane
2024-08-29 15:07:00 +02:00
wrapper.c
CVE-2025-4878 Initialize pointers where possible
2025-06-24 09:27:52 +02:00