CVE-2020-16135 — NULL Pointer Dereference in Libssh

CWE-476 — NULL Pointer Dereference10 documents9 sources

Severity

5.9MEDIUMNVD

EPSS

1.8%

top 17.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libssh Canonical Ubuntu Linux Debian Linux +2 more

Timeline

PublishedJul 29

Latest updateMay 24

Description

libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages3 packages

▶Debianlibssh/libssh< 0.9.5-1+3

▶NVDlibssh/libssh0.9.4

▶NVDoracle/communications_cloud_native_core_policy1.15.0

Also affects: Debian Linux 9.0, Fedora 32, 33, Ubuntu Linux 16.04, 18.04, 20.04

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-9j7p-fvvp-cp57: libssh 0↗2022-05-24

▶

OSV

CVE-2020-16135: libssh 0↗2020-07-29

▶

CVEList

CVE-2020-16135: libssh 0↗2020-07-29

▶

📋Vendor Advisories

Oracle

Oracle Oracle Communications Risk Matrix: Policy (libssh) — CVE-2020-16135↗2022-04-15

▶

Ubuntu

libssh vulnerability↗2020-08-04

▶

Red Hat

libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL↗2020-07-30

▶

Debian

CVE-2020-16135: libssh - libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new re...↗2020

▶

💬Community

Bugzilla

CVE-2020-16135 libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL↗2020-07-31

▶

Bugzilla

CVE-2020-16135 libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL [fedora-all]↗2020-07-31

▶