Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2025-5351

4.2 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): NONE

created 6 months, 1 week ago

Libssh: double free vulnerability in libssh key export functions

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additional failure occurs later in the function. This condition may result in heap corruption or application instability in low-memory scenarios, posing a risk to system reliability where key export operations are performed.

References

RHBZ#2369367 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry
RHBZ#2369367 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry
RHBZ#2369367 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry
RHBZ#2369367 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry
RHBZ#2369367 issue-tracking x_refsource_REDHAT
RHBZ#2369367 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5351 x_refsource_REDHAT vdb-entry

Affected products

rhcos

libssh

<0.11.2

libssh2

Matching in nixpkgs

pkgs.libssh

SSH client library

nixos-unstable -
- nixpkgs-unstable 0.11.2

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

nixos-unstable -
- nixpkgs-unstable 1.11.1

pkgs.haskellPackages.libssh

libssh bindings

nixos-unstable -
- nixpkgs-unstable 0.1.0.0

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

nixos-unstable -
- nixpkgs-unstable 1.2.2

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

nixos-unstable -
- nixpkgs-unstable 1.2.2

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2

nixos-unstable -
- nixpkgs-unstable libssh2

Package maintainers

@svanderburg Sander van der Burg <s.vanderburg@tudelft.nl>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@geluk Johan Geluk <johan+nix@geluk.io>