QSearchQSearch

CVE-2025-5351

6.5 MEDIUM

A flaw was found in the key export functionality of libssh

Published: 2025-07-04 · Last updated: 2026-05-19

Severity and scoring

CVSS
6.5 MEDIUM
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE
CWE-415

Affected products

VendorProduct
libsshenterprise_linux, libssh, openshift_container_platform
redhatenterprise_linux, libssh, openshift_container_platform

Description

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additional failure occurs later in the function. This condition may result in heap corruption or application instability in low-memory scenarios, posing a risk to system reliability where key export operations are performed.

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2026-1767 A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component (5.6 MEDIUM)
  • CVE-2026-1766 A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 com... (5.6 MEDIUM)
  • CVE-2026-11793 A stack buffer overflow flaw was found in 389 Directory Server (4.9 MEDIUM)
  • CVE-2026-11790 A flaw was found in 389 Directory Server (4.9 MEDIUM)
  • CVE-2026-11789 A flaw was found in 389 Directory Server (4.9 MEDIUM)

Same CWE

  • CVE-2026-12043 Improper handling of HPACK dynamic table size updates in the AWS Common Runtime aws-c-http library might allow a remote threat actor oper... (8.8 HIGH)
  • CVE-2026-46690 unbounded_spsc is an "unbounded" extension of bounded_spsc_queue (5.8 MEDIUM)
  • CVE-2026-35188 Issue summary: A malicious server can exploit TLS OCSP stapling by delivering a crafted response through the status_request extension, tr... (5.0 MEDIUM)
  • CVE-2026-45324 Rizin is a UNIX-like reverse engineering framework and command-line toolset (3.3 LOW)
  • CVE-2026-44422 FreeRDP is a free implementation of the Remote Desktop Protocol (7.5 HIGH)