libssh: fix CVE-2025-4878 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Rajeshkumar Ramasamy <rajeshkumar.ramasamy@windriver.com>	2025-11-11 12:25:46 +0530
committer	Gyorgy Sarvari <skandigraun@gmail.com>	2025-11-11 08:50:42 +0100
commit	acd365628a6c277fced03d64e6523769dc2461b9 (patch)
tree	c95bbddf48c031be75e428d33114f168593e6a49 /meta-python/recipes-devtools/python/python-matplotlib
parent	5f9ee37d4b9d0d1862bf2a0917afea3309c3f4ae (diff)
download	meta-openembedded-acd365628a6c277fced03d64e6523769dc2461b9.tar.gz

libssh: fix CVE-2025-4878

A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekey_from_file() function. This flaw can be triggered if the file specified by the filename doesn't exist and may lead to possible signing failures or heap corruption. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-4878 Upstream-patch: https://git.libssh.org/projects/libssh.git/commit/?id=697650caa97eaf7623924c75f9fcfec6dd423cd1 https://git.libssh.org/projects/libssh.git/commit/?id=b35ee876adc92a208d47194772e99f9c71e0bedb Signed-off-by: Rajeshkumar Ramasamy <rajeshkumar.ramasamy@windriver.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-matplotlib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: