libssh: fix CVE-2025-5987 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Divya Chellam <divya.chellam@windriver.com>	2025-09-11 16:07:05 +0530
committer	Anuj Mittal <anuj.mittal@intel.com>	2025-09-23 09:59:05 +0800
commit	3702195a7ebb1947c8dfc9bba1196d6b42ae6253 (patch)
tree	158e0057e0b027267a1a83c2bca12e3d50a229fd /meta-python/recipes-devtools/python/python-pytest-helpers-namespace.inc
parent	71b601e3d721fd8edc0e98b627331e14f8ff7a23 (diff)
download	meta-openembedded-3702195a7ebb1947c8dfc9bba1196d6b42ae6253.tar.gz

libssh: fix CVE-2025-5987

A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes. Reference: https://security-tracker.debian.org/tracker/CVE-2025-5987 Upstream-patch: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=90b4845e0c98574bbf7bea9e97796695f064bf57 Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-pytest-helpers-namespace.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: