Unrated severityNVD Advisory· Published Dec 18, 2023· Updated Nov 21, 2025
Libssh: missing checks for return values for digests
CVE-2023-6918
Description
A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The return values from these were not properly checked, which could cause low-memory situations failures, NULL dereferences, crashes, or usage of the uninitialized memory as an input for the KDF. In this case, non-matching keys will result in decryption/integrity failures, terminating the connection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
45cpe:/o:redhat:enterprise_linux:6+ 3 more
- cpe:/o:redhat:enterprise_linux:6
- cpe:/o:redhat:enterprise_linux:7
- cpe:/o:redhat:enterprise_linux:8::baseosrange: 0:0.9.6-14.el8
- cpe:/o:redhat:enterprise_linux:9::baseosrange: 0:0.10.4-13.el9
- osv-coords40 versionspkg:apk/chainguard/libsshpkg:apk/chainguard/libssh2pkg:apk/chainguard/libssh2-devpkg:apk/chainguard/libssh2-docpkg:apk/chainguard/libssh-devpkg:apk/wolfi/libsshpkg:apk/wolfi/libssh2pkg:apk/wolfi/libssh2-devpkg:apk/wolfi/libssh2-docpkg:apk/wolfi/libssh-devpkg:rpm/almalinux/libsshpkg:rpm/almalinux/libssh-configpkg:rpm/almalinux/libssh-develpkg:rpm/opensuse/libssh&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/libssh&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/opensuse/libssh&distro=openSUSE%20Leap%20Micro%205.4pkg:rpm/opensuse/libssh&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libssh&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP4pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/libssh&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/libssh&distro=SUSE%20Manager%20Server%204.3
< 0.10.6-r0+ 39 more
- (no CPE)range: < 0.10.6-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0.10.6-r0
- (no CPE)range: < 0.10.6-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0.10.6-r0
- (no CPE)range: < 0.10.4-13.el9
- (no CPE)range: < 0.10.4-13.el9
- (no CPE)range: < 0.10.4-13.el9
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.10.6-1.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-3.12.2
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-3.12.2
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150200.13.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-3.12.2
- (no CPE)range: < 0.9.8-150400.3.3.1
- (no CPE)range: < 0.9.8-150400.3.3.1
Patches
Vulnerability mechanics
References
6- access.redhat.com/errata/RHSA-2024:2504mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2024:3233mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/security/cve/CVE-2023-6918mitrevdb-entryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT
- www.libssh.org/2023/12/18/libssh-0-10-6-and-libssh-0-9-8-security-releases/mitre
- www.libssh.org/security/advisories/CVE-2023-6918.txtmitre
News mentions
0No linked articles in our index yet.