Low severity3.1NVD Advisory· Published Mar 26, 2026· Updated Apr 13, 2026

CVE-2026-0968

Description

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an SSH_FXP_NAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.

Affected products

Libssh/Libssh
cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*
Range: <=0.11.3
Red Hat/Enterprise Linux2 versions
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

access.redhat.com/security/cve/CVE-2026-0968nvdThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdThird Party Advisory
www.libssh.org/2026/02/10/libssh-0-12-0-and-0-11-4-security-releases/nvdRelease Notes

News mentions

[Guest Diary] New Malware Libraries means New Signatures, (Fri, May 15th)
SANS Internet Storm Center · May 15, 2026

cvss	0.202
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000