CVE-2025-8114

CVE-2025-8114

Name

CVE-2025-8114

Description

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vdb-entry	https://access.redhat.com/security/cve/CVE-2025-8114
issue-tracking	https://bugzilla.redhat.com/show_bug.cgi?id=2383220
secalert@redhat.com	https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d
secalert@redhat.com	https://www.libssh.org/security/advisories/CVE-2025-8114.txt
secalert@redhat.com	https://git.libssh.org/projects/libssh.git/commit/?id=65f363c9

Type

URI

vdb-entry

https://access.redhat.com/security/cve/CVE-2025-8114

issue-tracking

https://bugzilla.redhat.com/show_bug.cgi?id=2383220

secalert@redhat.com

https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d

secalert@redhat.com

https://www.libssh.org/security/advisories/CVE-2025-8114.txt

secalert@redhat.com

https://git.libssh.org/projects/libssh.git/commit/?id=65f363c9

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:libssh:libssh::::::::`	libssh	>= None	<= 0.11.2

CPE URI

Source package

Min version

Max version

cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*

libssh

>= None

<= 0.11.2

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
libssh	edge-community	0.11.3-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
libssh	edge-community	0.11.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	edge-community	0.11.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	edge-community	0.10.6-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	edge-community	0.9.6-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	edge-community	0.9.5-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	edge-community	0.9.4-r0	None	possibly vulnerable
libssh	edge-community	0.9.3-r0	None	possibly vulnerable
libssh	edge-community	0.7.6-r0	None	possibly vulnerable
libssh	3.22-community	0.11.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	3.22-community	0.11.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
libssh	3.22-community	0.10.6-r0	None	possibly vulnerable
libssh	3.22-community	0.9.6-r0	None	possibly vulnerable
libssh	3.22-community	0.9.5-r0	None	possibly vulnerable
libssh	3.22-community	0.9.4-r0	None	possibly vulnerable
libssh	3.22-community	0.9.3-r0	None	possibly vulnerable
libssh	3.22-community	0.7.6-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages