CVE-2026-7598

Name
CVE-2026-7598
Description
A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len leads to integer overflow. The attack may be launched remotely. The name of the patch is 256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cna@vuldb.com https://github.com/libssh2/libssh2/
cna@vuldb.com https://github.com/libssh2/libssh2/commit/256d04b60d80bf1190e96b0ad1e91b2174d744b1
cna@vuldb.com https://github.com/libssh2/libssh2/pull/1858
cna@vuldb.com https://vuldb.com/submit/805564
cna@vuldb.com https://vuldb.com/vuln/360555
cna@vuldb.com https://vuldb.com/vuln/360555/cti

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:* libssh2 >= None <= 1.11.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libssh2 edge-main 1.11.1-r2 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 edge-main 1.11.1-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 edge-main 1.11.1-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 edge-main 1.11.0-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libssh2 edge-main 1.9.0-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libssh2 edge-main 1.9.0-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libssh2 edge-main 1.9.0-r0 None possibly vulnerable
libssh2 edge-main 1.8.1-r0 None possibly vulnerable
libssh2 3.23-main 1.11.1-r2 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.23-main 1.11.1-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.22-main 1.11.1-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.22-main 1.11.1-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.22-main 1.11.0-r1 None fixed
libssh2 3.22-main 1.9.0-r1 None possibly vulnerable
libssh2 3.22-main 1.9.0-r0 None possibly vulnerable
libssh2 3.22-main 1.8.1-r0 None possibly vulnerable
libssh2 3.21-main 1.11.1-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.21-main 1.11.1-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.21-main 1.11.0-r1 None fixed
libssh2 3.21-main 1.9.0-r1 None possibly vulnerable
libssh2 3.21-main 1.9.0-r0 None possibly vulnerable
libssh2 3.21-main 1.8.1-r0 None possibly vulnerable
libssh2 3.20-main 1.11.0-r3 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.20-main 1.11.0-r2 Natanael Copa <ncopa@alpinelinux.org> fixed
libssh2 3.20-main 1.11.0-r1 None fixed
libssh2 3.20-main 1.9.0-r1 None possibly vulnerable
libssh2 3.20-main 1.9.0-r0 None possibly vulnerable
libssh2 3.20-main 1.8.1-r0 None possibly vulnerable
libssh2 3.19-main 1.11.0-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libssh2 3.19-main 1.9.0-r1 None possibly vulnerable
libssh2 3.19-main 1.9.0-r0 None possibly vulnerable
libssh2 3.19-main 1.8.1-r0 None possibly vulnerable