CVE-2026-0965

Summary

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service (DoS) by causing the system to try and access dangerous files, such as block devices or large system files, which can disrupt normal operations.

Affected Software

VendorProductVersion RangeStatus
Red HatRed Hat Enterprise Linux 100:0.12.0-2.el10 < *unaffected
Red HatRed Hat Enterprise Linux 90:0.10.4-18.el9 < *unaffected
Red HatRed Hat Enterprise Linux 90:0.10.4-18.el9 < *unaffected

Weaknesses

  • CWE-73: External Control of File Name or Path

Workarounds

Ensure the client and server are using only regular files as configuration.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References