vulnerability

Red Hat: CVE-2023-1667: libssh: NULL pointer dereference during rekeying with algorithm guessing (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	May 26, 2023	Jun 28, 2023	Nov 14, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

May 26, 2023

Added

Jun 28, 2023

Modified

Nov 14, 2025

Description

A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service.

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-libsshredhat-upgrade-libssh-configredhat-upgrade-libssh-debuginforedhat-upgrade-libssh-debugsourceredhat-upgrade-libssh-devel

References

CWE-476
NVD-CVE-2023-1667
REDHAT-RHSA-2023:3839
REDHAT-RHSA-2023:6643
REDHAT-RHSA-2024:0538

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today