Fluid Attacks Database

Description

A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resulting in libssh not properly detecting the error returned by the OpenSSL library. This issue can lead to undefined behavior, including compromised data confidentiality and integrity or crashes.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	libssh	=0.10.5-2 \|\| =0.10.5-3 \|\| =0.10.5-3+hurd.1 \|\| =0.10.6-0+deb12u1 \|\| >=0 <0.10.6-0+deb12u2	0.10.6-0+deb12u2
debian 13	libssh	>=0 <0.11.2-1	0.11.2-1
debian 14	libssh	>=0 <0.11.2-1	0.11.2-1
rpm rhel6	libssh2	-	-
rpm rhel9.4	libssh	<0:0.10.4-13.el9_4.2	0:0.10.4-13.el9_4.2
rpm rhel7	libssh2	-	-
rpm rhel9.6	libssh	<0:0.10.4-15.el9_6.1	0:0.10.4-15.el9_6.1
rpm rhel10	libssh	<0:0.11.1-5.el10_1	0:0.11.1-5.el10_1
rpm rhel10.0	libssh	<0:0.11.1-4.el10_0.1	0:0.11.1-4.el10_0.1
rpm rhel9	libssh	<0:0.10.4-17.el9_7	0:0.10.4-17.el9_7

Aliases

1. CVE-2025-59872. NVD-2025-59873. OSV-DEBIAN-2025-59874. OSV-2025-59875. SECURITY-TRACKER-CVE-2025-5987

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.