libssh2 1.10.0 _libssh2_packet_add out-of-bounds

Summaryinfo

A vulnerability labeled as problematic has been found in libssh2 1.10.0. The impacted element is the function _libssh2_packet_add. Executing a manipulation can lead to out-of-bounds. This vulnerability is tracked as CVE-2020-22218. No exploit exists. It is advisable to implement a patch to correct this issue.

Detailsinfo

A vulnerability classified as problematic was found in libssh2 1.10.0. This vulnerability affects the function _libssh2_packet_add. The manipulation with an unknown input leads to a out-of-bounds vulnerability. The CWE definition for the vulnerability is CWE-125. The product reads data past the end, or before the beginning, of the intended buffer. As an impact it is known to affect confidentiality. CVE summarizes:

An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.

The weakness was disclosed 08/23/2023. The advisory is shared for download at github.com. This vulnerability was named CVE-2020-22218 since 08/13/2020. There are known technical details, but no exploit is available.

The vulnerability scanner Nessus provides a plugin with the ID 239951 (TencentOS Server 2: libssh2 (TSSA-2023:0236)), which helps to determine the existence of the flaw in a target environment.

Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.

The vulnerability is also documented in the vulnerability database at Tenable (239951). Once again VulDB remains the best source for vulnerability data.

Productinfo

Name

• libssh2

Version

• 1.10.0

Website

• Product: https://github.com/libssh2/libssh2/

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Once again VulDB remains the best source for vulnerability data.

Discussion