๐Ÿ” CVE Alert

CVE-2026-0966

MEDIUM 6.5

Libssh: libssh: denial of service via zero-length input in ssh_get_hexa()

CVSS Score
6.5
EPSS Score
0.1%
EPSS Percentile
16th

A flaw was found in libssh. The API function `ssh_get_hexa()` is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI (Generic Security Service Application Program Interface) authentication if the server's logging verbosity is set to `SSH_LOG_PACKET (3)` or higher. Successful exploitation could lead to a self-Denial of Service of the per-connection daemon process.

CWE CWE-124
Vendor red hat
Product red hat enterprise linux 10
Published Mar 26, 2026
Last Updated May 19, 2026
Stay Ahead of the Next One

Get instant alerts for red hat red hat enterprise linux 10

Be the first to know when new medium vulnerabilities affecting red hat red hat enterprise linux 10 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected Versions

Red Hat / Red Hat Enterprise Linux 10
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Hardened Images
All versions affected
Red Hat / Red Hat Enterprise Linux 6
All versions affected
Red Hat / Red Hat Enterprise Linux 7
All versions affected
Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Hardened Images
All versions affected
Red Hat / Red Hat OpenShift Container Platform 4
All versions affected

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
access.redhat.com: https://access.redhat.com/errata/RHSA-2026:18160 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:18683 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:7067 access.redhat.com: https://access.redhat.com/security/cve/CVE-2026-0966 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2433121 libssh.org: https://www.libssh.org/2026/02/10/libssh-0-12-0-and-0-11-4-security-releases/

Credits

Red Hat would like to thank Jakub Jelen (libssh), Jun Xu, Kang Yang, and Yunhang Zhang for reporting this issue.