What is the severity of CVE-2023-6918?

CVE-2023-6918 has a high severity rating due to potential denial of service risks from unhandled return values.

How do I fix CVE-2023-6918?

To fix CVE-2023-6918, update libssh to the latest versions specifically 0.9.8-0+deb11u1, 0.10.6-0+deb12u1, or 0.11.1-1.

What software is affected by CVE-2023-6918?

CVE-2023-6918 affects libssh versions below 0.10.6, various IBM MQ Operator releases, and specific versions of Red Hat and Debian distributions.

What can happen if CVE-2023-6918 is exploited?

Exploitation of CVE-2023-6918 can lead to low memory situations, program crashes, and potential application downtime.

Is my version of libssh vulnerable to CVE-2023-6918?

If you are running libssh versions prior to 0.10.6 or within the affected ranges listed, your version is vulnerable to CVE-2023-6918.

Vulnerability/
CVE-2023-6918

medium

5.3

CWE

252

EPSS

0.060%

18/12/2023

15/2/2025

CVE-2023-6918: Libssh: missing checks for return values for digests

First published: Mon Dec 18 2023(Updated: )

A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The return values from these were not properly checked, which could cause low-memory situations failures, NULL dereferences, crashes, or usage of the uninitialized memory as an input for the KDF. In this case, non-matching keys will result in decryption/integrity failures, terminating the connection.

Credit: secalert@redhat.com secalert@redhat.com

Affected Software	Affected Version	How to fix
debian/libssh		0.9.8-0+deb11u1 0.10.6-0+deb12u1 0.11.1-1
redhat/libssh	<0.9.8	0.9.8
redhat/libssh	<0.10.6	0.10.6
Ubuntu	>=0.9.0<0.9.8
Ubuntu	>=0.10.0<0.10.6
Fedora	=38
Fedora	=39
Red Hat Enterprise Linux	=8.0
Red Hat Enterprise Linux	=9.0
IBM MQ	<=CD: v3.0.0, v3.0.1, v3.1.0 - 3.1.3 LTS: v2.0.0 - 2.0.22 Other Release: v2.4.0 - v2.4.8, v2.3.0 - 2.3.3, v2.2.0 - v2.2.2
IBM MQ Advanced	<=CD: 9.3.4.0-r1, 9.3.4.1-r1,9.3.5.0-r1,9.3.5.0-r2,9.3.5.1-r1, 9.3.5.1-r2LTS: 9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus, 9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1, 9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.0.10-r1, 9.3.0.10-r2, 9.3.0.11-r1,9.3.0.11-r2, 9.3.0.15-r1, 9.3.0.16-r1, 9.3.0.16-r2, 9.3.0.17-r1, 9.3.0.17-r2 Other Release: 9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus, 9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1, 9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.1.0-r1, 9.3.1.0-r2, 9.3.1.0-r3, 9.3.1.1-r1, 9.3.2.0-r1, 9.3.2.0-r2, 9.3.2.1-r1, 9.3.2.1-r2, 9.3.3.0-r1, 9.3.3.0-r2, 9.3.3.1-r1, 9.3.3.1-r2, 9.3.3.2-r1, 9.3.3.2-r2, 9.3.3.2-r3, ,9.3.3.3-r1, 9.3.3.3-r2
libssh	>=0.9.0<0.9.8
libssh	>=0.10.0<0.10.6

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-7157667

Frequently Asked Questions

What is the severity of CVE-2023-6918?
CVE-2023-6918 has a high severity rating due to potential denial of service risks from unhandled return values.
How do I fix CVE-2023-6918?
To fix CVE-2023-6918, update libssh to the latest versions specifically 0.9.8-0+deb11u1, 0.10.6-0+deb12u1, or 0.11.1-1.
What software is affected by CVE-2023-6918?
CVE-2023-6918 affects libssh versions below 0.10.6, various IBM MQ Operator releases, and specific versions of Red Hat and Debian distributions.
What can happen if CVE-2023-6918 is exploited?
Exploitation of CVE-2023-6918 can lead to low memory situations, program crashes, and potential application downtime.
Is my version of libssh vulnerable to CVE-2023-6918?
If you are running libssh versions prior to 0.10.6 or within the affected ranges listed, your version is vulnerable to CVE-2023-6918.

agent/type
agent/first-publish-date
agent/weakness
agent/title
agent/author
collector/epss-latest
source/FIRST
agent/epss
agent/remedy
collector/launchpad-cve
source/Launchpad
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
collector/usn-cve
source/Ubuntu
agent/trending
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-6918
agent/severity
agent/source
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/event
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/ibm-support
source/IBM
agent/tags
agent/softwarecombine
collector/nvd-api
package-manager/debian
package-manager/redhat
vendor/libssh
canonical/ubuntu
version/ubuntu/0.9.0
version/ubuntu/0.10.0
vendor/fedoraproject
canonical/fedora
version/fedora/38
version/fedora/39
vendor/redhat
canonical/red hat enterprise linux
version/red hat enterprise linux/8.0
version/red hat enterprise linux/9.0
vendor/ibm
canonical/ibm mq
version/ibm mq/cd: v3.0.0, v3.0.1, v3.1.0 - 3.1.3 lts: v2.0.0 - 2.0.22 other release: v2.4.0 - v2.4.8, v2.3.0 - 2.3.3, v2.2.0 - v2.2.2
canonical/ibm mq advanced
version/ibm mq advanced/cd: 9.3.4.0-r1, 9.3.4.1-r1,9.3.5.0-r1,9.3.5.0-r2,9.3.5.1-r1, 9.3.5.1-r2lts: 9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus, 9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1, 9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.0.10-r1, 9.3.0.10-r2, 9.3.0.11-r1,9.3.0.11-r2, 9.3.0.15-r1, 9.3.0.16-r1, 9.3.0.16-r2, 9.3.0.17-r1, 9.3.0.17-r2 other release: 9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus, 9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1, 9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.1.0-r1, 9.3.1.0-r2, 9.3.1.0-r3, 9.3.1.1-r1, 9.3.2.0-r1, 9.3.2.0-r2, 9.3.2.1-r1, 9.3.2.1-r2, 9.3.3.0-r1, 9.3.3.0-r2, 9.3.3.1-r1, 9.3.3.1-r2, 9.3.3.2-r1, 9.3.3.2-r2, 9.3.3.2-r3, ,9.3.3.3-r1, 9.3.3.3-r2
canonical/libssh
version/libssh/0.9.0
version/libssh/0.10.0

CVE-2023-6918: Libssh: missing checks for return values for digests

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2023-6918?

How do I fix CVE-2023-6918?

What software is affected by CVE-2023-6918?

What can happen if CVE-2023-6918 is exploited?

Is my version of libssh vulnerable to CVE-2023-6918?

Company

Resources

Contact