CVE-2012-4559 — libssh - several

Description

Multiple double free vulnerabilities in the (1) agent_sign_data function in agent.c, (2) channel_request function in channels.c, (3) ssh_userauth_pubkey function in auth.c, (4) sftp_parse_attr_3 function in sftp.c, and (5) try_publickey_from_file function in keyfiles.c in libssh before 0.5.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

How to fix CVE-2012-4559

To remediate CVE-2012-4559, upgrade the affected package to a fixed version below.

Debian/libssh—upgrade to 0.5.3-1 or later
—upgrade to 0.4.5-3+squeeze1 or later

Is CVE-2012-4559 being exploited?

Moderate — EPSS is 5.0%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (2)

from 0, < 0.5.3-1
from 0, < 0.4.5-3+squeeze1

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2012-4559