libssh ChaCha20 Cipher Heap Exhaustion Vulnerability with OpenSSL

Vulnerability

A vulnerability exists in libssh when the ChaCha20 cipher is used with the OpenSSL library. The issue arises if an attacker exhausts the heap space, leading to libssh potentially using a cipher context that is only partially initialized. This problem occurs because the OpenSSL error code indicating a failure is misinterpreted as a success, causing libssh to overlook the error. As a result, this vulnerability can lead to undefined behavior, such as compromising data confidentiality and integrity or causing crashes.

Impact

Exploitation of this vulnerability can result in undefined behavior, including crashes or compromised data confidentiality and integrity.

Added: Jul 7, 2025, 3:56 PM

Updated: Jul 7, 2025, 3:56 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

7.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

7.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

libssh ChaCha20 Cipher Heap Exhaustion Vulnerability with OpenSSL

Vulnerability

Impact

Affected Products

libssh

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating