The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and oth…

In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c …

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 b…

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_RE…

An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP…

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the _libssh2_packet_requir…

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 b…

An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2…

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH packets with a…

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SFTP packets with …

In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer…

The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial …

A flaw was found in libssh2 before 1.8.1. A server could send a multiple keyboard interactive r…

The diffie_hellman_sha256 function in kex.c in libssh2 before 1.7.0 improperly truncates secret…

An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to a…

CVE-2026-55200

CVE-2026-55199

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the…