Release


libssh 0.7.0

The libssh team is happy to announce version 0.7.0 of the SSH library. The big feature of this release is support of ed25519 keys which OpenSSH supports since version 6.5. We also improved a lot of the internal code and fixed a long list of bugs. Some of the features got backported to the libssh 0.6 release. Thanks to all […]


libssh 0.6.5 (Security and bugfix release)

This is an important SECURITY and maintenance release in order to address CVE-2015-3146 – Possible double free on a dangling pointer with crafted kexinit packet. libssh versions 0.5.1 and above have a logical error in the handling of a SSH_MSG_NEWKEYS and SSH_MSG_KEXDH_REPLY package. A detected error did not set the session into the error state correctly and further processed the […]


libssh 0.6.4 (Security and bugfix release)

This is an important SECURITY and maintenance release in order to address CVE-2014-8132 – Double free on dangling pointers in initial key exchange packet. libssh versions 0.5.1 and above could leave dangling pointers in the session crypto structures. It is possible to send a malicious kexinit package to eventually cause a server to do a double-free before this fix. This […]


libssh 0.6.1

We are happy to announce the first bugfix version of libssh 0.6. This version also provides some new functions and uses the openssh known_hosts heuristic to negotiate the cipher for key exchange. Thanks to all contributors! If you are new to libssh you should read our tutorial how to get started. Please join our mailing list or visit our irc […]