===========================================================
== Subject:     Missing checks for return values for digests
==
== CVE ID#:     CVE-2023-6918
==
== Versions:    < 0.10.6
==
== Summary:     Missing return value checks could cause crashes
==              or usage of uninitialized memory
==
===========================================================

===========
Description
===========

The libssh implements abstract layer for message digest (MD)
operations implemented by different supported crypto backends.
The return values from these were not properly checked,
which could cause in low-memory situations failures, NULL
dereferences, crashes or at worst usage of the uninitialized
memory as an input for the KDF. In this case, non-matching
keys will result in decryption/integrity failures, terminating
connection.

==================
Patch Availability
==================

Patches addressing the issues have been posted to:
https://www.libssh.org/security/
Additionally, libssh 0.10.6 and 0.9.8 have been issued
as security releases to correct the defect.  SSH administrators are
advised to upgrade to these releases or apply the patch as soon
as possible.

==================
CVSSv3 calculation
==================
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L (3.7)

==========
Workaround
==========
none

=======
Credits
=======

Originally reported by Jack Weinstein `<mike.code.bb.h@gmail.com>`.
Patches provided by Jakub Jelen of the libssh team.

==========================================================
== The libssh team
==========================================================