VulnerableCode Package Details - pkg:apk/alpine/libssh@0.11.2-r0?arch=aarch64&distroversion=edge&reponame=community

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-19zh-14c7-93a4	libssh: Invalid return code for chacha20 poly1305 with OpenSSL backend	CVE-2025-5987
VCID-3wqk-hes8-j3gw	libssh: Integer Overflow in libssh SFTP Server Packet Length Validation Leading to Denial of Service	CVE-2025-5449
VCID-754c-prpu-sqda	libssh: Double Free Vulnerability in libssh Key Export Functions	CVE-2025-5351
VCID-kek1-z4s4-tudn	libssh: Use of uninitialized variable in privatekey_from_file()	CVE-2025-4878
VCID-t8nv-wfbj-13e5	libssh: Write beyond bounds in binary to base64 conversion functions	CVE-2025-4877
VCID-u5ts-n3fz-nud9	libssh: Incorrect Return Code Handling in ssh_kdf() in libssh	CVE-2025-5372
VCID-wgkw-5cae-s3ej	libssh: out-of-bounds read in sftp_handle()	CVE-2025-5318

Vulnerability

Summary

Aliases

VCID-19zh-14c7-93a4

libssh: Invalid return code for chacha20 poly1305 with OpenSSL backend

CVE-2025-5987

VCID-3wqk-hes8-j3gw

libssh: Integer Overflow in libssh SFTP Server Packet Length Validation Leading to Denial of Service

CVE-2025-5449

VCID-754c-prpu-sqda

libssh: Double Free Vulnerability in libssh Key Export Functions

CVE-2025-5351

VCID-kek1-z4s4-tudn

libssh: Use of uninitialized variable in privatekey_from_file()

CVE-2025-4878

VCID-t8nv-wfbj-13e5

libssh: Write beyond bounds in binary to base64 conversion functions

CVE-2025-4877

VCID-u5ts-n3fz-nud9

libssh: Incorrect Return Code Handling in ssh_kdf() in libssh

CVE-2025-5372

VCID-wgkw-5cae-s3ej

libssh: out-of-bounds read in sftp_handle()

CVE-2025-5318

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:54:43.972162+00:00	Alpine Linux Importer	Fixing	VCID-t8nv-wfbj-13e5	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:52:48.872785+00:00	Alpine Linux Importer	Fixing	VCID-u5ts-n3fz-nud9	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:51:58.059641+00:00	Alpine Linux Importer	Fixing	VCID-kek1-z4s4-tudn	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:48:58.537496+00:00	Alpine Linux Importer	Fixing	VCID-19zh-14c7-93a4	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-01T19:29:56.203571+00:00	Alpine Linux Importer	Fixing	VCID-754c-prpu-sqda	https://secdb.alpinelinux.org/edge/community.json	38.0.0
2026-04-01T19:26:27.198523+00:00	Alpine Linux Importer	Fixing	VCID-3wqk-hes8-j3gw	https://secdb.alpinelinux.org/edge/community.json	38.0.0
2026-04-01T19:01:34.780446+00:00	Alpine Linux Importer	Fixing	VCID-wgkw-5cae-s3ej	https://secdb.alpinelinux.org/edge/community.json	38.0.0