Amazon Linux 2023 Security Advisory: ALAS2023-2025-1264
Advisory Released Date: 2025-11-10
Advisory Updated Date: 2025-11-10
NULL Pointer Dereference vulnerability in the session ID calculation logic of the libssh library. The flaw arises from improper handling of allocation errors during cryptographic operations in the key exchange (KEX) phase. If a memory allocation fails, the resulting NULL pointer may be dereferenced, leading to a crash in both SSH clients and servers. This vulnerability can be exploited by a local attacker with limited privileges and no user interaction, potentially disrupting services that rely on libssh for secure communication.The issue affects libssh versions up to and including 0.11.2. (CVE-2025-8114)
A flaw was found in libssh's handling of key exchange (KEX) processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory during these rekey operations, which can gradually exhaust system memory. This issue can lead to crashes on the client side, particularly when using libgcrypt, which impacts application stability and availability. (CVE-2025-8277)
Affected Packages:
libssh
Issue Correction:
Run dnf update libssh --releasever 2023.9.20251110 or dnf update --advisory ALAS2023-2025-1264 --releasever 2023.9.20251110 to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation
aarch64:
libssh-debugsource-0.10.6-1.amzn2023.0.3.aarch64
libssh-debuginfo-0.10.6-1.amzn2023.0.3.aarch64
libssh-0.10.6-1.amzn2023.0.3.aarch64
libssh-devel-0.10.6-1.amzn2023.0.3.aarch64
noarch:
libssh-config-0.10.6-1.amzn2023.0.3.noarch
src:
libssh-0.10.6-1.amzn2023.0.3.src
x86_64:
libssh-debugsource-0.10.6-1.amzn2023.0.3.x86_64
libssh-debuginfo-0.10.6-1.amzn2023.0.3.x86_64
libssh-0.10.6-1.amzn2023.0.3.x86_64
libssh-devel-0.10.6-1.amzn2023.0.3.x86_64