← back
CVE-2020-16135

CVE-2020-16135

EPSS 4.1%
libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.libssh.org/rLIBSSHe631ebb3e2247dd25e9678e6827c20dc73b73238https://bugs.libssh.org/T232https://gitlab.com/libssh/libssh-mirror/-/merge_requests/120https://lists.debian.org/debian-lts-announce/2020/07/msg00034.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCIKQRKXAAB4HMWM62EPZJ4DVBHIIEG6/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JNW5GBC6JFN76VEWQXMLT5F7VCZ5AJ2E/https://security.gentoo.org/glsa/202011-05https://usn.ubuntu.com/4447-1/https://www.oracle.com/security-alerts/cpuapr2022.html