CVE-2020-1730
MEDIUMlibssh < 0.8.9 and < 0.9.4 - Denial of Service via AES-CTR Cipher Cleanup
Title source: llmDescription
A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. The server or client could crash when the connection hasn't been fully initialized and the system tries to cleanup the ciphers when closing the connection. The biggest threat from this vulnerability is system availability.
References (7)
Core 7
Core References
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VLSWHBQ3EPKGTGLQNH554Z746BJ3C554/
Third Party Advisory vendor-advisory
https://usn.ubuntu.com/4327-1/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2A7BIFKUYIYKTY7FX4BEWVC2OHS5DPOU/
Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1730
Third Party Advisory
https://security.netapp.com/advisory/ntap-20200424-0001/
Vendor Advisory
https://www.libssh.org/security/advisories/CVE-2020-1730.txt
Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html
Scores
CVSS v3
5.3
EPSS
0.0011
EPSS Percentile
28.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Details
CWE
CWE-476
Status
published
Products (8)
canonical/ubuntu_linux
18.04
canonical/ubuntu_linux
19.10
fedoraproject/fedora
31
fedoraproject/fedora
32
libssh/libssh
0.8.0 - 0.8.9
netapp/cloud_backup
oracle/mysql_workbench
< 8.0.21
redhat/enterprise_linux
8.0
Published
Apr 13, 2020
Tracked Since
Feb 18, 2026