CVE-2026-0965 PUBLISHED

Libssh: libssh: denial of service via improper configuration file handling

Assigner: redhat
Reserved: 14.01.2026 Published: 26.03.2026 Updated: 26.03.2026

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service (DoS) by causing the system to try and access dangerous files, such as block devices or large system files, which can disrupt normal operations.

Metrics

CVSS 3.0

CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CVSS Score: 3.3

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	Low	Integrity Impact	None
User Interaction	None	Availability Impact	Low

CVSS 3.0

Product Status

Vendor	Red Hat
Product	Red Hat Enterprise Linux 10
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 6
Versions	Default: unaffected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 7
Versions	Default: unaffected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 8
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 9
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat OpenShift Container Platform 4
Versions	Default: affected

Workarounds

Ensure the client and server are using only regular files as configuration.

Credits

Red Hat would like to thank Jakub Jelen (libssh) and Kang Yang for reporting this issue.

References

Problem Types

External Control of File Name or Path CWE