Security Advisory

CVE-2025-8114

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-24 14:14:47
Last updated 2026-06-30 01:50:07
Assigner redhat
State PUBLISHED

Description

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash.