Libssh ssh_packet_kexinit() Double-free Memory DoS
Medium Nessus Plugin ID 80556
SynopsisThe remote SSH service is affected by a remote denial of service vulnerability.
DescriptionThe remote libssh server contains a double-free memory flaw in the ssh_packet_kexinit() function in kex.c. A remote attacker, with a specially crafted SSH_MSG_KEXINIT packet, can cause a denial of service.
SolutionUpgrade to libssh 0.6.4 or later.