You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
buffer underflow
About this tag
The buffer underflow tag on WindowsForum.com covers discussions about the CVE-2026-0966 vulnerability in libssh, specifically a buffer underflow in the ssh_get_hexa() function triggered by invalid input. This flaw can cause performance degradation and intermittent outages, classified by Microsoft as a limited availability impact. The fix was included in libssh versions 0.12.0 and 0.11.4, released on February 10, 2026. Threads under this tag provide patch guidance and explain the operational consequences for systems using libssh, helping IT professionals and security teams assess and mitigate the risk.
Performance degradation and intermittent interruption are the key operational consequences Microsoft records for CVE-2026-0966, a libssh issue caused by a buffer underflow in ssh_get_hexa() on invalid input. The vulnerability was fixed in the libssh 0.12.0 and 0.11.4 security releases published...