You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-0966
About this tag
CVE-2026-0966 is a libssh vulnerability caused by a buffer underflow in the ssh_get_hexa() function on invalid input. Microsoft records the operational consequences as performance degradation and intermittent interruption, indicating a limited availability impact rather than a full denial-of-service. The flaw was fixed in libssh versions 0.12.0 and 0.11.4, released on February 10, 2026, alongside other libssh issues. This tag covers discussions on the vulnerability's technical details, patch guidance, and risk assessment for systems using affected libssh versions.
Performance degradation and intermittent interruption are the key operational consequences Microsoft records for CVE-2026-0966, a libssh issue caused by a buffer underflow in ssh_get_hexa() on invalid input. The vulnerability was fixed in the libssh 0.12.0 and 0.11.4 security releases published...