Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
libssh Security Update: Remote Code Execution Risk
OESA-2026-1561
Summary
Libssh, a library used by some software to connect to remote servers securely, has a security update to fix multiple vulnerabilities. These vulnerabilities could allow an attacker to take control of a system or steal sensitive data. Update your software that uses libssh to the latest version to prevent these risks.
What to do
- Update libssh to version 0.9.4-15.oe2003sp4.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | libssh | <= 0.9.4-15.oe2003sp4 | 0.9.4-15.oe2003sp4 |
Original title
libssh security update
Original description
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote programs. With its Secure FTP implementation, you can play with remote files easily, without third-party programs others than libcrypto (from openssl).
Security Fix(es):
(CVE-2026-0964)
(CVE-2026-0965)
(CVE-2026-0966)
(CVE-2026-0967)
(CVE-2026-0968)
Security Fix(es):
(CVE-2026-0964)
(CVE-2026-0965)
(CVE-2026-0966)
(CVE-2026-0967)
(CVE-2026-0968)
- https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA... Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0964 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0965 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0966 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0967 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0968 Vendor Advisory
Published: 15 Mar 2026 · Updated: 15 Mar 2026 · First seen: 15 Mar 2026