Vulnerability Description
A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. The server or client could crash when the connection hasn't been fully initialized and the system tries to cleanup the ciphers when closing the connection. The biggest threat from this vulnerability is system availability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Libssh | Libssh | >= 0.8.0, < 0.8.9 |
| Netapp | Cloud Backup | - |
| Canonical | Ubuntu Linux | 18.04 |
| Fedoraproject | Fedora | 31 |
| Redhat | Enterprise Linux | 8.0 |
| Oracle | Mysql Workbench | <= 8.0.21 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1730Issue TrackingThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.netapp.com/advisory/ntap-20200424-0001/Third Party Advisory
- https://usn.ubuntu.com/4327-1/Third Party Advisory
- https://www.libssh.org/security/advisories/CVE-2020-1730.txtVendor Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlPatchThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1730Issue TrackingThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.netapp.com/advisory/ntap-20200424-0001/Third Party Advisory
- https://usn.ubuntu.com/4327-1/Third Party Advisory
- https://www.libssh.org/security/advisories/CVE-2020-1730.txtVendor Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlPatchThird Party Advisory
FAQ
What is CVE-2020-1730?
CVE-2020-1730 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) ciphers. The server or client could crash when the connection hasn't been fu...
How severe is CVE-2020-1730?
CVE-2020-1730 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1730?
Check the references section above for vendor advisories and patch information. Affected products include: Libssh Libssh, Netapp Cloud Backup, Canonical Ubuntu Linux, Fedoraproject Fedora, Redhat Enterprise Linux.