CVE-2012-6063

Published: 30 November 2012

Double free vulnerability in the sftp_mkdir function in sftp.c in libssh before 0.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors, a different vector than CVE-2012-4559.

Priority

Medium

Status

Package Release Status
libssh
Launchpad, Ubuntu, Debian
Upstream Needs triage