CVE-2026-0964

Published: February 15, 2026Last modified: February 19, 2026

Description

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them under specific consequences. This is the same issue as in OpenSSH, tracked as CVE-2019-6111.

Severity score breakdown

Parameter	Value
Base score	6.3
Attack Vector	NETWORK
Attack complexity	LOW
Privileges required	NONE
User interaction	REQUIRED
Scope	UNCHANGED
Confidentiality	LOW
Integrity impact	LOW
Availability impact	LOW
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Status

Product	Release	Package	Status
Alpaquita Linux	23 LTS	libssh	Fixed (0.11.4-r0)
	25 LTS	libssh	Fixed (0.11.4-r0)
	Stream	libssh	Fixed (0.11.4-r0)

References

https://access.redhat.com/errata/RHSA-2026:18160
https://access.redhat.com/errata/RHSA-2026:18683
https://access.redhat.com/security/cve/CVE-2026-0964
https://bugzilla.redhat.com/show_bug.cgi?id=2436979
https://www.libssh.org/2026/02/10/libssh-0-12-0-and-0-11-4-security-releases/