登录
注册
开源
企业版
高校版
搜索
帮助中心
使用条款
关于我们
开源
企业版
高校版
私有云
模力方舟
AI 队友
登录
注册
代码拉取完成,页面将自动刷新
捐赠
捐赠前请先登录
取消
前往登录
扫描微信二维码支付
取消
支付完成
支付提示
将跳转至支付宝完成支付
确定
取消
Watch
不关注
关注所有动态
仅关注版本发行动态
关注但不提醒动态
1
Star
0
Fork
0
Gitee 极速下载
/
gitlab-libssh-mirror
代码
Wiki
统计
流水线
服务
JavaDoc
PHPDoc
质量分析
Jenkins for Gitee
腾讯云托管
腾讯云 Serverless
悬镜安全
阿里云 SAE
Codeblitz
SBOM
我知道了,不再自动展开
标签
标签名
描述
提交信息
操作
libssh-0.11.4
version 0.11.4 * Security: * CVE-2025-14821: libssh loads configuration files from the C:\etc directory on Windows * CVE-2026-0964: SCP Protocol Path Traversal in ssh_scp_pull_request() * CVE-2026-0965: Possible Denial of Service when parsing unexpected configuration files * CVE-2026-0966: Buffer underflow in ssh_get_hexa() on invalid input * CVE-2026-0967: Specially crafted patterns could cause DoS * CVE-2026-0968: OOB Read in sftp_parse_longname() * libssh-2026-sftp-extensions: Read buffer overrun when handling SFTP extensions * Stability and compatibility improvements of ProxyJump
ca9c055
2026-02-06 17:11
下载
libssh-0.12.0
version 0.12.0 * Deprecations and removals: * Bumped minimal RSA key size to 1024 bits * New functionality: * Add support for hybrid key exchange mechanisms using Quantum Resistant cryptography for all backends. These are now preferred: * sntrup761x25519-sha512, sntrup761x25519-sha512@openssh.com * mlkem768nistp256-sha256 * mlkem768x25519-sha256 * mlkem1024nistp384-sha384 (only OpenSSL 3.5+ and libgcrypt) * New cmake option WITH_HERMETIC_USR * Added support for Ed25519 keys through PKCS#11 * Support for host-bound public key authentication (publickey-hostbound-v00@openssh.com) * Use curve25519 implementation from mbedTLS and libgcrypt * New functions for signing arbitrary data (commits) with SSH keys * sshsig_sign() * sshsig_verify() * Support for FIDO/U2F keys (internal implementation using libfido2) * Compatible with OpenSSH: should work out of the box * Extensible with callbacks * Add support for GSSAPI Key Exchange (RFC 4462, RFC 8732) * Add support for new configuration options (client and server): * RequiredRsaSize * AddressFamily (client) * GSSAPIKeyExchange * GSSAPIKexAlgorithms * New option to get list of configured identities (SSH_OPTIONS_NEXT_IDENTITY) * More OpenSSH compatible percent expansion characters * Add new server auth_kbdint_function() callback * New PKI Context structure for key operations * Stability and compatibility improvements of ProxyJump * SFTP * Prevent failures when SFTP status message does not contain error message * Fix possible timeouts while waiting for SFTP messages * Support for users-groups-by-id@openssh.com extension in client * Support for SSH_FXF_TRUNC in server
5031388
2026-01-09 04:37
下载
libssh-0.11.3
libssh-0.11.3 * Security: * CVE-2025-8114: Fix NULL pointer dereference after allocation failure * CVE-2025-8277: Fix memory leak of ephemeral key pair during repeated wrong KEX * Potential UAF when send() fails during key exchange * Fix possible timeout during KEX if client sends authentication too early (#311) * Cleanup OpenSSL PKCS#11 provider when loaded * Zeroize buffers containing private key blobs during export
301d0e1
2025-08-14 16:49
下载
libssh-0.11.2
libssh-0.11.2 * Security: * CVE-2025-4877 - Write beyond bounds in binary to base64 conversion * CVE-2025-4878 - Use of uninitialized variable in privatekey_from_file() * CVE-2025-5318 - Likely read beyond bounds in sftp server handle management * CVE-2025-5351 - Double free in functions exporting keys * CVE-2025-5372 - ssh_kdf() returns a success code on certain failures * CVE-2025-5449 - Likely read beyond bounds in sftp server message decoding * CVE-2025-5987 - Invalid return code for chacha20 poly1305 with OpenSSL * Compatibility * Fixed compatibility with CPM.cmake * Compatibility with OpenSSH 10.0 * Tests compatibility with new Dropbear releases * Removed p11-kit remoting from the pkcs11 testsuite * Bugfixes * Implement missing packet filter for DH GEX * Properly process the SSH2_MSG_DEBUG message * Allow escaping quotes in quoted arguments to ssh configuration * Do not fail with unknown match keywords in ssh configuration * Process packets before selecting signature algorithm during authentication * Do not fail hard when the SFTP status message is not sent by noncompliant servers
dff6c08
2025-06-24 15:48
下载
libssh-0.11.1
libssh-0.11.1 * Fixed default TTY modes that are set when stdin is not connected to tty (#270) * Fixed zlib cleanup procedure, which could crash on i386 * Various test fixes improving their stability * Fixed cygwin build
854795c
2024-08-29 21:19
下载
libssh-0.11.0
libssh-0.11.0 * Deprecations and Removals: * Dropped support for DSA * Deprecated Blowfish cipher (will be removed in next release) * Deprecated SSH_BIND_OPTIONS_{RSA,ECDSA}KEY in favor of generic HOSTKEY * Removed the usage of deprecated OpenSSL APIs (Note: Minimum supported OpenSSL version is 1.1.1) * Disabled preauth compression (zlib) by default * Support for pkcs#11 engines are deprecated, pkcs11-provider is used instead * Deprecation of old async SFTP API * libgcrypt cryptographic backend is deprecated * Deprecation of knownhosts hashing * SFTP Improvements: * Added support for async SFTP IO * Added support for sftp_limits() and applied capping to SFTP read/write operations accordingly * Added sftp_home_directory() API support for sftp extension "home-directory" * Added sftp_lsetstat() API for lsetstat extensions * Added sftp_expand_path() to canonicalize path using expand-path@openssh.com extension * Implemented stat and realpath in sftpserver * Added sftp_readlink() API to support hardlink@openssh.com * New extensible callback based SFTP server * Introduced the posix-rename@openssh.com extension * New functions and features: * Added support for PKCS #11 provider for OpenSSL 3.0 * Added testing for GSSAPI Authentication * Implemented proxy jump using libssh * Recategorized loglevels to show fatal errors and alignment with OpenSSH log levels * Added ssh_channel_request_pty_size_modes() API to set terminal modes for PTYs * Added function to check username syntax * Added support to check all keys in authorized_keys instead of one in example server implementation * Handled hostkey similar to OpenSSH * Added ssh_session_socket_close() API in order to not close socket passed through options on error conditions * Added option SSH_BIND_OPTIONS_IMPORT_KEY_STR to read user-supplied key string in ssh_bind_options_set() * Improved log handling around ssh_set_callbacks * Added ssh_set_error_invalid in ssh_options_set() * Prevented signature blob to start with 1 bit in libgcrypt * Added support to unbreak key comparison of Ed25519 keys imported from PEM or OpenSSH container * Added support to calculate missing CRT parameters when building RSA key * Added ssh_pki_export_privkey_base64_format() and ssh_pki_export_privkey_file_format() to support exporting keys in different formats (PEM, OpenSSH) * Added support to compare certificates and handle automatic certificate authentication * Added support to make compile-commands generation conditional * Built fuzzers for normal testing * Avoided passing other events to callbacks when called recursively * Added control master and path options * Refactored channel_rcv_data, check for errors and report more useful errors * Added support to connect to other host addresses than just the first one * Terminated the server properly when the MaxAuthTries is reached * Added support for no-more-sessions@openssh.com request in both client and server * Added callback to support forwarded-tcpip requests * Bumped minimal CMake version to 3.12 * Added support for MBedTLS 3.6.x * Added support for +,-,^ modifiers in front of algorithm lists in options * Added callbacks for channel open response, and channel request response * Replaced chroot() from chroot_wrapper internal library with chroot() from priv_wrapper package * Added a placeholder for non-expanded identities * Improved handling of channel transfer window sizes
894e07a
2024-06-19 20:18
下载
libssh-0.9.8
libssh-0.9.8 * Fix CVE-2023-6004: Command injection using proxycommand * Fix CVE-2023-48795: Potential downgrade attack using strict kex * Fix CVE-2023-6918: Missing checks for return values of MD functions * Allow @ in usernames when parsing from URI composes
d18bd23
2023-12-15 23:28
下载
libssh-0.10.6
libssh-0.10.6 * Fix CVE-2023-6004: Command injection using proxycommand * Fix CVE-2023-48795: Potential downgrade attack using strict kex * Fix CVE-2023-6918: Missing checks for return values of MD functions * Fix ssh_send_issue_banner() for CMD(PowerShell) * Avoid passing other events to callbacks when poll is called recursively (#202) * Allow @ in usernames when parsing from URI composes
10e09e2
2023-12-15 23:28
下载
libssh-0.9.7
libssh-0.9.7 * Fix CVE-2023-1667: a NULL dereference during rekeying with algorithm guessing * Fix CVE-2023-2283: a possible authorization bypass in pki_verify_data_signature under low-memory conditions. * Fix several memory leaks in GSSAPI handling code * Build and test related backports
70fef93
2023-04-28 17:47
下载
libssh-0.10.5
libssh-0.10.5 * Fix CVE-2023-1667: a NULL dereference during rekeying with algorithm guessing * Fix CVE-2023-2283: a possible authorization bypass in pki_verify_data_signature under low-memory conditions. * Fix several memory leaks in GSSAPI handling code * Escape braces in ProxyCommand created from ProxyJump options for zsh compatibility. * Fix pkg-config path relocation for MinGW * Improve doxygen documentation * Fix build with cygwin due to the glob support * Do not enqueue outgoing packets after sending SSH2_MSG_NEWKEYS * Add support for SSH_SUPPRESS_DEPRECATED * Avoid functions declarations without prototype to build with clang 15 * Fix spelling issues * Avoid expanding KnownHosts, ProxyCommands and IdentityFiles repetitively * Add support sk-* keys through configuration * Improve checking for Argp library * Log information about received extensions * Correctly handle rekey with delayed compression * Move the EC keys handling to OpenSSL 3.0 API * Record peer disconnect message * Avoid deadlock when write buffering occurs and we call poll recursively to flush the output buffer * Disable preauthentication compression by default * Add CentOS 8 Stream / OpenSSL 1.1.1 to CI * Add accidentally removed default compile flags * Solve incorrect parsing of ProxyCommand option
479eca1
2023-03-20 20:15
下载
libssh-0.10.4
libssh-0.10.4 * Fixed issues with KDF on big endian
e832281
2022-09-07 21:30
下载
libssh-0.10.3
libssh-0.10.3 * Fixed possible infinite loop in known hosts checking
783f2b9
2022-09-05 20:27
下载
libssh-0.10.2
libssh-0.10.2 * Fixed tilde expansion when handling include directives * Fixed building the shared torture library * Made rekey test more robust (fixes running on i586 build systems e.g koji)
ddea657
2022-09-02 16:00
下载
libssh-0.10.0
libssh-0.10.0 * Added support for OpenSSL 3.0 * Added support for mbedTLS 3 * Added support for Smart Cards (through openssl pkcs11 engine) * Added support for chacha20-poly1305@openssh.com with libgcrypt * Added support ed25519 keys in PEM files * Added support for sk-ecdsa and sk-ed25519 (server side) * Added support for limiting RSA key sizes and not accepting small one by default * Added support for ssh-agent on Windows * Added ssh_userauth_publickey_auto_get_current_identity() API * Added ssh_vlog() API * Added ssh_send_issue_banner() API * Added ssh_session_set_disconnect_message() API * Added new configuration options: + IdentityAgent + ModuliFile * Provided X11 client example * Disabled DSA support at build time by default (will be removed in the next release) * Deprecated the SCP API! * Deprecated old pubkey, privatekey API * Avoided some needless large stack buffers to minimize memory footprint * Removed support for OpenSSL < 1.0.1 * Fixed parsing username@host in login name * Free global init mutex in the destructor on Windows * Fixed PEM parsing in mbedtls to support both legacy and new PKCS8 formats
7f6b3fa
2022-08-26 19:07
下载
libssh-0.9.6
libssh-0.9.6 * CVE-2021-3634: Fix possible heap-buffer overflow when rekeying with different key exchange mechanism * Fix several memory leaks on error paths * Reset pending_call_state on disconnect * Fix handshake bug with AEAD ciphers and no HMAC overlap * Use OPENSSL_CRYPTO_LIBRARIES in CMake * Ignore request success and failure message if they are not expected * Support more identity files in configuration * Avoid setting compiler flags directly in CMake * Support build directories with special characters * Include stdlib.h to avoid crash in Windows * Fix sftp_new_channel constructs an invalid object * Fix Ninja multiple rules error * Several tests fixes
da6d026
2021-08-19 14:57
下载
libssh-0.9.5
libssh-0.9.5 * CVE-2020-16135: Avoid null pointer dereference in sftpserver (T232) * Improve handling of library initialization (T222) * Fix parsing of subsecond times in SFTP (T219) * Make the documentation reproducible * Remove deprecated API usage in OpenSSL * Fix regression of ssh_channel_poll_timeout() returning SSH_AGAIN * Define version in one place (T226) * Prevent invalid free when using different C runtimes than OpenSSL (T229) * Compatibility improvements to testsuite
0cceefd
2020-08-27 22:29
下载
libssh-0.8.9
libssh-0.8.9 * Fixed CVE-2020-1730 - Possible DoS in client and server when handling AES-CTR keys with OpenSSL
04685a7
2020-04-06 17:54
下载
libssh-0.9.4
libssh-0.9.4 * Fixed CVE-2020-1730 - Possible DoS in client and server when handling AES-CTR keys with OpenSSL * Added diffie-hellman-group14-sha256 * Fixed serveral possible memory leaks
9e9df61
2020-04-06 17:45
下载
libssh-0.8.8
libssh-0.8.8 * Fixed CVE-2019-14889 - SCP: Unsanitized location leads to command execution
7850307
2019-12-10 02:18
下载
libssh-0.9.3
libssh-0.9.3 * Fixed CVE-2019-14889 - SCP: Unsanitized location leads to command execution * SSH-01-003 Client: Missing NULL check leads to crash in erroneous state * SSH-01-006 General: Various unchecked Null-derefs cause DOS * SSH-01-007 PKI Gcrypt: Potential UAF/double free with RSA pubkeys * SSH-01-010 SSH: Deprecated hash function in fingerprinting * SSH-01-013 Conf-Parsing: Recursive wildcards in hostnames lead to DOS * SSH-01-014 Conf-Parsing: Integer underflow leads to OOB array access * SSH-01-001 State Machine: Initial machine states should be set explicitly * SSH-01-002 Kex: Differently bound macros used to iterate same array * SSH-01-005 Code-Quality: Integer sign confusion during assignments * SSH-01-008 SCP: Protocol Injection via unescaped File Names * SSH-01-009 SSH: Update documentation which RFCs are implemented * SSH-01-012 PKI: Information leak via uninitialized stack buffer
64ce53f
2019-12-03 17:05
下载
下载
请输入验证码,防止盗链导致资源被占用
取消
下载
1
https://gitee.com/mirrors/gitlab-libssh-mirror.git
git@gitee.com:mirrors/gitlab-libssh-mirror.git
mirrors
gitlab-libssh-mirror
gitlab-libssh-mirror
点此查找更多帮助
搜索帮助
Git 命令在线学习
如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
登录提示
该操作需登录 Gitee 帐号,请先登录后再操作。
立即登录
没有帐号,去注册
