CVE-2025-47913

Опубликовано: 13 нояб. 2025

Источник: debian

Описание

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

Пакет	Статус	Версия исправления	Релиз	Тип
golang-go.crypto	fixed	1:0.43.0-1		package
golang-go.crypto	postponed		bullseye	package

https://github.com/advisories/GHSA-56w8-48fp-6mgv
https://go-review.googlesource.com/c/crypto/+/700295
https://github.com/golang/go/issues/75178
Fixed by: https://github.com/golang/crypto/commit/559e062ce8bfd6a39925294620b50906ca2a6f95 (v0.43.0)

CVE-2025-47913

CVSS3: 7.5

ubuntu

3 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

nvd

3 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

msrc

3 месяца назад

Potential denial of service in golang.org/x/crypto/ssh/agent

openSUSE-SU-2025:20138-1

suse-cvrf

2 месяца назад

Security update for act

SUSE-SU-2025:4274-1

suse-cvrf

2 месяца назад

Security update for buildah