CVE-2025-47913

Опубликовано: 13 нояб. 2025

Источник: debian

EPSS Низкий

Описание

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

Пакет	Статус	Версия исправления	Релиз	Тип
golang-go.crypto	fixed	1:0.43.0-1		package
golang-go.crypto	postponed		bullseye	package

https://github.com/advisories/GHSA-56w8-48fp-6mgv
https://go-review.googlesource.com/c/crypto/+/700295
https://github.com/golang/go/issues/75178
Fixed by: https://github.com/golang/crypto/commit/559e062ce8bfd6a39925294620b50906ca2a6f95 (v0.43.0)

EPSS

Процентиль: 12%

0.00039

Низкий

CVE-2025-47913

CVSS3: 7.5

ubuntu

5 месяцев назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

redhat

5 месяцев назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

nvd

5 месяцев назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

msrc

5 месяцев назад

Potential denial of service in golang.org/x/crypto/ssh/agent

openSUSE-SU-2026:20351-1

suse-cvrf

22 дня назад

Security update for amazon-ssm-agent

EPSS

Процентиль: 12%

0.00039

Низкий