CVE-2025-54804

Опубликовано: 05 авг. 2025

Источник: redhat

CVSS3: 6.5

Описание

Russh is a Rust SSH client & server library. In versions 0.54.0 and below, the channel window adjust message of the SSH protocol is used to track the free space in the receive buffer of the other side of a channel. The current implementation takes the value from the message and adds it to an internal state value. This can result in a integer overflow. If the Rust code is compiled with overflow checks, it will panic. A malicious client can crash a server. This is fixed in version 0.54.1.

A flaw was found in russh. The SSH channel window adjust message processing incorrectly handles input, leading to an integer overflow. A remote attacker can trigger this overflow by sending a maliciously crafted SSH channel window adjust message. This integer overflow can result in an application level denial of service.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat OpenShift Dev Spaces	devspaces/code-rhel9	Will not fix
Red Hat OpenShift Dev Spaces	devspaces-tech-preview/idea-rhel9	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-190

https://bugzilla.redhat.com/show_bug.cgi?id=2386465russh: Russh Integer Overflow Vulnerability

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2025-54804

CVSS3: 6.5

nvd

6 месяцев назад

GHSA-h5rc-j5f5-3gcm

CVSS3: 6.5

github

6 месяцев назад

russh is missing overflow checks during channel windows adjust

BDU:2025-16318

CVSS3: 6.5

fstec

6 месяцев назад

Уязвимость библиотеки Russh языка программирования Rust для взаимодействия с протоколом SSH, позволяющая нарушителю вызвать отказ в обслуживании

6.5 Medium

CVSS3