CVE-2021-43565

CVE-2021-43565

EPSS 0.9%

The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://groups.google.com/forum/#%21forum/golang-announce https://groups.google.com/g/golang-announce/c/2AR1sKiM-Qs