VDB

DEBIAN-CVE-2025-22869

DEBIAN-CVE-2025-22869 PUBLISHED CVSS 7.5 HIGH

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:13golang-go.crypto0, 0.50.0-1, 0.47.0-1
Debian:11golang-go.crypto*, 1:0.0~git20201221.eec23a3-1, 1:0.0~git20210817.32db794-1
Debian:14golang-go.crypto*, 0, 0
Debian:12golang-go.crypto0.25.0-1, 0.33.0-1, 0.36.0-1

Timeline

  • Feb 26, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›