VDB

RHSA-2020%3A2789

RHSA-2020%3A2789 PUBLISHED CVSS 5.300000190734863 MEDIUM

A denial of service vulnerability was found in the SSH package of the golang.org/x/crypto library. An attacker could exploit this flaw by supplying crafted SSH ed25519 keys to cause a crash in applications that use this package as either an SSH client or server.

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:3567f5e5bb21a9d24fc0507f89100b0a31392a437de7238820de15b7b24c82a9_amd64 as a component of Red Hat OpenShift Container Platform 4.4*
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:70ec3477f57b33c7cf4bf7bb0189206436a6f33518eb16686e59d29e6040a176_ppc64le as a component of Red Hat OpenShift Container Platform 4.4*, openshift4/ose-baremetal-rhel7-operator@sha256:70ec3477f57b33c7cf4bf7bb0189206436a6f33518eb16686e59d29e6040a176_ppc64le
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:3567f5e5bb21a9d24fc0507f89100b0a31392a437de7238820de15b7b24c82a9_amd64 as a component of Red Hat OpenShift Container Platform 4.4openshift4/ose-baremetal-rhel7-operator@sha256:3567f5e5bb21a9d24fc0507f89100b0a31392a437de7238820de15b7b24c82a9_amd64, *
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:8f629680d89085dbcfd2637a8c18e8a51f81737d0b23f976a931f0203c0bd21c_s390x as a component of Red Hat OpenShift Container Platform 4.4*, openshift4/ose-baremetal-rhel7-operator@sha256:8f629680d89085dbcfd2637a8c18e8a51f81737d0b23f976a931f0203c0bd21c_s390x
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:70ec3477f57b33c7cf4bf7bb0189206436a6f33518eb16686e59d29e6040a176_ppc64le as a component of Red Hat OpenShift Container Platform 4.4openshift4/ose-baremetal-rhel7-operator@sha256:70ec3477f57b33c7cf4bf7bb0189206436a6f33518eb16686e59d29e6040a176_ppc64le
Red Hatopenshift4/ose-baremetal-rhel7-operator@sha256:8f629680d89085dbcfd2637a8c18e8a51f81737d0b23f976a931f0203c0bd21c_s390x as a component of Red Hat OpenShift Container Platform 4.4openshift4/ose-baremetal-rhel7-operator@sha256:8f629680d89085dbcfd2637a8c18e8a51f81737d0b23f976a931f0203c0bd21c_s390x

Timeline

  • Jul 6, 2020 CVE Published
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • May 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›