A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ssh | Golang | * | 0.0.0-20201203163018-be400aefbc4c (including) |
| Red Hat Enterprise Linux 8 | RedHat | container-tools:rhel8-8040020210407081426.59631bd5 | * |
| Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-aws-ebs-csi-driver-rhel8:v4.7.0-202102130115.p0 | * |
| Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-azure-machine-controllers:v4.7.0-202102130115.p0 | * |
| Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-baremetal-installer-rhel8:v4.7.0-202102130115.p0 | * |
| Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-installer:v4.7.0-202102130115.p0 | * |
| Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-installer-artifacts:v4.7.0-202102130115.p0 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/kubernetes-nmstate-handler-rhel8:v4.8.0-21 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/kubevirt-v2v-conversion:v4.8.0-10 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/kubevirt-vmware:v4.8.0-11 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/node-maintenance-operator:v4.8.0-19 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/vm-import-controller:v4.8.0-18 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/vm-import-controller-rhel8:v4.8.0-18 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/vm-import-operator-rhel8:v4.8.0-18 | * |
| RHEL-8-CNV-4.8 | RedHat | container-native-virtualization/vm-import-virtv2v-rhel8:v4.8.0-18 | * |
| Golang-go.crypto | Ubuntu | devel | * |
| Golang-go.crypto | Ubuntu | esm-apps/focal | * |
| Golang-go.crypto | Ubuntu | esm-apps/jammy | * |
| Golang-go.crypto | Ubuntu | esm-apps/noble | * |
| Golang-go.crypto | Ubuntu | focal | * |
| Golang-go.crypto | Ubuntu | groovy | * |
| Golang-go.crypto | Ubuntu | hirsute | * |
| Golang-go.crypto | Ubuntu | impish | * |
| Golang-go.crypto | Ubuntu | jammy | * |
| Golang-go.crypto | Ubuntu | kinetic | * |
| Golang-go.crypto | Ubuntu | lunar | * |
| Golang-go.crypto | Ubuntu | mantic | * |
| Golang-go.crypto | Ubuntu | noble | * |
| Golang-go.crypto | Ubuntu | oracular | * |
| Golang-go.crypto | Ubuntu | plucky | * |
| Golang-go.crypto | Ubuntu | questing | * |
| Golang-go.crypto | Ubuntu | upstream | * |
| Kubernetes | Ubuntu | focal | * |
| Kubernetes | Ubuntu | groovy | * |
| Kubernetes | Ubuntu | hirsute | * |
| Kubernetes | Ubuntu | impish | * |
| Kubernetes | Ubuntu | kinetic | * |
| Kubernetes | Ubuntu | lunar | * |
| Kubernetes | Ubuntu | mantic | * |
| Kubernetes | Ubuntu | oracular | * |
| Snapd | Ubuntu | trusty | * |
Potential Mitigations
References
- https://go-review.googlesource.com/c/crypto/+/278852
- https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1
- https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E
- https://go-review.googlesource.com/c/crypto/+/278852
- https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1
- https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E