---

CVE-2020-29652 - log back

CVE-2020-29652 edited at 30 Jan 2021 20:09:44
References	https://groups.google.com/g/golang-announce/c/ouZIlBimOsE https://go-review.googlesource.com/c/crypto/+/278852 - https://go.googlesource.com/crypto/+/8b5274cf687fd9316b4108863654cc57385531e8%5E%21/#F0 + https://go.googlesource.com/crypto/+/8b5274cf687fd9316b4108863654cc57385531e8%5E!

CVE-2020-29652 edited at 30 Jan 2021 20:05:38
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ A null pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
References	+ https://groups.google.com/g/golang-announce/c/ouZIlBimOsE + https://go-review.googlesource.com/c/crypto/+/278852 + https://go.googlesource.com/crypto/+/8b5274cf687fd9316b4108863654cc57385531e8%5E%21/#F0
Notes

CVE-2020-29652 created at 30 Jan 2021 20:03:25