CVE-2020-29652
published 2020-12-17CVE-2020-29652: A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial…
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
3.23%
86.7th percentile
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | golang-go.crypto | < golang-go.crypto 1:0.0~git20201221.eec23a3-1 (bookworm) | golang-go.crypto 1:0.0~git20201221.eec23a3-1 (bookworm) |
| golang.org | x_crypto | >= 0 < 0.0.0-20201216223049-8b5274cf687f | 0.0.0-20201216223049-8b5274cf687f |
| golang | ssh | <= 0.0.0-20201203163018-be400aefbc4c | — |
| paloalto | pan-os | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
ghsa·2022-05-24
CVE-2020-29652 [HIGH] CWE-476 golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers. An attacker can craft an authentication request message for the `gssapi-with-mic` method which will cause NewServerConn to panic via a nil pointer dereference if ServerConfig.GSSAPIWithMICConfig is nil.
OSV
golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
osv·2022-05-24
CVE-2020-29652 [HIGH] golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
golang.org/x/crypto/ssh NULL Pointer Dereference vulnerability
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers. An attacker can craft an authentication request message for the `gssapi-with-mic` method which will cause NewServerConn to panic via a nil pointer dereference if ServerConfig.GSSAPIWithMICConfig is nil.
OSV
Panic on crafted authentication request message in golang.org/x/crypto/ssh
osv·2022-02-17
CVE-2020-29652 Panic on crafted authentication request message in golang.org/x/crypto/ssh
Panic on crafted authentication request message in golang.org/x/crypto/ssh
Clients can cause a panic in SSH servers. An attacker can craft an authentication request message for the “gssapi-with-mic” method which will cause NewServerConn to panic via a nil pointer dereference if ServerConfig.GSSAPIWithMICConfig is nil.
OSV
CVE-2020-29652: A nil pointer dereference in the golang
osv·2020-12-17·CVSS 7.5
CVE-2020-29652 [HIGH] CVE-2020-29652: A nil pointer dereference in the golang
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
Palo Alto
PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
vendor_paloalto·2025-07-09·CVSS 7.5
CVE-2018-6594 [HIGH] PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
The Palo Alto Networks Product Security Assurance team has evaluated the following open source software (OSS) CVEs as they relate to PAN-OS. While it was not determined that these CVEs have any significant impact on PAN-OS, they have been fixed out of an abundance of caution. CVE Summary CVE-2018-6594 This CVE is fixed in PAN-OS 10.2.17, 11.1.11, 11.2.8, 12.1.2, and all later versions of PAN-OS CVE-2018-25032 This CVE is fixed in PAN-OS 10.1.7, 10.2.2, and all later versions of PAN-OS CVE-2019-5827 This CVE is fixed in PAN-OS 11.1.4, and all later versions of PAN-OS. CVE-2019-13750 This CVE is fixed in PAN-OS 11.1.4, and all later versions of PAN-OS. CVE-2019-13751 This CVE is fixed in PAN-OS 11.1.4, and all later versions
Palo Alto
PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
vendor_paloalto·2025-07-09·CVSS 7.5
CVE-2023-38546 [HIGH] PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
PAN-SA-2025-0012 Informational Bulletin: OSS CVEs Fixed in PAN-OS
The Palo Alto Networks Product Security Assurance team has evaluated the following open source software (OSS) CVEs as they relate to PAN-OS. While it was not determined that these CVEs have any significant impact on PAN-OS, they have been fixed out of an abundance of caution. CVE Summary CVE-2018-6594 This CVE is fixed in PAN-OS 10.2.17, 11.1.11, 11.2.8, 12.1.2, and all later versions of PAN-OS CVE-2018-25032 This CVE is fixed in PAN-OS 10.1.7, 10.2.2, and all later versions of PAN-OS CVE-2019-5827 This CVE is fixed in PAN-OS 11.1.4, and all later versions of PAN-OS. CVE-2019-13750 This CVE is fixed in PAN-OS 11.1.4, and all later versions of PAN-OS. CVE-2019-13751 This CVE is fixed in PAN-OS 11.1.4, and all later versions
Red Hat
golang: crypto/ssh: crafted authentication request can lead to nil pointer dereference
vendor_redhat·2020-12-16·CVSS 7.5
CVE-2020-29652 [HIGH] CWE-476 golang: crypto/ssh: crafted authentication request can lead to nil pointer dereference
golang: crypto/ssh: crafted authentication request can lead to nil pointer dereference
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
A null pointer dereference vulnerability was found in golang. When using the library's ssh server without specifying an option for GSSAPIWithMICConfig, it is possible for an attacker to craft an ssh client connection using the `gssapi-with-mic` authentication method and cause the server to panic resulting in a denial of service. The highest threat from this vulnerability is to system availability.
Statement: A large number of products include the affected package, but do not make use of the vulnerable SSH server c
Debian
CVE-2020-29652: golang-go.crypto - A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0....
vendor_debian·2020·CVSS 7.5
CVE-2020-29652 [HIGH] CVE-2020-29652: golang-go.crypto - A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0....
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
Scope: local
bookworm: resolved (fixed in 1:0.0~git20201221.eec23a3-1)
bullseye: resolved (fixed in 1:0.0~git20201221.eec23a3-1)
forky: resolved (fixed in 1:0.0~git20201221.eec23a3-1)
sid: resolved (fixed in 1:0.0~git20201221.eec23a3-1)
trixie: resolved (fixed in 1:0.0~git20201221.eec23a3-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://go-review.googlesource.com/c/crypto/+/278852https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3Ehttps://go-review.googlesource.com/c/crypto/+/278852https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E
2020-12-17
Published