cloudflared-mirror/vendor/golang.org/x/crypto/ssh
limkevin.chao 3406709ee7 Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0
Upgrade golang.org/x/crypto from v0.38.0 to v0.48.0 to resolve
CVE-2025-47913 (GO-2025-4116), a denial-of-service vulnerability in
golang.org/x/crypto/ssh/agent where SSH clients receiving
SSH_AGENT_SUCCESS when expecting a typed response will panic and cause
early termination of the client process. The fix was introduced in
v0.43.0.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-23 14:14:13 +01:00
..
internal/bcrypt_pbkdf TUN-3090: Upgrade crypto dep 2020-06-12 00:03:09 -05:00
buffer.go AUTH-1557: Short Lived Certs 2019-05-07 11:21:11 -05:00
certs.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
channel.go TUN-8333: Bump go-jose dependency to v4 2024-04-10 09:49:40 -07:00
cipher.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
client.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
client_auth.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
common.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
connection.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
doc.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
handshake.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
kex.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
keys.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
mac.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
messages.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
mlkem.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
mux.go TUN-8052: Update go to 1.21.5 2023-12-15 12:17:21 +00:00
server.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
session.go TUN-6937: Bump golang.org/x/* packages to new release tags 2022-11-14 17:25:11 +00:00
ssh_gss.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
streamlocal.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
tcpip.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00
transport.go Fix CVE-2025-47913: upgrade golang.org/x/crypto to v0.48.0 2026-02-23 14:14:13 +01:00