Unauthenticated clients can cause a panic in SSH servers.
When using AES-GCM or ChaCha20Poly1305, consuming a malformed packet which contains an empty plaintext causes a panic.
{ "review_status": "REVIEWED", "url": "https://pkg.go.dev/vuln/GO-2022-0968" }
{ "imports": [ { "path": "golang.org/x/crypto/ssh", "symbols": [ "Dial", "NewClientConn", "NewServerConn", "chacha20Poly1305Cipher.readCipherPacket", "curve25519sha256.Client", "curve25519sha256.Server", "dhGEXSHA.Client", "dhGEXSHA.Server", "dhGroup.Client", "dhGroup.Server", "ecdh.Client", "ecdh.Server", "gcmCipher.readCipherPacket" ] } ] }