Packages
- golang-go.crypto - Supplementary Go cryptography libraries
Details
Jakub Ciolek and Nicola Murino discovered that Go Cryptography incorrectly
handled SSH agent responses. An attacker could use this to cause a denial
of service. (CVE-2025-47913)
Yuichi Watanabe discovered that Go Cryptography incorrectly handled SSH
key exchanges. An attacker could use this to cause a denial of service.
(CVE-2025-22869)
Jakub Ciolek and Nicola Murino discovered that Go Cryptography incorrectly
handled SSH agent responses. An attacker could use this to cause a denial
of service. (CVE-2025-47913)
Yuichi Watanabe discovered that Go Cryptography incorrectly handled SSH
key exchanges. An attacker could use this to cause a denial of service.
(CVE-2025-22869)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 25.10 questing | golang-golang-x-crypto-dev – 1:0.25.0-1ubuntu0.1 | ||
| 24.04 LTS noble | golang-golang-x-crypto-dev – 1:0.19.0-1ubuntu0.1~esm3 | ||
| 22.04 LTS jammy | golang-golang-x-crypto-dev – 1:0.0~git20211202.5770296-1ubuntu0.1~esm3 | ||
| 20.04 LTS focal | golang-golang-x-crypto-dev – 1:0.0~git20200221.2aa609c-1ubuntu0.1~esm3 | ||
| 18.04 LTS bionic | golang-go.crypto-dev – 1:0.0~git20170629.0.5ef0053-2ubuntu0.1~esm3 | ||
| golang-golang-x-crypto-dev – 1:0.0~git20170629.0.5ef0053-2ubuntu0.1~esm3 | |||
| 16.04 LTS xenial | golang-go.crypto-dev – 1:0.0~git20151201.0.7b85b09-2ubuntu0.1~esm3 | ||
| golang-golang-x-crypto-dev – 1:0.0~git20151201.0.7b85b09-2ubuntu0.1~esm3 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.