x/vulndb: potential Go vuln in golang.org/x/crypto: CVE-2025-22869

[thatnealpatel]

crypto/ssh: potential denial of service

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

Thanks to Yuichi Watanabe for reporting this issue.

This is CVE-2025-22869 and Go issue https://go.dev/issue/71931.

[gopherbot]

Change https://go.dev/cl/652536 mentions this issue: data/reports: add 2 reports