[BUG] Update ssh library to fix CVE-2020-9283.
bhrg3se opened this issue · comments
Bhargab commented
Describe the bug:
There is vulnerability in golang ssh library which can be exploited to cause server to panic
Scope of issue:
- TRASA codebase
- dashboard
- server
- mobile app
- browser extension
- device agent
- website/docs
Additional context:
The issue is fixed in https://pkg.go.dev/golang.org/x/crypto@v0.0.0-20201217014255-9d1352758620/ssh