Gallery

Contacts

405 W. Greenlawn Ave Lansing, Michigan 48910

contact@techjacksolutions.com

+1-616-320-4064

A critical vulnerability in the golang.org/x/crypto/ssh package allows a malicious SSH client to force a server-side deadlock, causing denial of service. Microsoft’s cert-manager package (version 1.12.15-6) on Azure Linux 3.0 is confirmed affected, with a CVSS score of 9.1. Organizations running Kubernetes workloads on Azure Linux 3.0 that depend on cert-manager for TLS certificate lifecycle management face potential disruption to certificate issuance and renewal, which can cascade into service outages.

Author

Tech Jacks Solutions