CVE-2025-68121

EUVD-2025-206854
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CISA-ADPADP
7.4 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
golanggo
𝑥
< 1.24.13
golanggo
1.25.0 ≤
𝑥
< 1.25.7
golanggo
1.26.0:rc1
golanggo
1.26.0:rc2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
golang-1.15
bookworm
no-dsa
bullseye
vulnerable
trixie
no-dsa
golang-1.19
bookworm
vulnerable
bullseye
postponed
trixie
no-dsa
golang-1.24
bookworm
no-dsa
bullseye
postponed
forky
1.24.13-2
fixed
sid
1.24.13-2
fixed
trixie
no-dsa
golang-1.25
bookworm
no-dsa
bullseye
postponed
forky
1.25.7-2
fixed
sid
1.25.7-2
fixed
trixie
no-dsa
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://go.dev/cl/737700
https://go.dev/issue/77217
https://groups.google.com/g/golang-announce/c/K09ubi9FQFk
https://pkg.go.dev/vuln/GO-2026-4337