chore(deps): update module github.com/quic-go/quic-go to v0.54.1 [security] #306

Open

renovate-bot wants to merge 1 commit from renovate/go-github.com-quic-go-quic-go-vulnerability into master

pull from: renovate/go-github.com-quic-go-quic-go-vulnerability

merge into: nemunaire:master

nemunaire:master

nemunaire:renovate/alpine-3.x

nemunaire:renovate/go-1.x

nemunaire:renovate/go-golang.org-x-crypto-vulnerability

nemunaire:renovate/node-24.x

nemunaire:web

nemunaire:legacy

nemunaire:http

Conversation 0 Commits 1 Files changed 2 +3 -3

renovate-bot commented 2025-11-05 21:44:53 +00:00

Collaborator

Copy link

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/quic-go/quic-go	v0.54.0 -> v0.54.1

---

quic-go: Panic occurs when queuing undecryptable packets after handshake completion

CVE-2025-59530 / GHSA-47m2-4cr7-mhcw / GO-2025-4017

More information

Details

Summary

A misbehaving or malicious server can trigger an assertion in a quic-go client (and crash the process) by sending a premature HANDSHAKE_DONE frame during the handshake.

Impact

A misbehaving or malicious server can cause a denial-of-service (DoS) attack on the quic-go client by triggering an assertion failure, leading to a process crash. This requires no authentication and can be exploited during the handshake phase. Observed in the wild with certain server implementations (e.g. Solana's Firedancer QUIC).

Affected Versions

• All versions prior to v0.49.1 (for the 0.49 branch)
• Versions v0.50.0 to v0.54.0 (inclusive)
• Fixed in v0.49.1, v0.54.1, and v0.55.0 onward

Users are recommended to upgrade to the latest patched version in their respective maintenance branch or to v0.55.0 or later.

Details

For a regular 1-RTT handshake, QUIC uses three sets of keys to encrypt / decrypt QUIC packets:

• Initial keys (derived from a static key and the connection ID)
• Handshake keys (derived from the client's and server's key shares in the TLS handshake)
• 1-RTT keys (derived when the TLS handshake finishes)

On the client side, Initial keys are discarded when the first Handshake packet is sent. Handshake keys are discarded when the server's HANDSHAKE_DONE frame is received, as specified in section 4.9.2 of RFC 9001. Crucially, Initial keys are always dropped before Handshake keys in a standard handshake.

Due to packet reordering, it is possible to receive a packet with a higher encryption level before the key for that encryption level has been derived. For example, the server's Handshake packets (containing, among others, the TLS certificate) might arrive before the server's Initial packet (which contains the TLS ServerHello). In that case, the client queues the Handshake packets and decrypts them as soon as it has processed the ServerHello and derived Handshake keys.

After completion of the handshake, Initial and Handshake packets are not needed anymore and will be dropped. quic-go implements an assertion that no packets are queued after completion of the handshake.

A misbehaving or malicious server can trigger this assertion, and thereby cause a panic, by sending a HANDSHAKE_DONE frame before actually completing the handshake. In that case, Handshake keys would be dropped before Initial keys.

This can only happen if the server implementation is misbehaving: the server can only complete the handshake after receiving the client's TLS Finished message (which is sent in Handshake packets).

The Fix

quic-go needs to be able to handle misbehaving server implementations, including those that prematurely send a HANDSHAKE_DONE frame. We now discard Initial keys when receiving a HANDSHAKE_DONE frame, thereby correctly handling premature HANDSHAKE_DONE frames. The fix was implemented in https://github.com/quic-go/quic-go/pull/5354.

Severity

• CVSS Score: 7.5 / 10 (High)
• Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

• https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw
• https://nvd.nist.gov/vuln/detail/CVE-2025-59530
• https://github.com/quic-go/quic-go/pull/5354
• https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c
• https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42
• https://github.com/quic-go/quic-go
• https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685
• https://pkg.go.dev/vuln/GO-2025-4017

This data is provided by OSV and the GitHub Advisory Database (CC-BY 4.0).

---

Panic occurs when queuing undecryptable packets after handshake completion in github.com/quic-go/quic-go

CVE-2025-59530 / GHSA-47m2-4cr7-mhcw / GO-2025-4017

More information

Details

Panic occurs when queuing undecryptable packets after handshake completion in github.com/quic-go/quic-go

Severity

Unknown

References

• https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw
• https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c
• https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42
• https://github.com/quic-go/quic-go/pull/5354
• https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685

This data is provided by OSV and the Go Vulnerability Database (CC-BY 4.0).

---

Release Notes

quic-go/quic-go (github.com/quic-go/quic-go)

v0.54.1

Compare Source

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) | `v0.54.0` -> `v0.54.1` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- ### quic-go: Panic occurs when queuing undecryptable packets after handshake completion [CVE-2025-59530](https://nvd.nist.gov/vuln/detail/CVE-2025-59530) / [GHSA-47m2-4cr7-mhcw](https://github.com/advisories/GHSA-47m2-4cr7-mhcw) / [GO-2025-4017](https://pkg.go.dev/vuln/GO-2025-4017) <details> <summary>More information</summary> #### Details ##### Summary A misbehaving or malicious server can trigger an assertion in a quic-go client (and crash the process) by sending a premature HANDSHAKE_DONE frame during the handshake. ##### Impact A misbehaving or malicious server can cause a denial-of-service (DoS) attack on the quic-go client by triggering an assertion failure, leading to a process crash. This requires no authentication and can be exploited during the handshake phase. Observed in the wild with certain server implementations (e.g. Solana's Firedancer QUIC). ##### Affected Versions - All versions prior to v0.49.1 (for the 0.49 branch) - Versions v0.50.0 to v0.54.0 (inclusive) - Fixed in v0.49.1, v0.54.1, and v0.55.0 onward Users are recommended to upgrade to the latest patched version in their respective maintenance branch or to v0.55.0 or later. ##### Details For a regular 1-RTT handshake, QUIC uses three sets of keys to encrypt / decrypt QUIC packets: - Initial keys (derived from a static key and the connection ID) - Handshake keys (derived from the client's and server's key shares in the TLS handshake) - 1-RTT keys (derived when the TLS handshake finishes) On the client side, Initial keys are discarded when the first Handshake packet is sent. Handshake keys are discarded when the server's HANDSHAKE_DONE frame is received, as specified in section 4.9.2 of RFC 9001. Crucially, Initial keys are always dropped before Handshake keys in a standard handshake. Due to packet reordering, it is possible to receive a packet with a higher encryption level before the key for that encryption level has been derived. For example, the server's Handshake packets (containing, among others, the TLS certificate) might arrive before the server's Initial packet (which contains the TLS ServerHello). In that case, the client queues the Handshake packets and decrypts them as soon as it has processed the ServerHello and derived Handshake keys. After completion of the handshake, Initial and Handshake packets are not needed anymore and will be dropped. quic-go implements an [assertion](https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685) that no packets are queued after completion of the handshake. A misbehaving or malicious server can trigger this assertion, and thereby cause a panic, by sending a HANDSHAKE_DONE frame before actually completing the handshake. In that case, Handshake keys would be dropped before Initial keys. This can only happen if the server implementation is misbehaving: the server can only complete the handshake after receiving the client's TLS Finished message (which is sent in Handshake packets). ##### The Fix quic-go needs to be able to handle misbehaving server implementations, including those that prematurely send a HANDSHAKE_DONE frame. We now discard Initial keys when receiving a HANDSHAKE_DONE frame, thereby correctly handling premature HANDSHAKE_DONE frames. The fix was implemented in https://github.com/quic-go/quic-go/pull/5354. #### Severity - CVSS Score: 7.5 / 10 (High) - Vector String: `CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H` #### References - [https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw](https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw) - [https://nvd.nist.gov/vuln/detail/CVE-2025-59530](https://nvd.nist.gov/vuln/detail/CVE-2025-59530) - [https://github.com/quic-go/quic-go/pull/5354](https://github.com/quic-go/quic-go/pull/5354) - [https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c](https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c) - [https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42](https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42) - [https://github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) - [https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685](https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685) - [https://pkg.go.dev/vuln/GO-2025-4017](https://pkg.go.dev/vuln/GO-2025-4017) This data is provided by [OSV](https://osv.dev/vulnerability/GHSA-47m2-4cr7-mhcw) and the [GitHub Advisory Database](https://github.com/github/advisory-database) ([CC-BY 4.0](https://github.com/github/advisory-database/blob/main/LICENSE.md)). </details> --- ### Panic occurs when queuing undecryptable packets after handshake completion in github.com/quic-go/quic-go [CVE-2025-59530](https://nvd.nist.gov/vuln/detail/CVE-2025-59530) / [GHSA-47m2-4cr7-mhcw](https://github.com/advisories/GHSA-47m2-4cr7-mhcw) / [GO-2025-4017](https://pkg.go.dev/vuln/GO-2025-4017) <details> <summary>More information</summary> #### Details Panic occurs when queuing undecryptable packets after handshake completion in github.com/quic-go/quic-go #### Severity Unknown #### References - [https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw](https://github.com/quic-go/quic-go/security/advisories/GHSA-47m2-4cr7-mhcw) - [https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c](https://github.com/quic-go/quic-go/commit/bc5bccf10fd02728eef150683eb4dfaa5c0e749c) - [https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42](https://github.com/quic-go/quic-go/commit/ce7c9ea8834b9d2ed79efa9269467f02c0895d42) - [https://github.com/quic-go/quic-go/pull/5354](https://github.com/quic-go/quic-go/pull/5354) - [https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685](https://github.com/quic-go/quic-go/blob/v0.55.0/connection.go#L2682-L2685) This data is provided by [OSV](https://osv.dev/vulnerability/GO-2025-4017) and the [Go Vulnerability Database](https://github.com/golang/vulndb) ([CC-BY 4.0](https://github.com/golang/vulndb#license)). </details> --- ### Release Notes <details> <summary>quic-go/quic-go (github.com/quic-go/quic-go)</summary> ### [`v0.54.1`](https://github.com/quic-go/quic-go/compare/v0.54.0...v0.54.1) [Compare Source](https://github.com/quic-go/quic-go/compare/v0.54.0...v0.54.1) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNTIuMiIsInVwZGF0ZWRJblZlciI6IjQyLjE5LjciLCJ0YXJnZXRCcmFuY2giOiJtYXN0ZXIiLCJsYWJlbHMiOltdfQ==-->

renovate-bot added 1 commit 2025-11-05 21:44:54 +00:00

chore(deps): update module github.com/quic-go/quic-go to v0.54.1 [security] 99aa7151d1

Some checks reported errors

Hide all checks

continuous-integration/drone/push Build was killed

Details

This pull request can be merged automatically.

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin renovate/go-github.com-quic-go-quic-go-vulnerability:renovate/go-github.com-quic-go-quic-go-vulnerability

git switch renovate/go-github.com-quic-go-quic-go-vulnerability

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch master

git merge --no-ff renovate/go-github.com-quic-go-quic-go-vulnerability

git switch renovate/go-github.com-quic-go-quic-go-vulnerability

git rebase master

git switch master

git merge --ff-only renovate/go-github.com-quic-go-quic-go-vulnerability

git switch renovate/go-github.com-quic-go-quic-go-vulnerability

git rebase master

git switch master

git merge --no-ff renovate/go-github.com-quic-go-quic-go-vulnerability

git switch master

git merge --squash renovate/go-github.com-quic-go-quic-go-vulnerability

git switch master

git merge --ff-only renovate/go-github.com-quic-go-quic-go-vulnerability

git switch master

git merge renovate/go-github.com-quic-go-quic-go-vulnerability

git push origin master

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

nemunaire/reveil!306

No description provided.