{"id":"GO-2025-4188","summary":"Logrus is vulnerable to DoS when using Entry.writerScanner in github.com/sirupsen/logrus","details":"Logrus is vulnerable to DoS when using Entry.writerScanner in github.com/sirupsen/logrus","aliases":["CVE-2025-65637","GHSA-4f99-4q7p-p3gh"],"modified":"2026-02-04T04:00:09.677829Z","published":"2025-12-15T20:37:41Z","related":["CGA-pv49-fpjj-2w94"],"database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2025-4188"},"references":[{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-4f99-4q7p-p3gh"},{"type":"FIX","url":"https://github.com/sirupsen/logrus/commit/6acd903758687c4a3db3c11701e6c414fcf1c1f7"},{"type":"FIX","url":"https://github.com/sirupsen/logrus/pull/1376"},{"type":"REPORT","url":"https://github.com/sirupsen/logrus/issues/1370"},{"type":"WEB","url":"https://github.com/mjuanxd/logrus-dos-poc"},{"type":"WEB","url":"https://github.com/mjuanxd/logrus-dos-poc/blob/main/README.md"},{"type":"WEB","url":"https://github.com/sirupsen/logrus/releases/tag/v1.8.3"},{"type":"WEB","url":"https://github.com/sirupsen/logrus/releases/tag/v1.9.1"},{"type":"WEB","url":"https://github.com/sirupsen/logrus/releases/tag/v1.9.3"},{"type":"WEB","url":"https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMSIRUPSENLOGRUS-5564391"}],"affected":[{"package":{"name":"github.com/sirupsen/logrus","ecosystem":"Go","purl":"pkg:golang/github.com/sirupsen/logrus"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.8.3"},{"introduced":"1.9.0"},{"fixed":"1.9.1"},{"introduced":"1.9.2"},{"fixed":"1.9.3"}]}],"ecosystem_specific":{"imports":[{"path":"github.com/sirupsen/logrus","symbols":["Entry.Writer","Entry.WriterLevel","Entry.writerScanner","Logger.Writer","Logger.WriterLevel"]}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2025-4188.json"}}],"schema_version":"1.7.3"}