High severityOSV Advisory· Published Dec 4, 2025· Updated Dec 5, 2025
CVE-2025-65637
CVE-2025-65637
Description
A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/sirupsen/logrusGo | < 1.8.3 | 1.8.3 |
github.com/sirupsen/logrusGo | >= 1.9.0, < 1.9.1 | 1.9.1 |
github.com/sirupsen/logrusGo | >= 1.9.2, < 1.9.3 | 1.9.3 |
Affected products
142- osv-coords141 versionspkg:apk/chainguard/aws-flb-cloudwatchpkg:apk/chainguard/aws-flb-cloudwatch-compatpkg:apk/chainguard/aws-flb-cloudwatch-compat-fipspkg:apk/chainguard/aws-flb-cloudwatch-fipspkg:apk/chainguard/aws-flb-firehosepkg:apk/chainguard/aws-flb-firehose-compatpkg:apk/chainguard/aws-flb-firehose-compat-fipspkg:apk/chainguard/aws-flb-firehose-fipspkg:apk/chainguard/aws-flb-kinesispkg:apk/chainguard/aws-flb-kinesis-compatpkg:apk/chainguard/aws-flb-kinesis-compat-fipspkg:apk/chainguard/aws-flb-kinesis-fipspkg:apk/chainguard/consul-1.18pkg:apk/chainguard/consul-1.18-oci-entrypointpkg:apk/chainguard/consul-1.18-oci-entrypoint-compatpkg:apk/chainguard/consul-1.19pkg:apk/chainguard/consul-1.19-oci-entrypointpkg:apk/chainguard/consul-1.19-oci-entrypoint-compatpkg:apk/chainguard/consul-1.20pkg:apk/chainguard/consul-1.20-oci-entrypointpkg:apk/chainguard/consul-1.20-oci-entrypoint-compatpkg:apk/chainguard/consul-1.21pkg:apk/chainguard/consul-1.21-oci-entrypointpkg:apk/chainguard/consul-1.21-oci-entrypoint-compatpkg:apk/chainguard/consul-fips-1.19pkg:apk/chainguard/consul-fips-1.19-oci-entrypointpkg:apk/chainguard/consul-fips-1.19-oci-entrypoint-compatpkg:apk/chainguard/consul-fips-1.20pkg:apk/chainguard/consul-fips-1.20-oci-entrypointpkg:apk/chainguard/consul-fips-1.20-oci-entrypoint-compatpkg:apk/chainguard/consul-fips-1.21pkg:apk/chainguard/consul-fips-1.21-oci-entrypointpkg:apk/chainguard/consul-fips-1.21-oci-entrypoint-compatpkg:apk/chainguard/docker-credential-gcrpkg:apk/chainguard/docker-credential-gcr-fipspkg:apk/chainguard/falcoctl-fips-0.4pkg:apk/chainguard/go-discoverpkg:apk/chainguard/go-discover-fipspkg:apk/chainguard/gostatsdpkg:apk/chainguard/hello-world-golangpkg:apk/chainguard/kiampkg:apk/chainguard/kiam-compatpkg:apk/chainguard/kptpkg:apk/chainguard/kubeflow-access-managementpkg:apk/chainguard/kubeflow-access-management-fipspkg:apk/chainguard/kubeflow-profile-controllerpkg:apk/chainguard/kubeflow-profile-controller-fipspkg:apk/chainguard/kube-fluentd-operatorpkg:apk/chainguard/kube-fluentd-operator-compatpkg:apk/chainguard/kube-fluentd-operator-default-configpkg:apk/chainguard/kube-fluentd-operator-oci-entrypointpkg:apk/chainguard/kubernetes-event-exporter-fipspkg:apk/chainguard/neuvector-dbgenpkg:apk/chainguard/neuvector-dbgen-fipspkg:apk/chainguard/neuvector-db-updaterpkg:apk/chainguard/neuvector-db-updater-fipspkg:apk/chainguard/newrelic-nri-statsdpkg:apk/chainguard/php-fpm_exporterpkg:apk/chainguard/prometheus-beat-exporterpkg:apk/chainguard/prometheus-beat-exporter-fipspkg:apk/chainguard/prometheus-mongodb-exporter-0.37pkg:apk/chainguard/prometheus-mongodb-exporter-fips-0.37pkg:apk/chainguard/smokescreenpkg:apk/chainguard/smokescreen-compatpkg:apk/chainguard/sonobuoypkg:apk/chainguard/sonobuoy-compatpkg:apk/chainguard/sonobuoy-fipspkg:apk/chainguard/src-fingerprintpkg:apk/chainguard/src-fingerprint-fipspkg:apk/chainguard/stakater-reloader-0.0.119pkg:apk/chainguard/stakater-reloader-0.0.128pkg:apk/chainguard/stakater-reloader-compat-0.0.119pkg:apk/chainguard/stakater-reloader-compat-0.0.128pkg:apk/chainguard/terraform-provider-googlepkg:apk/chainguard/terraform-provider-google-fipspkg:apk/chainguard/wavefront-collector-for-kubernetes-1.12pkg:apk/chainguard/wavefront-collector-for-kubernetes-1.13pkg:apk/wolfi/aws-flb-cloudwatchpkg:apk/wolfi/aws-flb-cloudwatch-compatpkg:apk/wolfi/aws-flb-firehosepkg:apk/wolfi/aws-flb-firehose-compatpkg:apk/wolfi/aws-flb-kinesispkg:apk/wolfi/aws-flb-kinesis-compatpkg:apk/wolfi/docker-credential-gcrpkg:apk/wolfi/go-discoverpkg:apk/wolfi/gostatsdpkg:apk/wolfi/hello-world-golangpkg:apk/wolfi/kptpkg:apk/wolfi/kubeflow-access-managementpkg:apk/wolfi/kubeflow-profile-controllerpkg:apk/wolfi/kube-fluentd-operatorpkg:apk/wolfi/kube-fluentd-operator-compatpkg:apk/wolfi/kube-fluentd-operator-default-configpkg:apk/wolfi/kube-fluentd-operator-oci-entrypointpkg:apk/wolfi/neuvector-dbgenpkg:apk/wolfi/neuvector-db-updaterpkg:apk/wolfi/newrelic-nri-statsdpkg:apk/wolfi/php-fpm_exporterpkg:apk/wolfi/prometheus-beat-exporterpkg:apk/wolfi/smokescreenpkg:apk/wolfi/smokescreen-compatpkg:apk/wolfi/sonobuoypkg:apk/wolfi/sonobuoy-compatpkg:apk/wolfi/src-fingerprintpkg:apk/wolfi/terraform-provider-googlepkg:golang/github.com/sirupsen/logruspkg:rpm/almalinux/aardvark-dnspkg:rpm/almalinux/buildahpkg:rpm/almalinux/buildah-testspkg:rpm/almalinux/cockpit-podmanpkg:rpm/almalinux/conmonpkg:rpm/almalinux/containernetworking-pluginspkg:rpm/almalinux/containers-commonpkg:rpm/almalinux/container-selinuxpkg:rpm/almalinux/critpkg:rpm/almalinux/criupkg:rpm/almalinux/criu-develpkg:rpm/almalinux/criu-libspkg:rpm/almalinux/crunpkg:rpm/almalinux/fuse-overlayfspkg:rpm/almalinux/libslirppkg:rpm/almalinux/libslirp-develpkg:rpm/almalinux/netavarkpkg:rpm/almalinux/oci-seccomp-bpf-hookpkg:rpm/almalinux/podmanpkg:rpm/almalinux/podman-catatonitpkg:rpm/almalinux/podman-dockerpkg:rpm/almalinux/podman-gvproxypkg:rpm/almalinux/podman-pluginspkg:rpm/almalinux/podman-remotepkg:rpm/almalinux/podman-testspkg:rpm/almalinux/python3-criupkg:rpm/almalinux/python3-podmanpkg:rpm/almalinux/runcpkg:rpm/almalinux/skopeopkg:rpm/almalinux/skopeo-testspkg:rpm/almalinux/slirp4netnspkg:rpm/almalinux/toolboxpkg:rpm/almalinux/toolbox-testspkg:rpm/almalinux/udicapkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6
< 1.9.4-r22+ 140 more
- (no CPE)range: < 1.9.4-r22
- (no CPE)range: < 1.9.4-r22
- (no CPE)range: < 1.9.4-r16
- (no CPE)range: < 1.9.4-r16
- (no CPE)range: < 1.7.2-r22
- (no CPE)range: < 1.7.2-r22
- (no CPE)range: < 1.7.2-r16
- (no CPE)range: < 1.7.2-r16
- (no CPE)range: < 1.10.3-r3
- (no CPE)range: < 1.10.3-r3
- (no CPE)range: < 1.10.3-r4
- (no CPE)range: < 1.10.3-r4
- (no CPE)range: < 1.18.2-r47
- (no CPE)range: < 1.18.2-r47
- (no CPE)range: < 1.18.2-r47
- (no CPE)range: < 1.19.2-r46
- (no CPE)range: < 1.19.2-r46
- (no CPE)range: < 1.19.2-r46
- (no CPE)range: < 1.20.6-r10
- (no CPE)range: < 1.20.6-r10
- (no CPE)range: < 1.20.6-r10
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 1.19.2-r45
- (no CPE)range: < 1.19.2-r45
- (no CPE)range: < 1.19.2-r45
- (no CPE)range: < 1.20.6-r9
- (no CPE)range: < 1.20.6-r9
- (no CPE)range: < 1.20.6-r9
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 1.21.5-r5
- (no CPE)range: < 2.1.30-r7
- (no CPE)range: < 2.1.30-r6
- (no CPE)range: < 0.4.0-r28
- (no CPE)range: < 0_git20251216-r0
- (no CPE)range: < 0_git20251208-r1
- (no CPE)range: < 28.3.0-r21
- (no CPE)range: < 1.3-r16
- (no CPE)range: < 4.2-r32
- (no CPE)range: < 4.2-r32
- (no CPE)range: < 1.0.0_beta55-r15
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.7-r17
- (no CPE)range: < 0_git20240423-r10
- (no CPE)range: < 0_git20240423-r11
- (no CPE)range: < 0_git20240423-r10
- (no CPE)range: < 0_git20240423-r11
- (no CPE)range: < 2.12.0-r2
- (no CPE)range: < 2.2.0-r19
- (no CPE)range: < 0.4.0-r18
- (no CPE)range: < 0.4.0-r20
- (no CPE)range: < 0.37.0-r27
- (no CPE)range: < 0.37.0-r32
- (no CPE)range: < 0_git20251203-r1
- (no CPE)range: < 0_git20251203-r1
- (no CPE)range: < 0.57.3-r12
- (no CPE)range: < 0.57.3-r12
- (no CPE)range: < 0.57.3-r5
- (no CPE)range: < 0.19.0-r36
- (no CPE)range: < 0.19.0-r22
- (no CPE)range: < 0.0.119-r27
- (no CPE)range: < 0.0.128-r26
- (no CPE)range: < 0.0.119-r27
- (no CPE)range: < 0.0.128-r26
- (no CPE)range: < 7.12.0-r3
- (no CPE)range: < 7.12.0-r3
- (no CPE)range: < 1.12.1-r33
- (no CPE)range: < 1.13.0-r33
- (no CPE)range: < 1.9.4-r22
- (no CPE)range: < 1.9.4-r22
- (no CPE)range: < 1.7.2-r22
- (no CPE)range: < 1.7.2-r22
- (no CPE)range: < 1.10.3-r3
- (no CPE)range: < 1.10.3-r3
- (no CPE)range: < 2.1.30-r7
- (no CPE)range: < 0_git20251216-r0
- (no CPE)range: < 28.3.0-r21
- (no CPE)range: < 1.3-r16
- (no CPE)range: < 1.0.0_beta55-r15
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.10.0-r10
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 1.18.2-r53
- (no CPE)range: < 0_git20240423-r10
- (no CPE)range: < 0_git20240423-r10
- (no CPE)range: < 2.12.0-r2
- (no CPE)range: < 2.2.0-r19
- (no CPE)range: < 0.4.0-r18
- (no CPE)range: < 0_git20251203-r1
- (no CPE)range: < 0_git20251203-r1
- (no CPE)range: < 0.57.3-r12
- (no CPE)range: < 0.57.3-r12
- (no CPE)range: < 0.19.0-r36
- (no CPE)range: < 7.12.0-r3
- (no CPE)range: < 1.8.3
- (no CPE)range: < 2:1.10.1-2.module_el8.10.0+3909+6e1c1eb7
- (no CPE)range: < 2:1.33.14-2.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 2:1.33.14-2.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 84.1-1.module_el8.10.0+4102+6c76e544
- (no CPE)range: < 3:2.1.10-1.module_el8.10.0+3970+8445edf6
- (no CPE)range: < 1:1.4.0-7.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 2:1-82.module_el8.10.0+3876+e55593a8
- (no CPE)range: < 2:2.229.0-2.module_el8.10.0+4090+91932338
- (no CPE)range: < 3.18-5.module_el8.10.0+4047+545787c4
- (no CPE)range: < 3.18-5.module_el8.10.0+4089+ce72bbbe
- (no CPE)range: < 3.18-5.module_el8.10.0+4016+efd18bf8
- (no CPE)range: < 3.18-5.module_el8.10.0+3970+8445edf6
- (no CPE)range: < 1.14.3-2.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 1.13-1.module_el8.10.0+4047+545787c4
- (no CPE)range: < 4.4.0-2.module_el8.10.0+4023+db236c53
- (no CPE)range: < 4.4.0-2.module_el8.10.0+4102+6c76e544
- (no CPE)range: < 2:1.10.3-1.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 1.2.10-1.module_el8.10.0+4047+545787c4
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 4:4.9.4-28.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 3.18-5.module_el8.10.0+3970+8445edf6
- (no CPE)range: < 4.9.0-3.module_el8.10.0+4016+efd18bf8
- (no CPE)range: < 4:1.2.9-3.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 2:1.14.5-6.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 2:1.14.5-6.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 1.2.3-1.module_el8.10.0+4047+545787c4
- (no CPE)range: < 0.0.99.5.1-1.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 0.0.99.5.1-1.module_el8.10.0+4120+03ad4b47
- (no CPE)range: < 0.2.6-21.module_el8.10.0+4068+0e21408f
- (no CPE)range: < 0.0.20251230T014957-150000.1.134.1
Patches
Vulnerability mechanics
References
10- github.com/advisories/GHSA-4f99-4q7p-p3ghghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-65637ghsaADVISORY
- github.com/mjuanxd/logrus-dos-poc/blob/main/README.mdghsaWEB
- github.com/sirupsen/logrus/commit/6acd903758687c4a3db3c11701e6c414fcf1c1f7ghsaWEB
- github.com/sirupsen/logrus/issues/1370ghsaWEB
- github.com/sirupsen/logrus/pull/1376ghsaWEB
- github.com/sirupsen/logrus/releases/tag/v1.8.3ghsaWEB
- github.com/sirupsen/logrus/releases/tag/v1.9.1ghsaWEB
- github.com/sirupsen/logrus/releases/tag/v1.9.3ghsaWEB
- security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMSIRUPSENLOGRUS-5564391ghsaWEB
News mentions
0No linked articles in our index yet.