Security update for shadowsocks-v2ray-plugin
This update for shadowsocks-v2ray-plugin fixes the following issues:
Update version to 5.37.0
* Update v2ray-core to 5.37.0
* Fixed CVE-2025-29785 in dependency ackhandler (bsc#1243954)
-
Submitted by
Hillwood Yang (hillwood)
Fixed bugs
bnc#1243954
VUL-0: CVE-2025-29785: shadowsocks-v2ray-plugin: github.com/quic-go/quic-go/internal/ackhandler: loss recovery logic for path probe packets can be used by a malicious QUIC client to trigger a null pointer dereference
