pkg:Go/golang.org/x/crypto/ssh

All known vulnerabilities

• CRITICAL10.0CVE-2026-46595Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• CRITICAL9.1CVE-2026-39831Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• CRITICAL9.1CVE-2026-39834Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• CRITICAL9.1Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• HIGH7.5Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• HIGH7.5Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• MEDIUM6.5Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• MEDIUM6.3Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh
  from 0, < 0.52.0
• MEDIUM5.3Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
  from 0, < 0.52.0