Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

golang.org/x/crypto/ssh — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in golang.org/x/crypto/ssh, with AI-generated Chinese analysis, references, and POCs.

Vendor: golang.org/x/crypto

CVE IDTitleCVSSSeverityPublished
CVE-2026-39834 Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-46595 Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39829 Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39831 Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39830 Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-39827 Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh --2026-05-22
CVE-2026-46597 Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh --2026-05-22
CVE-2025-58181 Unbounded memory consumption in golang.org/x/crypto/ssh 7.5AIHighAI2025-11-19
CVE-2025-22869 Potential denial of service in golang.org/x/crypto 7.5 -2025-02-26
CVE-2024-45337 Misuse of connection.serverAuthenticate may cause authorization bypass in golang.org/x/crypto 9.8 -2024-12-11

All 12 known CVE vulnerabilities affecting golang.org/x/crypto/ssh with full Chinese analysis, references, and POCs where available.