pkg:Debian/golang-go.crypto

All known vulnerabilities

• CRITICAL10.0CVE-2026-46595Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1CVE-2026-42508Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
  from 0
• CRITICAL9.1CVE-2026-39834Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
  from 0
• CRITICAL9.1Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent
  from 0
• CRITICAL9.1Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1Misuse of connection.serverAuthenticate may cause authorization bypass in golang.org/x/crypto
  from 0
• HIGH8.1Man-in-the-middle attack in golang.org/x/crypto/ssh
  from 0, < 1:0.0~git20170407.0.55a552f+REALLY.0.0~git20161012.0.5f31782-1
• HIGH7.5Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh
  from 0
• HIGH7.5Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh
  from 0
• HIGH7.5Potential denial of service in golang.org/x/crypto/ssh/agent
  from 0
• HIGH7.5Potential denial of service in golang.org/x/crypto
  from 0
• HIGH7.5Limited directory traversal vulnerability on Windows in golang.org/x/crypto
  from 0
• HIGH7.5Panic on malformed packets in golang.org/x/crypto/ssh
  from 0
• HIGH7.5Panic on crafted authentication request message in golang.org/x/crypto/ssh
  from 0, < 1:0.0~git20201221.eec23a3-1
• HIGH7.5Denial of service via crafted Signer in golang.org/x/crypto/ssh
  from 0
• HIGH7.5packer - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM6.5Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
  from 0
• MEDIUM6.3Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh
  from 0
• MEDIUM5.9erlang - security update
  from 0
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 0.0~hg190-1+deb8u2
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 0.0~hg190-1+deb8u1
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 1:0.0~git20170407.0.55a552f+REALLY.0.0~git20161012.0.5f31782-1+deb8u1
• MEDIUM5.9golang-go.crypto - security update
  from 0, < 1:0.0~git20181203.505ab14-1+deb10u1
• MEDIUM5.3Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent
  from 0
• MEDIUM5.3Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
  from 0
• MEDIUM5.3Malformed constraint may cause denial of service in golang.org/x/crypto/ssh/agent
  from 0
• MEDIUM5.3Unbounded memory consumption in golang.org/x/crypto/ssh
  from 0