pkg:Debian/golang-go.crypto

All known vulnerabilities

• CRITICAL10.0CVE-2026-46595Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1CVE-2026-42508Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
  from 0
• CRITICAL9.1CVE-2026-39834Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1CVE-2026-39832Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
  from 0
• CRITICAL9.1CVE-2026-39833Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent
  from 0
• CRITICAL9.1CVE-2026-39830Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1CVE-2026-39831Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
  from 0
• CRITICAL9.1CVE-2024-45337Misuse of connection.serverAuthenticate may cause authorization bypass in golang.org/x/crypto
  from 0
• HIGH8.1CVE-2017-3204Man-in-the-middle attack in golang.org/x/crypto/ssh
  from 0, < 1:0.0~git20170407.0.55a552f+REALLY.0.0~git20161012.0.5f31782-1
• HIGH7.5CVE-2026-46597Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh
  from 0
• HIGH7.5CVE-2026-39829Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh
  from 0
• HIGH7.5CVE-2025-47913Potential denial of service in golang.org/x/crypto/ssh/agent
  from 0
• HIGH7.5CVE-2025-22869Potential denial of service in golang.org/x/crypto
  from 0
• HIGH7.5CVE-2022-30636Limited directory traversal vulnerability on Windows in golang.org/x/crypto
  from 0
• HIGH7.5CVE-2021-43565Panic on malformed packets in golang.org/x/crypto/ssh
  from 0
• HIGH7.5CVE-2020-29652Panic on crafted authentication request message in golang.org/x/crypto/ssh
  from 0, < 1:0.0~git20201221.eec23a3-1
• HIGH7.5CVE-2022-27191Denial of service via crafted Signer in golang.org/x/crypto/ssh
  from 0
• HIGH7.5CVE-2020-9283packer - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM6.5CVE-2026-39827Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
  from 0
• MEDIUM6.3CVE-2026-39828Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh
  from 0
• MEDIUM5.9CVE-2023-48795Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
  from 0
• MEDIUM5.9CVE-2019-11841golang-go.crypto - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM5.9CVE-2019-11841golang-go.crypto - security update
  from 0, < 0.0~hg190-1+deb8u2
• MEDIUM5.9CVE-2019-11840golang-go.crypto - security update
  from 0, < 0.0~hg190-1+deb8u1
• MEDIUM5.9CVE-2019-11840golang-go.crypto - security update
  from 0, < 1:0.0~git20200221.2aa609c-1
• MEDIUM5.9CVE-2019-11840golang-go.crypto - security update
  from 0, < 1:0.0~git20170407.0.55a552f+REALLY.0.0~git20161012.0.5f31782-1+deb8u1
• MEDIUM5.9CVE-2019-11840golang-go.crypto - security update
  from 0, < 1:0.0~git20181203.505ab14-1+deb10u1
• MEDIUM5.3CVE-2026-46598Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent
  from 0
• MEDIUM5.3CVE-2026-39835Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
  from 0
• MEDIUM5.3CVE-2025-47914Malformed constraint may cause denial of service in golang.org/x/crypto/ssh/agent
  from 0
• MEDIUM5.3CVE-2025-58181Unbounded memory consumption in golang.org/x/crypto/ssh
  from 0