Vulnerabilities

CVE-2026-39835

by Fred · 22/05/2026

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.

More information : https://go.dev/cl/781660

Similar

Tags: Cybersecurity Alert