Skip to content

CVE-2026-39834 #469

Description

@opensourceways-bot

一、漏洞信息
漏洞编号:CVE-2026-39834
漏洞归属组件:crypto
漏洞归属分支:默认分支
漏洞归属的版本:v0.45.0
漏洞修复版本: 0.52.0
CVSS分值:
 BaseScore: N/A None
 Vector: N/A

漏洞简述:
When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.

漏洞公开时间:2026-05-22 04:16:24
漏洞创建时间:2026-06-24 02:55:20
漏洞详情参考链接:
https://nvd.nist.gov/vuln/detail/CVE-2026-39834

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions