CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Snyk•added 2026/05/22 5:32 a.m.•4 views

Integer Overflow or Wraparound

Overview github.com/golang/crypto/ssh is a SSH client and server Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the payload size calculation within the Write process. An attacker can cause the process to enter an infinite loop and exhaust system resources by...

9.1CVSS5.8AI score0.00054EPSS

Exploits0References2

Cvelist•added 2026/05/22 2:31 a.m.•31 views

CVE-2026-39834 Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh

When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation...

0.00054EPSS

Exploits0References4

CVE•added 2026/05/22 2:31 a.m.•8 views

CVE-2026-39834

CVE-2026-39834 concerns a flaw in golang.org/x/crypto/ssh where writing data larger than 4GB in a single Write on an SSH channel triggers an integer overflow in the internal payload size calculation. The overflow causes the write loop to spin indefinitely, sending empty packets and making no prog...

9.1CVSS5.9AI score0.00054EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/22 12:0 a.m.•4 views

Google Go 安全漏洞

Google Go is a static, strongly typed, compiled, concurrent programming language with garbage collection features from the American company Google. There is a security vulnerability in Google Go, which stems from an integer overflow in the calculation of the internal payload size when writing dat...

9.1CVSS5.9AI score0.00054EPSS

Exploits0References5

Positive Technologies•added 2026/05/22 12:0 a.m.•7 views

PT-2026-42713

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An integer overflow occurs during the internal payload size calculation when writing data exceeding 4GB in a single Write call on an SSH channel. This leads to a...

9.1CVSS5.8AI score0.00068EPSS

Exploits0References36

Vulnrichment•added 2025/09/17 2:56 p.m.•1 views

CVE-2023-53357 md/raid10: check slab-out-of-bounds in md_bitmap_get_counter

In the Linux kernel, the following vulnerability has been resolved: md/raid10: check slab-out-of-bounds in mdbitmapgetcounter If we write a large number to md/bitmapsetbits, mdbitmapcheckpage will return -EINVAL because 'page = bitmap-pages', but the return value was not checked immediately in...

6.1AI score0.00022EPSS

Exploits0References8