CVE-2026-39834CRITICAL 9.1EPSS p30.8%

CVE-2026-39834CVE-2026-39834

Description

When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS0.39% probability of exploitation · percentile 30.8% · 2026-06-19T12:03:05Z
Published2026-05-22
Last modified2026-05-22

References

  1. https://go.dev/cl/781663
  2. https://go.dev/issue/79567
  3. https://groups.google.com/g/golang-announce/c/a082jnz-LvI
  4. https://pkg.go.dev/vuln/GO-2026-5020

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-39830
CVE
CVE-2025-11624
CVE
CVE-2026-33845
CVE
CVE-2026-32284
CVE
CVE-2026-41981
CVE
CVE-2026-33602
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.