Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Description

The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.

Basic Information

ID CVE-2026-39829

Source Go

Published May 22, 2026 at 02:31

Modified May 22, 2026 at 18:53

Affected Product

Vendor golang.org/x/crypto

Product golang.org/x/crypto/ssh

Affected Versions golang.org/x/crypto golang.org/x/crypto/ssh 0

References

{
    "lastseen": "",
    "description": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
    "published": "2026-05-22T02:31:27.324Z",
    "modified": "2026-05-22T18:53:33.377Z",
    "type": "cve",
    "title": "Invoking  pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh",
    "source": "Go",
    "references": "https://go.dev/issue/79565\nhttps://groups.google.com/g/golang-announce/c/a082jnz-LvI\nhttps://go.dev/cl/781641\nhttps://go.dev/cl/781661\nhttps://pkg.go.dev/vuln/GO-2026-5018",
    "id": "CVE-2026-39829",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "golang.org/x/crypto golang.org/x/crypto/ssh 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "golang.org/x/crypto/ssh",
    "version": "0",
    "vendor": "golang.org/x/crypto",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh_CVE-2026-39829

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply