Debian 12 — golang-go.crypto — multiple vulnerabilities (20 CVEs) — patch and remediation guide
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2017-3204 CVE-2019-11840 CVE-2019-11841 CVE-2020-29652 CVE-2020-9283 CVE-2021-43565 CVE-2022-27191 CVE-2022-30636 +12 more Upstream summary: The Go SSH library (x/crypto/ssh) by default does not verify host keys, facilitating man-in-the-middle attacks. Default […]