Skip to main content
Friday, December 13th 2024

CVE-2024-45337

This article was originally published on the Platform.sh blog.

Friday, December 13th 2024

Security vulnerability uncovered and patched in the golang.org/x/crypto /ssh package

Misimplementation of PublicKeyCallback leads to authorization bypass in Go’s x/crypto/sshPlatform.

Last modified on June 25, 2026