CVE-2026-39827

ADVISORY - nist

Summary

An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state and released for garbage collection.

EPSS Score⁠: 0.00023 (0.066)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-924⁠

Improper Enforcement of Message Integrity During Transmission in a Communication Channel

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.