Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.1
Large Data Write on SSH Channel Can Cause Server Crash
UBUNTU-CVE-2026-39834
Summary
When writing large amounts of data over an SSH connection, it can cause the server to crash or become unresponsive. This is a concern for businesses that rely on remote access to their servers. To mitigate this issue, administrators should consider breaking up large data transfers into smaller chunks or using alternative methods for data transfer.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Ubuntu:Pro:16.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:Pro:16.04:LTS | canonical | lxd | All versions |
| Ubuntu:Pro:16.04:LTS | canonical | snapd | All versions |
| Ubuntu:Pro:16.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:Pro:18.04:LTS | canonical | lxd | All versions |
| Ubuntu:Pro:18.04:LTS | canonical | snapd | All versions |
| Ubuntu:Pro:18.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:Pro:18.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:Pro:20.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:Pro:20.04:LTS | canonical | snapd | All versions |
| Ubuntu:Pro:20.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:22.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:22.04:LTS | canonical | snapd | All versions |
| Ubuntu:Pro:22.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:24.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:24.04:LTS | canonical | snapd | All versions |
| Ubuntu:Pro:24.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:25.10 | canonical | golang-go.crypto | All versions |
| Ubuntu:25.10 | canonical | google-guest-agent | All versions |
| Ubuntu:25.10 | canonical | snapd | All versions |
| Ubuntu:26.04:LTS | canonical | golang-go.crypto | All versions |
| Ubuntu:26.04:LTS | canonical | google-guest-agent | All versions |
| Ubuntu:26.04:LTS | canonical | snapd | All versions |
Original title
(When writing data larger than 4GB in a single Write call on an SSH cha ...)
Original description
(When writing data larger than 4GB in a single Write call on an SSH cha ...)
- https://ubuntu.com/security/CVE-2026-39834 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-39834 Third Party Advisory
- https://go.dev/issue/79567 Third Party Advisory
- https://groups.google.com/g/golang-announce/c/a082jnz-LvI Third Party Advisory
- https://go.dev/cl/781663 Third Party Advisory
- https://pkg.go.dev/vuln/GO-2026-5020 Third Party Advisory
Published: 22 May 2026 · Updated: 25 May 2026 · First seen: 22 May 2026