Skip to content

[Aikido] Fix 3 critical issues in jackc/pgx/v5, google.golang.org/grpc and 28 other issues#23

Open
aikido-autofix[bot] wants to merge 1 commit into
mainfrom
fix/aikido-security-update-packages-44088491-p9sm
Open

[Aikido] Fix 3 critical issues in jackc/pgx/v5, google.golang.org/grpc and 28 other issues#23
aikido-autofix[bot] wants to merge 1 commit into
mainfrom
fix/aikido-security-update-packages-44088491-p9sm

Conversation

@aikido-autofix

@aikido-autofix aikido-autofix Bot commented Jun 4, 2026

Copy link
Copy Markdown

Upgrade dependencies to fix critical SSH vulnerabilities including authorization bypass, DoS via resource exhaustion, FIDO key verification bypass, integer overflow in channel writes, and CA signature key revocation checks.

✅ 31 CVEs resolved by this upgrade, including 11 critical 🚨 CVEs

This PR will resolve the following CVEs:

Issue Severity           Description
AIKIDO-2026-11022
🚨 CRITICAL
[golang.org/x/crypto] Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.
AIKIDO-2026-11025
🚨 CRITICAL
[golang.org/x/crypto] A malicious SSH peer can send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop and causing a resource leak that cannot be released by Close(). This results in a denial of service through goroutine exhaustion.
AIKIDO-2026-11029
🚨 CRITICAL
[golang.org/x/crypto] The Verify() method for FIDO/U2F security keys fails to check the User Presence flag, allowing signatures generated without physical touch to be accepted. This enables unauthorized unattended use of hardware security keys, bypassing intended physical authentication requirements.
AIKIDO-2026-11028
🚨 CRITICAL
[golang.org/x/crypto] An integer overflow in SSH channel write operations causes an infinite loop when writing data larger than 4GB in a single call, resulting in denial of service through empty packet transmission. The vulnerability has been fixed by using int64 for size comparisons to prevent truncation.
AIKIDO-2026-11027
🚨 CRITICAL
[golang.org/x/crypto] Previously, a revoked 'SignatureKey' belonging to a CA was not correctly checked for revocation. Now, both the 'key' and 'key.SignatureKey' are checked for Revoked.
AIKIDO-2026-11034
🚨 CRITICAL
[golang.org/x/crypto] A keyring implementation silently ignored the ConfirmBeforeUse constraint on keys, allowing unauthorized signing without prompts or caller notification. This has been fixed to return an error when unsupported constraints are requested.
AIKIDO-2026-11033
🚨 CRITICAL
[golang.org/x/crypto] SSH agent key constraint extensions were not serialized when adding keys to remote agents, allowing destination restrictions to be silently stripped and keys to be used without restrictions on remote hosts. The vulnerability has been fixed by serializing all constraint extensions and rejecting keys with unsupported constraints.
AIKIDO-2026-11032
HIGH
[golang.org/x/crypto] An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.
AIKIDO-2026-11026
MEDIUM
[golang.org/x/crypto] An authenticated SSH client can cause unbounded memory growth by repeatedly opening rejected channels, leading to server crashes and denial of service for all connected users. The vulnerability has been fixed by properly removing rejected channels from internal state.
AIKIDO-2026-11031
MEDIUM
[golang.org/x/crypto] An SSH server authentication callback that returns PartialSuccessError with non-nil Permissions silently discards those permissions, potentially bypassing certificate restrictions like force-command after second factor authentication succeeds. This vulnerability allows attackers to bypass security restrictions.
AIKIDO-2026-11023
MEDIUM
[golang.org/x/crypto] For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used.
AIKIDO-2026-11024
LOW
[golang.org/x/crypto] RSA and DSA public key parsers lack size limits, allowing crafted keys with excessively large parameters to consume CPU for minutes during signature verification. This enables unauthenticated denial-of-service attacks during public key authentication.
AIKIDO-2026-11030
LOW
[golang.org/x/crypto] SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.
CVE-2026-33816
🚨 CRITICAL
[github.com/jackc/pgx/v5] Memory-safety vulnerability in github.com/jackc/pgx/v5.
CVE-2026-41889
🚨 CRITICAL
[github.com/jackc/pgx/v5] SQL injection vulnerability exists when using the non-default simple protocol with dollar-quoted string literals containing attacker-controllable placeholder-like text. This allows remote code execution through malicious SQL injection.
AIKIDO-2026-11039
🚨 CRITICAL
[golang.org/x/net] Punycode validation bypass in idna functions allows ASCII-only labels to be incorrectly accepted, enabling privilege escalation when hostname validation is bypassed through encoded domain names. An attacker could exploit inconsistent validation between encoded and decoded hostnames to circumvent access controls.
AIKIDO-2026-11035
MEDIUM
[golang.org/x/net] Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.
AIKIDO-2026-11036
MEDIUM
[golang.org/x/net] The HTML parser mishandled character references in DOCTYPE nodes, causing them to be incorrectly rendered. This can lead to XSS when rendering parsed HTML.
AIKIDO-2026-11038
MEDIUM
[golang.org/x/net] The HTML parser mishandled certain HTML elements in foreign content, causing them to be incorrectly rendered. This can lead to XSS when rendering parsed HTML.
AIKIDO-2026-11040
MEDIUM
[golang.org/x/net] Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.
AIKIDO-2026-11037
LOW
[golang.org/x/net] Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service.
CVE-2026-33186
🚨 CRITICAL
[google.golang.org/grpc] Improper HTTP/2 :path validation allows requests without leading slashes to bypass path-based authorization interceptors, enabling attackers to circumvent "deny" rules and access restricted gRPC methods. This authorization bypass affects servers using path-based RBAC policies with fallback "allow" rules.
GHSA-q382-vc8q-7jhj
HIGH
[github.com/modelcontextprotocol/go-sdk] The JSON parser treated keys with null Unicode characters as equivalent to base strings, allowing duplicate keys to override intended MCP messages and bypass intermediary inspection. This created cross-implementation inconsistency with other SDKs that use case-sensitive parsing, potentially enabling security-boundary confusion.
CVE-2026-34742
HIGH
[github.com/modelcontextprotocol/go-sdk] The MCP Go SDK lacks DNS rebinding protection by default on HTTP-based localhost servers without authentication, allowing malicious websites to bypass same-origin policy and invoke tools or access resources. This enables attackers to perform unauthorized actions on behalf of users in affected deployments.
CVE-2026-27896
HIGH
[github.com/modelcontextprotocol/go-sdk] The SDK's JSON parsing was case-insensitive, violating JSON-RPC 2.0 specification and allowing malicious peers to send protocol messages with non-standard field casing that bypass intermediary inspection. This has been fixed with case-sensitive JSON decoding.
CVE-2026-33252
MEDIUM
[github.com/modelcontextprotocol/go-sdk] The Streamable HTTP transport fails to validate the Origin header and Content-Type on POST requests, allowing cross-site requests to trigger MCP operations. In deployments without authorization, this enables arbitrary websites to execute tools on a local server via CSRF attacks.
CVE-2026-33997
HIGH
[github.com/docker/docker] A privilege validation bypass in plugin installation allows the daemon to incorrectly accept unapproved privilege sets due to flawed comparison logic, enabling plugins to gain unintended elevated permissions.
CVE-2026-34040
HIGH
[github.com/docker/docker] Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows attackers to bypass authorization plugins (AuthZ). This issue has been patched in version 29.3.1.
CVE-2026-29181
HIGH
[go.opentelemetry.io/otel] Baggage header extraction parses multiple header values independently and aggregates them, allowing attackers to amplify CPU and memory usage by sending many baggage headers despite per-value size limits. This results in a denial-of-service vulnerability through resource exhaustion.
CVE-2026-24051
HIGH
[go.opentelemetry.io/otel/sdk] Path hijacking vulnerability in resource detection code allows local attackers to execute arbitrary code by manipulating the PATH environment variable on macOS systems.
CVE-2026-39883
HIGH
[go.opentelemetry.io/otel/sdk] A PATH hijacking vulnerability exists in the BSD kenv command execution, allowing attackers to execute arbitrary code by manipulating the PATH environment variable. This enables remote code execution on BSD and Solaris platforms.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants