golang.org/x/crypto/ssh: coordinated disclosure opens with a CVSS-10 public-key auth bypass plus knownhosts and FIDO bypasses
x/crypto/ssh is the SSH implementation sitting under most of the Go ecosystem, so a coordinated disclosure here is wide by default. The headline is CVE-2026-46595 (CVSS 10.0): VerifiedPublicKeyCallback skips permission enforcement, so a server authenticating through that callback accepts a key it should have rejected — a straight public-key authentication bypass. Two more bypasses ship in the same batch: knownhosts ignores @revoked markers so a revoked host key still verifies (CVE-2026-42508, 9.1), and the FIDO/U2F physical-presence check can be skipped (CVE-2026-39831, 9.1). All fixed in 0.52.0 — bump golang.org/x/crypto to >= 0.52.0 across every Go service and rebuild; `go list -m all | grep golang.org/x/crypto` is tonight's grep because this is a transitive dependency in bastions, CI runners, and countless internal tools.