Nealpatel

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined (affected versions not specified) **Description** An issue exists where an SSH server authentication callback returning `PartialSuccessError` with non-nil `Permissions` caused those permissions to be silently discarded. This could lead to the removal of certificate restrictions, such as `force-command`, following the successful completion of a second factor authentication. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined (affected versions not specified) **Description** RSA and DSA public key parsers fail to enforce size limits on key parameters. An unauthenticated client can trigger excessive CPU consumption during signature verification by providing a crafted public key with an oversized modulus or DSA parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.