CVE-2026-39828 — When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force — CVE Database · The Intelligence Room