Nixpkgs security tracker

Untriaged

Permalink CVE-2026-35002

created 2 weeks, 1 day ago

Agno < 2.3.24 field_type Eval Injection Arbitrary Code Execution

Agno versions prior to 2.3.24 contain an arbitrary code execution vulnerability in the model execution component that allows attackers to execute arbitrary Python code by manipulating the field_type parameter passed to eval(). Attackers can influence the field_type value in a FunctionCall to achieve remote code execution.

References

https://github.com/agno-agi/agno/releases/tag/v2.3.24 release-notes
https://github.com/agno-agi/agno/commit/cbf675521d4d2281925a051784a3b94172e56416 patch
https://www.vulncheck.com/advisories/agno-field-type-eval-injection-arbitrary-c… third-party-advisory

Affected products

Agno

<2.3.24
==cbf675521d4d2281925a051784a3b94172e56416

Matching in nixpkgs

pkgs.agnos

Obtains certificates from Let's Encrypt using DNS-01 without the need for API access to the DNS provider

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.iagno

Computer version of the game Reversi, more popularly called Othello

nixos-unstable 3.38.1
- nixpkgs-unstable 3.38.1
- nixos-unstable-small 3.38.1
nixos-25.11 3.38.1
- nixos-25.11-small 3.38.1
- nixpkgs-25.11-darwin 3.38.1

pkgs.nixf-diagnose

CLI wrapper for nixf-tidy with fancy diagnostic output

nixos-unstable 0.1.4
- nixpkgs-unstable 0.1.4
- nixos-unstable-small 0.1.4
nixos-25.11 0.1.4
- nixos-25.11-small 0.1.4
- nixpkgs-25.11-darwin 0.1.4

pkgs.coc-diagnostic

diagnostic-languageserver extension for coc.nvim

nixos-unstable 0-unstable-2025-01-15
- nixpkgs-unstable 0-unstable-2025-01-15
- nixos-unstable-small 0-unstable-2025-01-15
nixos-25.11 0.24.1
- nixos-25.11-small 0.24.1
- nixpkgs-25.11-darwin 0.24.1

pkgs.diagnostic-languageserver

General purpose Language Server that integrate with linter to support diagnostic features

nixos-unstable 1.15.0
- nixpkgs-unstable 1.15.0
- nixos-unstable-small 1.15.0
nixos-25.11 1.15.0
- nixos-25.11-small 1.15.0
- nixpkgs-25.11-darwin 1.15.0

pkgs.vimPlugins.coc-diagnostic

diagnostic-languageserver extension for coc.nvim

nixos-unstable 0-unstable-2025-01-15
- nixpkgs-unstable 0-unstable-2025-01-15
- nixos-unstable-small 0-unstable-2025-01-15
nixos-25.11 0.24.1
- nixos-25.11-small 0.24.1
- nixpkgs-25.11-darwin 0.24.1

pkgs.haskellPackages.castagnoli

Portable CRC-32C

nixos-unstable 0.2.0.2
- nixpkgs-unstable 0.2.0.2
- nixos-unstable-small 0.2.0.2
nixos-25.11 0.2.0.2
- nixos-25.11-small 0.2.0.2
- nixpkgs-25.11-darwin 0.2.0.2