Nixpkgs security tracker

Untriaged

Permalink CVE-2026-10028

4.3 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): None (N)
Integrity (I): None (N)
Availability (A): Low (L)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): None (N)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): Low (L)

created 2 days, 17 hours ago Activity log

Created suggestion 2 days, 17 hours ago

Glib-networking: infinite loop in glib-networking gnutls backend allows remote denial of service via circular certificate chain

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular issuer relationships, can cause an infinite loop during certificate verification. The unbounded traversal consumes excessive CPU resources, leading to a denial of service for the affected process or worker.

References

https://access.redhat.com/security/cve/CVE-2026-10028 x_refsource_REDHATvdb-entry
RHBZ#2465152 x_refsource_REDHATissue-tracking
https://gitlab.gnome.org/GNOME/glib-networking/-/work_items/231

Affected products

glib-networking

Matching in nixpkgs

pkgs.glib-networking

Network-related giomodules for glib

nixos-unstable 2.80.1
- nixpkgs-unstable 2.80.1
- nixos-unstable-small 2.80.1
nixos-25.11 2.80.1
- nixos-25.11-small 2.80.1
- nixpkgs-25.11-darwin 2.80.1

Package maintainers

@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>

Dismissed

(exclusively hosted service)

Permalink CVE-2025-54914

10.0 CRITICAL

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Changed (C)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): High (H)
Exploit Code Maturity (E): Unproven (U)
Remediation Level (RL): Official Fix (O)
Report Confidence (RC): Confirmed (C)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Changed (C)
Modified Integrity (MI): High (H)
Modified Availability (MA): High (H)

updated 2 months, 4 weeks ago by @ADMIN Activity log

Created suggestion 3 months, 2 weeks ago
@ADMIN dismissed 2 months, 4 weeks ago

Azure Networking Elevation of Privilege Vulnerability

References

Azure Networking Elevation of Privilege Vulnerability patchvendor-advisory

Affected products

Networking

==-
==N/A

Matching in nixpkgs

pkgs.s6-networking

Suite of small networking utilities for Unix systems

nixos-unstable 2.7.1.0
- nixpkgs-unstable 2.7.1.0
- nixos-unstable-small 2.7.1.0
nixos-25.11 2.7.1.0
- nixos-25.11-small 2.7.1.0
- nixpkgs-25.11-darwin 2.7.1.0

pkgs.glib-networking

Network-related giomodules for glib

nixos-unstable 2.80.1
- nixpkgs-unstable 2.80.1
- nixos-unstable-small 2.80.1
nixos-25.11 2.80.1
- nixos-25.11-small 2.80.1
- nixpkgs-25.11-darwin 2.80.1

pkgs.networking-ts-cxx

Experimental implementation of the C++ Networking Technical Specification

nixos-unstable 2019-02-27
- nixpkgs-unstable 2019-02-27
- nixos-unstable-small 2019-02-27
nixos-25.11 2019-02-27
- nixos-25.11-small 2019-02-27
- nixpkgs-25.11-darwin 2019-02-27

pkgs.gamenetworkingsockets

GameNetworkingSockets is a basic transport layer for games

nixos-unstable 1.4.1
- nixpkgs-unstable 1.4.1
- nixos-unstable-small 1.4.1
nixos-25.11 1.4.1
- nixos-25.11-small 1.4.1
- nixpkgs-25.11-darwin 1.4.1

pkgs.s6-networking-man-pages

Port of the documentation for the s6-networking suite to mdoc

nixos-unstable 2.7.0.4.1
- nixpkgs-unstable 2.7.0.4.1
- nixos-unstable-small 2.7.0.4.1
nixos-25.11 2.7.0.4.1
- nixos-25.11-small 2.7.0.4.1
- nixpkgs-25.11-darwin 2.7.0.4.1

pkgs.skawarePackages.s6-networking

Suite of small networking utilities for Unix systems

nixos-unstable 2.7.1.0
- nixpkgs-unstable 2.7.1.0
- nixos-unstable-small 2.7.1.0
nixos-25.11 2.7.1.0
- nixos-25.11-small 2.7.1.0
- nixpkgs-25.11-darwin 2.7.1.0

pkgs.haskellPackages.gogol-servicenetworking

Google Service Networking SDK

nixos-unstable 1.0.0
- nixpkgs-unstable 1.0.0
- nixos-unstable-small 1.0.0
nixos-25.11 1.0.0
- nixos-25.11-small 1.0.0
- nixpkgs-25.11-darwin 1.0.0

pkgs.skawarePackages.s6-networking-man-pages

Port of the documentation for the s6-networking suite to mdoc

nixos-unstable 2.7.0.4.1
- nixpkgs-unstable 2.7.0.4.1
- nixos-unstable-small 2.7.0.4.1
nixos-25.11 2.7.0.4.1
- nixos-25.11-small 2.7.0.4.1
- nixpkgs-25.11-darwin 2.7.0.4.1

Package maintainers

@sternenseemann Lukas Epple <sternenseemann@systemli.org>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
@bhipple Benjamin Hipple <bhipple@protonmail.com>
@pmahoney Patrick Mahoney <pat@polycrystal.org>
@alyssais Alyssa Ross <hi@alyssa.is>
@Profpatsch Profpatsch <mail@profpatsch.de>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.glib-networking

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.s6-networking

pkgs.glib-networking

pkgs.networking-ts-cxx

pkgs.gamenetworkingsockets

pkgs.s6-networking-man-pages

pkgs.skawarePackages.s6-networking

pkgs.haskellPackages.gogol-servicenetworking

pkgs.skawarePackages.s6-networking-man-pages

Package maintainers