Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestions search

Untriaged

Filter by:

With package: nebula

Found 1 matching suggestions

View:

Compact

Detailed

Permalink CVE-2026-25793

created 2 months, 1 week ago Activity log

Created suggestion 2 months, 1 week ago

Nebula Has Possible Blocklist Bypass via ECDSA Signature Malleability

Nebula is a scalable overlay networking tool. In versions from 1.7.0 to 1.10.2, when using P256 certificates (which is not the default configuration), it is possible to evade a blocklist entry created against the fingerprint of a certificate by using ECDSA Signature Malleability to use a copy of the certificate with a different fingerprint. This issue has been patched in version 1.10.3.

References

https://github.com/slackhq/nebula/security/advisories/GHSA-69x3-g4r3-p962 x_refsource_CONFIRM
https://github.com/slackhq/nebula/commit/f573e8a26695278f9d71587390fbfe0d0933aa21 x_refsource_MISC

Affected products

nebula

==>= 1.7.0, < 1.10.3

Matching in nixpkgs

pkgs.nebula

Overlay networking tool with a focus on performance, simplicity and security

nixos-unstable 1.9.6
- nixpkgs-unstable 1.10.0
- nixos-unstable-small 1.10.0
nixos-25.11 1.10.0
- nixpkgs-25.11-darwin 1.10.0

pkgs.nebula-sans

Versatile, modern, humanist sans-serif with a neutral aesthetic, designed for legibility in both digital and print applications

nixos-unstable 1.010
- nixpkgs-unstable 1.010
- nixos-unstable-small 1.010
nixos-25.11 1.010
- nixpkgs-25.11-darwin 1.010

pkgs.ant-nebula-theme

Nebula variant of the Ant theme

nixos-unstable 1.3.0
- nixpkgs-unstable 1.3.0
- nixos-unstable-small 1.3.0
nixos-25.11 1.3.0
- nixpkgs-25.11-darwin 1.3.0

pkgs.nebula-lighthouse-service

Public Nebula VPN Lighthouse Service

nixos-unstable -
- nixpkgs-unstable 2.0.2
- nixos-unstable-small 2.0.2
nixos-25.11 2.0.2
- nixpkgs-25.11-darwin 2.0.2

pkgs.terraform-providers.opennebula

None

nixos-unstable 1.5.0

pkgs.python312Packages.nebula3-python

Client API of Nebula Graph in Python

nixos-unstable nebula3-python-3.8.3
nixos-25.11 nebula3-python-3.8.3
- nixpkgs-25.11-darwin nebula3-python-3.8.3

pkgs.terraform-providers.opennebula_opennebula

None

nixos-unstable -
- nixpkgs-unstable 1.5.0
- nixos-unstable-small 1.5.0
nixos-25.11 1.5.0
- nixpkgs-25.11-darwin 1.5.0

pkgs.python312Packages.llama-index-graph-stores-nebula

LlamaIndex Graph Store Integration for Nebula

nixos-unstable 0.4.2
nixos-25.11 0.5.1
- nixpkgs-25.11-darwin 0.5.1

Package maintainers

@alexarice Alex Rice <alexrice999@hotmail.co.uk>
@Br1ght0ne Oleksii Filonenko <brightone@protonmail.com>
@numinit Morgan Jones <me+nixpkgs@numin.it>
@colemickens Cole Mickens <cole.mickens@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@bloominstrong bloominstrong <github@mail.bloominstrong.net>

1