Nixpkgs security tracker

Untriaged

Permalink CVE-2026-23527

8.9 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): LOW

created 2 months, 4 weeks ago

Request Smuggling (TE.TE) in h3 v1

H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there is a critical HTTP Request Smuggling vulnerability. readRawBody is doing a strict case-sensitive check for the Transfer-Encoding header. It explicitly looks for "chunked", but per the RFC, this header should be case-insensitive. This vulnerability is fixed in 1.15.5.

References

https://github.com/h3js/h3/security/advisories/GHSA-mp2g-9vg9-f4cg x_refsource_CONFIRM
https://github.com/h3js/h3/commit/618ccf4f37b8b6148bea7f36040471af45bfb097 x_refsource_MISC

Affected products

==< 1.15.5

Matching in nixpkgs

pkgs.h3_3

Hexagonal hierarchical geospatial indexing system

nixos-unstable 3.7.2
- nixpkgs-unstable 3.7.2
- nixos-unstable-small 3.7.2
nixos-25.11 3.7.2
- nixpkgs-25.11-darwin 3.7.2

pkgs.h3_4

Hexagonal hierarchical geospatial indexing system

nixos-unstable 4.2.0
- nixpkgs-unstable 4.2.0
- nixos-unstable-small 4.2.0
nixos-25.11 4.3.0
- nixpkgs-25.11-darwin 4.3.0

pkgs.ch341eeprom

Libusb based programming tool for 24Cxx serial EEPROMs using the WinChipHead CH341A IC

nixos-unstable 0-unstable-2024-05-06
- nixpkgs-unstable 0-unstable-2024-05-06
- nixos-unstable-small 0-unstable-2024-05-06
nixos-25.11 0-unstable-2024-05-06
- nixpkgs-25.11-darwin 0-unstable-2024-05-06

pkgs.emiluaPlugins.bech32

Bech32 codec for Emilua

nixos-unstable bech32-1.1.1
- nixpkgs-unstable bech32-1.1.1
- nixos-unstable-small bech32-1.1.1
nixos-25.11 bech32-1.1.1
- nixpkgs-25.11-darwin bech32-1.1.1

pkgs.python312Packages.h3

Hierarchical hexagonal geospatial indexing system

nixos-unstable h3-4.2.2
- nixpkgs-unstable h3-4.2.2
- nixos-unstable-small h3-4.2.2
nixos-25.11 h3-4.3.1
- nixpkgs-25.11-darwin h3-4.3.1

pkgs.python313Packages.h3

Hierarchical hexagonal geospatial indexing system

nixos-unstable h3-4.2.2
- nixpkgs-unstable h3-4.2.2
- nixos-unstable-small h3-4.2.2
nixos-25.11 h3-4.3.1
- nixpkgs-25.11-darwin h3-4.3.1

pkgs.python312Packages.nh3

Python binding to Ammonia HTML sanitizer Rust crate

nixos-unstable nh3-0.2.21
- nixpkgs-unstable nh3-0.2.21
- nixos-unstable-small nh3-0.2.21
nixos-25.11 nh3-0.2.21
- nixpkgs-25.11-darwin nh3-0.2.21

pkgs.python312Packages.qh3

Lightweight QUIC and HTTP/3 implementation in Python

nixos-25.11 qh3-1.5.6
- nixpkgs-25.11-darwin qh3-1.5.6

pkgs.python313Packages.nh3

Python binding to Ammonia HTML sanitizer Rust crate

nixos-unstable nh3-0.2.21
- nixpkgs-unstable nh3-0.2.21
- nixos-unstable-small nh3-0.2.21
nixos-25.11 nh3-0.2.21
- nixpkgs-25.11-darwin nh3-0.2.21

pkgs.python313Packages.qh3

Lightweight QUIC and HTTP/3 implementation in Python

nixos-25.11 qh3-1.5.6
- nixpkgs-25.11-darwin qh3-1.5.6

pkgs.python312Packages.mmh3

Python wrapper for MurmurHash3, a set of fast and robust hash functions

nixos-unstable mmh3-5.2.0
- nixpkgs-unstable mmh3-5.2.0
- nixos-unstable-small mmh3-5.2.0
nixos-25.11 mmh3-5.2.0
- nixpkgs-25.11-darwin mmh3-5.2.0

pkgs.python313Packages.mmh3

Python wrapper for MurmurHash3, a set of fast and robust hash functions

nixos-unstable mmh3-5.2.0
- nixpkgs-unstable mmh3-5.2.0
- nixos-unstable-small mmh3-5.2.0
nixos-25.11 mmh3-5.2.0
- nixpkgs-25.11-darwin mmh3-5.2.0

pkgs.postgresqlPackages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3
nixos-25.11 4.2.3
- nixpkgs-25.11-darwin 4.2.3

pkgs.python312Packages.bech32

None

nixos-unstable bech32-1.2.0
- nixpkgs-unstable bech32-1.2.0
- nixos-unstable-small bech32-1.2.0
nixos-25.11 bech32-1.2.0
- nixpkgs-25.11-darwin bech32-1.2.0

pkgs.python313Packages.bech32

None

nixos-unstable bech32-1.2.0
- nixpkgs-unstable bech32-1.2.0
- nixos-unstable-small bech32-1.2.0
nixos-25.11 bech32-1.2.0
- nixpkgs-25.11-darwin bech32-1.2.0

pkgs.postgresql13Packages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3

pkgs.postgresql14Packages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3
nixos-25.11 4.2.3
- nixpkgs-25.11-darwin 4.2.3

pkgs.postgresql15Packages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3
nixos-25.11 4.2.3
- nixpkgs-25.11-darwin 4.2.3

pkgs.postgresql16Packages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3
nixos-25.11 4.2.3
- nixpkgs-25.11-darwin 4.2.3

pkgs.postgresql18Packages.h3-pg

PostgreSQL bindings for H3, a hierarchical hexagonal geospatial indexing system

nixos-unstable 4.2.3
- nixpkgs-unstable 4.2.3
- nixos-unstable-small 4.2.3
nixos-25.11 4.2.3
- nixpkgs-25.11-darwin 4.2.3

pkgs.python312Packages.cheetah3

Template engine and code generation tool

nixos-unstable cheetah3-3.4.0
- nixpkgs-unstable cheetah3-3.4.0
- nixos-unstable-small cheetah3-3.4.0
nixos-25.11 cheetah3-3.4.0
- nixpkgs-25.11-darwin cheetah3-3.4.0

pkgs.python313Packages.cheetah3

Template engine and code generation tool

nixos-unstable cheetah3-3.4.0
- nixpkgs-unstable cheetah3-3.4.0
- nixos-unstable-small cheetah3-3.4.0
nixos-25.11 cheetah3-3.4.0
- nixpkgs-25.11-darwin cheetah3-3.4.0

pkgs.haskellPackages.ppad-bech32

bech32 and bech32m encoding/decoding, per BIPs 173 & 350

nixos-unstable bech32-0.2.2
- nixpkgs-unstable bech32-0.2.2
- nixos-unstable-small bech32-0.2.2
nixos-25.11 bech32-0.2.3
- nixpkgs-25.11-darwin bech32-0.2.3