Skip to content

Commit 097f944

Browse files
1 parent 7ee17c3 commit 097f944

8 files changed

Lines changed: 96 additions & 14 deletions

File tree

advisories/github-reviewed/2026/05/GHSA-389r-gv7p-r3rp/GHSA-389r-gv7p-r3rp.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-389r-gv7p-r3rp",
4-
"modified": "2026-05-11T14:48:12Z",
4+
"modified": "2026-06-08T23:42:41Z",
55
"published": "2026-05-11T14:48:12Z",
66
"aliases": [
77
"CVE-2026-45022"
@@ -62,6 +62,10 @@
6262
"type": "WEB",
6363
"url": "https://github.com/go-git/go-git/security/advisories/GHSA-389r-gv7p-r3rp"
6464
},
65+
{
66+
"type": "ADVISORY",
67+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45022"
68+
},
6569
{
6670
"type": "PACKAGE",
6771
"url": "https://github.com/go-git/go-git"
@@ -75,6 +79,6 @@
7579
"severity": "HIGH",
7680
"github_reviewed": true,
7781
"github_reviewed_at": "2026-05-11T14:48:12Z",
78-
"nvd_published_at": null
82+
"nvd_published_at": "2026-05-27T15:16:29Z"
7983
}
8084
}

advisories/github-reviewed/2026/05/GHSA-587r-mc96-6f2p/GHSA-587r-mc96-6f2p.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-587r-mc96-6f2p",
4-
"modified": "2026-05-11T14:45:08Z",
4+
"modified": "2026-06-08T23:42:22Z",
55
"published": "2026-05-11T14:45:08Z",
66
"aliases": [
77
"CVE-2026-44971"
@@ -40,6 +40,10 @@
4040
"type": "WEB",
4141
"url": "https://github.com/DataDog/guarddog/security/advisories/GHSA-587r-mc96-6f2p"
4242
},
43+
{
44+
"type": "ADVISORY",
45+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44971"
46+
},
4347
{
4448
"type": "PACKAGE",
4549
"url": "https://github.com/DataDog/guarddog"
@@ -52,6 +56,6 @@
5256
"severity": "HIGH",
5357
"github_reviewed": true,
5458
"github_reviewed_at": "2026-05-11T14:45:08Z",
55-
"nvd_published_at": null
59+
"nvd_published_at": "2026-05-27T15:16:29Z"
5660
}
5761
}

advisories/github-reviewed/2026/05/GHSA-crhj-59gh-8x96/GHSA-crhj-59gh-8x96.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-crhj-59gh-8x96",
4-
"modified": "2026-05-19T15:38:39Z",
4+
"modified": "2026-06-08T23:43:04Z",
55
"published": "2026-05-19T15:38:39Z",
66
"aliases": [
77
"CVE-2026-45571"
@@ -84,6 +84,10 @@
8484
"type": "WEB",
8585
"url": "https://github.com/go-git/go-git/security/advisories/GHSA-crhj-59gh-8x96"
8686
},
87+
{
88+
"type": "ADVISORY",
89+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45571"
90+
},
8791
{
8892
"type": "PACKAGE",
8993
"url": "https://github.com/go-git/go-git"
@@ -96,6 +100,6 @@
96100
"severity": "MODERATE",
97101
"github_reviewed": true,
98102
"github_reviewed_at": "2026-05-19T15:38:39Z",
99-
"nvd_published_at": null
103+
"nvd_published_at": "2026-05-27T15:16:30Z"
100104
}
101105
}

advisories/github-reviewed/2026/05/GHSA-m38g-vww2-mvgx/GHSA-m38g-vww2-mvgx.json

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,11 +1,11 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-m38g-vww2-mvgx",
4-
"modified": "2026-05-07T02:38:02Z",
4+
"modified": "2026-06-08T23:43:27Z",
55
"published": "2026-05-07T02:38:02Z",
66
"aliases": [],
77
"summary": "Talos Linux has a local privilege escalation from untrusted workloads",
8-
"details": "### Summary\n\nA vulnerability in the Linux kernel's algif_aead subsystem (CVE-2026-31431, \"copy.fail\") allows an unprivileged container workload to corrupt arbitrary file page-cache pages via the AF_ALG crypto interface and splice(). On Talos Linux, this vulnerability can be chained into a complete node compromise: an attacker who can schedule a pod on a worker node can, without any elevated Kubernetes permissions, achieve arbitrary code execution as root on the host (by poisoning a binary inside a privileged pod, or poisoning a binary which runs with elevated privileges like a CNI binary), access host filesystem, including node secrets. \n\nThe exploit does not require kernel debugging, race conditions, or any prior privileges beyond the ability to create a pod.\n\n### Impact\n\nAn attacker with the ability to deploy a Kubernetes pod on an affected node can:\n\n1. Corrupt the page-cache of /usr/sbin/nft in the containerd snapshot layer shared between the attacker's pod and the kube-proxy DaemonSet. Because containerd reuses XFS page-cache pages across overlayfs mounts sharing the same lower layer, the corruption is immediately visible to all containers using that image layer — including privileged system DaemonSets.\n2. Execute arbitrary code inside kube-proxy — a privileged DaemonSet running on every node with all Linux capabilities (privileged: true) and host network access — the next time kube-proxy invokes nft as part of its nftables reconciliation loop (typically within seconds).\n3. At this point, an attacker achieved code execution inside a privileged pod, which allows to escape to the host.\n4. Same attack can be planted by infiltrating other binaries running as privileged, for example a CNI plugin.\n\n### Patches\n\nUpgrade to Talos v1.13.0 or Talos v1.12.7 which ships Linux kernel 6.18.25. The kernel fix for CVE-2026-31431 (algif_aead in-place optimization revert) was committed upstream in Linux 6.18.22 and is included in all Talos releases from v1.13.0 and Talos 1.12.7 onwards.\n\n### Workarounds\n\nThere are multiple workarounds available based on the situation, but upgrading is strongly recommended.\n\n#### Option 1 - Change kernel arguments\n\nAdd a kernel argument with `initcall_blacklist=algif_aead_init` by upgrading Talos to the same version.\n\n> Note: this either requires setting `machine.kernel.extraKernelArgs` if using BIOS based boot or upgrading with a new image from factory/imager generated image by setting the extra kernel args. See [Boot Assets](https://docs.siderolabs.com/talos/v1.13/platform-specific-installations/boot-assets)\n\n#### Option 2 - Deploy all workload pods with a seccomp profile denying creating `AF_ALG` socket creation\n\n`patch.yaml`\n\n```yaml\nmachine:\n seccompProfiles:\n - name: copy-fail-block.json\n value:\n defaultAction: SCMP_ACT_ALLOW\n syscalls:\n - names:\n - socket\n action: SCMP_ACT_ERRNO\n args:\n - index: 0\n value: 38\n op: SCMP_CMP_EQ\n```\n\nApply this patch to all machines in the cluster and set this for all the pod spec:\n\n```yaml\n...\nspec:\n securityContext:\n seccompProfile:\n type: Localhost\n localhostProfile: profiles/copy-fail-block.json\n```\n\n#### Option 3 - Block the syscall in runtime with a eBPF program\n\nSee [copy-fail-blocker](https://github.com/cozystack/copy-fail-blocker), this can be applied to a running system without a reboot, but it has to run before any other workloads are scheduled after a reboot. \n\n### Resources\n\n* https://copy.fail/\n* https://xint.io/blog/copy-fail-linux-distributions\n* https://github.com/theori-io/copy-fail-CVE-2026-31431\n* https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC",
8+
"details": "### Summary\n\nA vulnerability in the Linux kernel's algif_aead subsystem (CVE-2026-31431, \"copy.fail\") allows an unprivileged container workload to corrupt arbitrary file page-cache pages via the AF_ALG crypto interface and splice(). On Talos Linux, this vulnerability can be chained into a complete node compromise: an attacker who can schedule a pod on a worker node can, without any elevated Kubernetes permissions, achieve arbitrary code execution as root on the host (by poisoning a binary inside a privileged pod, or poisoning a binary which runs with elevated privileges like a CNI binary), access host filesystem, including node secrets. \n\nThe exploit does not require kernel debugging, race conditions, or any prior privileges beyond the ability to create a pod.\n\n### Impact\n\nAn attacker with the ability to deploy a Kubernetes pod on an affected node can:\n\n1. Corrupt the page-cache of /usr/sbin/nft in the containerd snapshot layer shared between the attacker's pod and the kube-proxy DaemonSet. Because containerd reuses XFS page-cache pages across overlayfs mounts sharing the same lower layer, the corruption is immediately visible to all containers using that image layer — including privileged system DaemonSets.\n2. Execute arbitrary code inside kube-proxy — a privileged DaemonSet running on every node with all Linux capabilities (privileged: true) and host network access — the next time kube-proxy invokes nft as part of its nftables reconciliation loop (typically within seconds).\n3. At this point, an attacker achieved code execution inside a privileged pod, which allows to escape to the host.\n4. Same attack can be planted by infiltrating other binaries running as privileged, for example a CNI plugin.\n\n### Patches\n\nUpgrade to Talos v1.13.0 or Talos v1.12.7 which ships Linux kernel 6.18.25. The kernel fix for CVE-2026-31431 (algif_aead in-place optimization revert) was committed upstream in Linux 6.18.22 and is included in all Talos releases from v1.13.0 and Talos 1.12.7 onwards.\n\n### Workarounds\n\nThere are multiple workarounds available based on the situation, but we really recommend to upgrade.\n\n#### Option 1 - Change kernel arguments\n\nAdd a kernel argument with `initcall_blacklist=algif_aead_init` by upgrading Talos to the same version.\n\n> Note: this either requires setting `machine.kernel.extraKernelArgs` if using BIOS based boot or upgrading with a new image from factory/imager generated image by setting the extra kernel args. See [Boot Assets](https://docs.siderolabs.com/talos/v1.13/platform-specific-installations/boot-assets)\n\n#### Option 2 - Deploy all workload pods with a seccomp profile denying creating `AF_ALG` socket creation\n\n`patch.yaml`\n\n```yaml\nmachine:\n seccompProfiles:\n - name: copy-fail-block.json\n value:\n defaultAction: SCMP_ACT_ALLOW\n syscalls:\n - names:\n - socket\n action: SCMP_ACT_ERRNO\n args:\n - index: 0\n value: 38\n op: SCMP_CMP_EQ\n```\n\nApply this patch to all machines in the cluster and set this for all the pod spec:\n\n```yaml\n...\nspec:\n securityContext:\n seccompProfile:\n type: Localhost\n localhostProfile: profiles/copy-fail-block.json\n```\n\n#### Option 3 - Block the syscall in runtime with a eBPF program\n\nSee [copy-fail-blocker](https://github.com/cozystack/copy-fail-blocker), this can be applied to a running system without a reboot, but it has to run before any other workloads are scheduled after a reboot. \n\n### References\n\n* https://copy.fail/\n* https://xint.io/blog/copy-fail-linux-distributions\n* https://github.com/theori-io/copy-fail-CVE-2026-31431\n* https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC",
99
"severity": [
1010
{
1111
"type": "CVSS_V3",

advisories/github-reviewed/2026/05/GHSA-m5p4-gvpx-4mvr/GHSA-m5p4-gvpx-4mvr.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-m5p4-gvpx-4mvr",
4-
"modified": "2026-05-11T14:43:43Z",
4+
"modified": "2026-06-08T23:42:18Z",
55
"published": "2026-05-11T14:43:43Z",
66
"aliases": [
77
"CVE-2026-44972"
@@ -40,6 +40,10 @@
4040
"type": "WEB",
4141
"url": "https://github.com/DataDog/guarddog/security/advisories/GHSA-m5p4-gvpx-4mvr"
4242
},
43+
{
44+
"type": "ADVISORY",
45+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44972"
46+
},
4347
{
4448
"type": "PACKAGE",
4549
"url": "https://github.com/DataDog/guarddog"
@@ -52,6 +56,6 @@
5256
"severity": "MODERATE",
5357
"github_reviewed": true,
5458
"github_reviewed_at": "2026-05-11T14:43:43Z",
55-
"nvd_published_at": null
59+
"nvd_published_at": "2026-05-27T15:16:29Z"
5660
}
5761
}

advisories/github-reviewed/2026/05/GHSA-m7cr-m3pv-hgrp/GHSA-m7cr-m3pv-hgrp.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-m7cr-m3pv-hgrp",
4-
"modified": "2026-05-19T15:21:01Z",
4+
"modified": "2026-06-08T23:42:58Z",
55
"published": "2026-05-19T15:21:01Z",
66
"aliases": [
77
"CVE-2026-45570"
@@ -84,6 +84,10 @@
8484
"type": "WEB",
8585
"url": "https://github.com/go-git/go-git/security/advisories/GHSA-m7cr-m3pv-hgrp"
8686
},
87+
{
88+
"type": "ADVISORY",
89+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45570"
90+
},
8791
{
8892
"type": "PACKAGE",
8993
"url": "https://github.com/go-git/go-git"
@@ -96,6 +100,6 @@
96100
"severity": "LOW",
97101
"github_reviewed": true,
98102
"github_reviewed_at": "2026-05-19T15:21:01Z",
99-
"nvd_published_at": null
103+
"nvd_published_at": "2026-05-27T15:16:30Z"
100104
}
101105
}

advisories/github-reviewed/2026/05/GHSA-q7rr-3cgh-j5r3/GHSA-q7rr-3cgh-j5r3.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-q7rr-3cgh-j5r3",
4-
"modified": "2026-05-11T14:42:10Z",
4+
"modified": "2026-06-08T23:42:14Z",
55
"published": "2026-05-11T14:42:10Z",
66
"aliases": [
77
"CVE-2026-44902"
@@ -78,6 +78,10 @@
7878
"type": "WEB",
7979
"url": "https://github.com/open-telemetry/opentelemetry-js/security/advisories/GHSA-q7rr-3cgh-j5r3"
8080
},
81+
{
82+
"type": "ADVISORY",
83+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44902"
84+
},
8185
{
8286
"type": "PACKAGE",
8387
"url": "https://github.com/open-telemetry/opentelemetry-js"
@@ -90,6 +94,6 @@
9094
"severity": "HIGH",
9195
"github_reviewed": true,
9296
"github_reviewed_at": "2026-05-11T14:42:10Z",
93-
"nvd_published_at": null
97+
"nvd_published_at": "2026-05-27T15:16:29Z"
9498
}
9599
}
Lines changed: 58 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,58 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-xrvj-v92f-53gj",
4+
"modified": "2026-06-08T23:43:42Z",
5+
"published": "2026-06-08T23:43:42Z",
6+
"aliases": [
7+
"CVE-2026-47734"
8+
],
9+
"summary": "Dulwich has unbounded memory allocation in receive-pack from crafted thin packs",
10+
"details": "## Impact\n\nAn uncontrolled-resource-consumption (memory exhaustion) denial-of-service vulnerability (CWE-400 / CWE-789).\n\nA client with push access could push a tiny crafted thin pack (~174 bytes) whose delta header declares a huge dest_size. When dulwich ingested it via add_thin_pack / apply_delta, it would allocate hundreds of MB of memory based on that attacker-controlled size, with no relationship to the actual bytes received.\n\nWho is impacted: Operators running a Dulwich-based Git server that exposes git-receive-pack (i.e. accepts pushes) -\nfor example via dulwich.server functionality, the HTTP smart server, or anything built on ReceivePackHandler. \n\n## Patches\n\nPatched in 1.2.5.\n\nadd_thin_pack now accepts a max_input_size keyword (bytes; 0/None = unlimited, matching git's semantics), and ReceivePackHandler reads receive.maxInputSize from the repository config and passes it through. Wire reads are counted and a PackInputTooLarge exception is raised once the cap is exceeded - equivalent to git index-pack --max-input-size.\n\nUsers should upgrade to Dulwich 1.2.5 or later and set receive.maxInputSize in their server's repository config to a sane bound for their environment.\n\n## Workarounds\n\nOn unpatched versions, receive.maxInputSize has no effect, so it cannot be used as a workaround. Until upgrading, operators should:\n\n- Restrict dulwich-receive-pack (push) access to trusted, authenticated clients only, or disable it entirely on servers that only need to serve fetches.\n- Run the server under an OS-level memory limit (e.g. ulimit, cgroups/MemoryMax, or a container memory limit) so a malicious push is killed rather than taking down the host.\n\n## Resources\n\n- git's receive.maxInputSize / git index-pack --max-input-size documentation \n- Reported by Liyi, Ziyue, Strick, Maurice and Chenchen @ University of Sydney",
11+
"severity": [
12+
{
13+
"type": "CVSS_V3",
14+
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"
15+
}
16+
],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "PyPI",
21+
"name": "dulwich"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "0.1.0"
29+
},
30+
{
31+
"fixed": "1.2.5"
32+
}
33+
]
34+
}
35+
]
36+
}
37+
],
38+
"references": [
39+
{
40+
"type": "WEB",
41+
"url": "https://github.com/jelmer/dulwich/security/advisories/GHSA-xrvj-v92f-53gj"
42+
},
43+
{
44+
"type": "PACKAGE",
45+
"url": "https://github.com/jelmer/dulwich"
46+
}
47+
],
48+
"database_specific": {
49+
"cwe_ids": [
50+
"CWE-400",
51+
"CWE-789"
52+
],
53+
"severity": "MODERATE",
54+
"github_reviewed": true,
55+
"github_reviewed_at": "2026-06-08T23:43:42Z",
56+
"nvd_published_at": null
57+
}
58+
}

0 commit comments

Comments
 (0)