Nixpkgs security tracker
NIXPKGS-2026-0071
GitHub issue
published 4 months, 3 weeks ago
Permalink
CVE-2026-22045
5.9 MEDIUM
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): High (H)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): High (H)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
- @LeSuisse ignored package traefik-certs-dumper
- @LeSuisse deleted maintainer @NickCao maintainer.delete
- @LeSuisse accepted
- @LeSuisse published on GitHub
Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall
Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the ACME TLS challenge is enabled. A malicious client can open many connections, send a minimal ClientHello with acme-tls/1, then stop responding, leading to denial of service of the entry point. The vulnerability is fixed in 2.11.35 and 3.6.7.
References
-
https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq x_refsource_CONFIRM
-
https://github.com/traefik/traefik/releases/tag/v2.11.35 x_refsource_MISC
-
https://github.com/traefik/traefik/releases/tag/v3.6.7 x_refsource_MISC
Affected products
traefik
- ==>=3.0.0-beta1, < 3.6.7
- ==< 2.11.35
Package maintainers
-
@vdemeester Vincent Demeester <vincent@sbr.pm>
-
@djds djds <git@djds.dev>