Nixpkgs security tracker

Login with GitHub

Details of issue NIXPKGS-2026-1278

NIXPKGS-2026-1278
published 1 month, 3 weeks ago
Permalink CVE-2026-7020
5.6 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): Low (L)
  • Integrity (I): Low (L)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): Low (L)
  • Modified Availability (MA): Low (L)
updated 1 month, 3 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 3 weeks ago
  • @LeSuisse ignored
    22 packages
    • gollama
    • ollama-cpu
    • nextjs-ollama-llm-ui
    • python312Packages.ollama
    • python313Packages.ollama
    • python314Packages.ollama
    • python312Packages.llm-ollama
    • python313Packages.llm-ollama
    • python314Packages.llm-ollama
    • haskellPackages.ollama-haskell
    • gnomeExtensions.ollama-indicator
    • python312Packages.langchain-ollama
    • python313Packages.langchain-ollama
    • python314Packages.langchain-ollama
    • home-assistant-component-tests.ollama
    • tests.home-assistant-components.ollama
    • python312Packages.llama-index-llms-ollama
    • python313Packages.llama-index-llms-ollama
    • python312Packages.llama-index-embeddings-ollama
    • python313Packages.llama-index-embeddings-ollama
    • pkgsRocm.python3Packages.llama-index-llms-ollama
    • pkgsRocm.python3Packages.llama-index-embeddings-ollama
    1 month, 3 weeks ago
  • @LeSuisse restored package ollama-cpu 1 month, 3 weeks ago
  • @LeSuisse accepted 1 month, 3 weeks ago
  • @LeSuisse published on GitHub 1 month, 3 weeks ago
Ollama Tensor Model Transfer transfer.go digestToPath path traversal

A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote. This attack is characterized by high complexity. The exploitability is reported as difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

Ollama
  • ==0.20.0
  • ==0.20.2
  • ==0.20.1

Matching in nixpkgs

pkgs.ollama

Get up and running with large language models locally

pkgs.ollama-cpu

Get up and running with large language models locally

pkgs.ollama-cuda

Get up and running with large language models locally, using CUDA for NVIDIA GPU acceleration

pkgs.ollama-rocm

Get up and running with large language models locally, using ROCm for AMD GPU acceleration

pkgs.ollama-vulkan

Get up and running with large language models locally, using Vulkan for generic GPU acceleration

pkgs.pkgsRocm.ollama

Get up and running with large language models locally, using ROCm for AMD GPU acceleration

Ignored packages (21)

Package maintainers

PoC: https://github.com/davidrxchester/CVE-2026-7020