NIXPKGS-2026-0157

GitHub issue published on 7 Feb 2026

Permalink CVE-2026-2062

updated 2 weeks ago by @LeSuisse Activity log

Created automatic suggestion 2 weeks ago
@LeSuisse removed package open5gs-webui 2 weeks ago
@LeSuisse accepted 2 weeks ago
@LeSuisse published on GitHub 2 weeks ago

Open5GS PGW S5U Address sgwc_sxa_handle_session_modification_response null pointer dereference

A vulnerability was identified in Open5GS up to 2.7.6. This affects the function sgwc_s5c_handle_modify_bearer_response/sgwc_sxa_handle_session_modification_response of the component PGW S5U Address Handler. The manipulation leads to null pointer dereference. The attack can be initiated remotely. The exploit is publicly available and might be used. The identifier of the patch is f1bbd7b57f831e2a070780a7d8d5d4c73babdb59. Applying a patch is the recommended action to fix this issue.

Affected products

Open5GS

==2.7.3
==2.7.5
==2.7.0
==2.7.4
==2.7.1
==2.7.6
==2.7.2

Matching in nixpkgs

pkgs.open5gs

4G/5G core network components

nixos-unstable 2.7.6
- nixpkgs-unstable 2.7.6
- nixos-unstable-small 2.7.6
nixos-25.11 2.7.6
- nixos-25.11-small 2.7.6
- nixpkgs-25.11-darwin 2.7.6

Package maintainers

@Bot-wxt1221 Bot-wxt1221 <3264117476@qq.com>

Upstream patch: https://github.com/open5gs/open5gs/commit/f1bbd7b57f831e2a070780a7d8d5d4c73babdb59

Nixpkgs Security Tracker

Details of issue NIXPKGS-2026-0157

Affected products

Matching in nixpkgs

pkgs.open5gs

Package maintainers