Nixpkgs security tracker
NIXPKGS-2026-0254
GitHub issue
published 3 months, 4 weeks ago
Permalink
CVE-2026-25949
7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
- @LeSuisse ignored package traefik-certs-dumper
- @LeSuisse accepted
- @LeSuisse published on GitHub
Traefik: TCP readTimeout bypass via STARTTLS on Postgres
Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.8, there is a potential vulnerability in Traefik managing STARTTLS requests. An unauthenticated client can bypass Traefik entrypoint respondingTimeouts.readTimeout by sending the 8-byte Postgres SSLRequest (STARTTLS) prelude and then stalling, causing connections to remain open indefinitely, leading to a denial of service. This vulnerability is fixed in 3.6.8.
References
-
https://github.com/traefik/traefik/security/advisories/GHSA-89p3-4642-cr2w x_refsource_CONFIRM
-
https://github.com/traefik/traefik/releases/tag/v3.6.8 x_refsource_MISC
Affected products
traefik
- ==< 3.6.8
Package maintainers
-
@vdemeester Vincent Demeester <vincent@sbr.pm>
-
@djds djds <git@djds.dev>