NIXPKGS-2026-0269

GitHub issue published on

Permalink CVE-2026-2517

5.3 MEDIUM

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

updated 2 months, 1 week ago by @LeSuisse Activity log

Created suggestion 2 months, 1 week ago
@LeSuisse ignored package open5gs-webui 2 months, 1 week ago
@LeSuisse accepted 2 months, 1 week ago
@LeSuisse published on GitHub 2 months, 1 week ago

Open5GS SMF types.c ogs_gtp2_parse_tft denial of service

A security flaw has been discovered in Open5GS up to 2.7.6. This vulnerability affects the function ogs_gtp2_parse_tft in the library lib/gtp/v2/types.c of the component SMF. Performing a manipulation of the argument pf[0].content.length results in denial of service. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

References

VDB-346108 | Open5GS SMF types.c ogs_gtp2_parse_tft denial of service vdb-entrytechnical-description
VDB-346108 | CTI Indicators (IOB, IOC, TTP, IOA) signaturepermissions-required
Submit #738332 | Open5GS SMF v2.7.6 Denial of Service third-party-advisory
https://github.com/open5gs/open5gs/issues/4281 issue-tracking
https://github.com/open5gs/open5gs/issues/4281#issue-3807802287 exploitissue-tracking
https://github.com/open5gs/open5gs/ product

Affected products

Open5GS

==2.7.5
==2.7.6
==2.7.1
==2.7.2
==2.7.4
==2.7.3
==2.7.0

Matching in nixpkgs

pkgs.open5gs

4G/5G core network components

nixos-unstable 2.7.6
- nixpkgs-unstable 2.7.6
- nixos-unstable-small 2.7.6
nixos-25.11 2.7.6
- nixos-25.11-small 2.7.6
- nixpkgs-25.11-darwin 2.7.6

Ignored packages (1)

pkgs.open5gs-webui