Nixpkgs security tracker

Login with GitHub

Details of issue NIXPKGS-2026-0950

NIXPKGS-2026-0950
published on
Permalink CVE-2026-35385
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
updated 1 day, 16 hours ago by @LeSuisse Activity log
  • Created automatic suggestion 4 days, 8 hours ago
  • @LeSuisse removed package opensshTest 1 day, 17 hours ago
  • @LeSuisse removed package openssh-askpass 1 day, 17 hours ago
  • @LeSuisse removed package perlPackages.NetOpenSSH 1 day, 17 hours ago
  • @LeSuisse removed package perl5Packages.NetOpenSSH 1 day, 17 hours ago
  • @LeSuisse removed package lxqt.lxqt-openssh-askpass 1 day, 17 hours ago
  • @LeSuisse removed package perl538Packages.NetOpenSSH 1 day, 17 hours ago
  • @LeSuisse removed package perl540Packages.NetOpenSSH 1 day, 16 hours ago
  • @LeSuisse ignored reference https://m… 1 day, 16 hours ago
  • @LeSuisse accepted 1 day, 16 hours ago
  • @LeSuisse published on GitHub 1 day, 16 hours ago
In OpenSSH before 10.3, a file downloaded by scp may …

In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is performed as root with -O (legacy scp protocol) and without -p (preserve mode).

Affected products

OpenSSH
  • <10.3

Matching in nixpkgs

pkgs.openssh_hpn

Implementation of the SSH protocol with high performance networking patches

Ignored packages (7)

Package maintainers