Nixpkgs security tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2026-21726

5.3 MEDIUM

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

updated 1 week, 6 days ago by @LeSuisse Activity log

Created suggestion 1 week, 6 days ago
@LeSuisse ignored
2 packages
- loki-tool
- loki
1 week, 6 days ago

Loki Path Traversal - CVE-2021-36156 Bypass

The CVE-2021-36156 fix validates the namespace parameter for path traversal sequences after a single URL decode, by double encoding, an attacker can read files at the Ruler API endpoint /loki/api/v1/rules/{namespace} Thanks to Prasanth Sundararajan for reporting this vulnerability.

References

https://grafana.com/security/security-advisories/cve-2026-21726 vendor-advisory

Affected products

Loki

<3.5.9

Matching in nixpkgs

pkgs.grafana-loki

Like Prometheus, but for logs

nixos-unstable 3.7.1
- nixpkgs-unstable 3.7.1
- nixos-unstable-small 3.7.1
nixos-25.11 3.6.3
- nixos-25.11-small 3.6.3
- nixpkgs-25.11-darwin 3.6.3

pkgs.python312Packages.python-logging-loki

Python logging handler for Loki

nixos-25.11 0.3.1
- nixos-25.11-small 0.3.1
- nixpkgs-25.11-darwin 0.3.1

pkgs.python313Packages.python-logging-loki

Python logging handler for Loki

nixos-unstable 0.3.1
- nixpkgs-unstable 0.3.1
- nixos-unstable-small 0.3.1
nixos-25.11 0.3.1
- nixos-25.11-small 0.3.1
- nixpkgs-25.11-darwin 0.3.1

pkgs.python314Packages.python-logging-loki

Python logging handler for Loki

nixos-unstable 0.3.1
- nixpkgs-unstable 0.3.1
- nixos-unstable-small 0.3.1

pkgs.grafanaPlugins.grafana-lokiexplore-app

Browse Loki logs without the need for writing complex queries

nixos-unstable 2.0.1
- nixpkgs-unstable 2.0.1
- nixos-unstable-small 2.0.3
nixos-25.11 1.0.31
- nixos-25.11-small 1.0.31
- nixpkgs-25.11-darwin 1.0.31

pkgs.python312Packages.pysigma-backend-loki

Library to support the loki backend for pySigma

nixos-25.11 0.12.4
- nixos-25.11-small 0.12.4
- nixpkgs-25.11-darwin 0.12.4

pkgs.python313Packages.pysigma-backend-loki

Library to support the loki backend for pySigma

nixos-unstable 0.13.0
- nixpkgs-unstable 0.13.0
- nixos-unstable-small 0.13.0
nixos-25.11 0.12.4
- nixos-25.11-small 0.12.4
- nixpkgs-25.11-darwin 0.12.4

pkgs.python314Packages.pysigma-backend-loki

Library to support the loki backend for pySigma

nixos-unstable 0.13.0
- nixpkgs-unstable 0.13.0
- nixos-unstable-small 0.13.0

Ignored packages (2)

pkgs.loki

C++ library of designs, containing flexible implementations of common design patterns and idioms

nixos-unstable 0.1.7
- nixpkgs-unstable 0.1.7
- nixos-unstable-small 0.1.7
nixos-25.11 0.1.7
- nixos-25.11-small 0.1.7
- nixpkgs-25.11-darwin 0.1.7

pkgs.loki-tool

Tool for custom firmware on AT&T/Verizon Samsung and LG devices

nixos-unstable 0-unstable-2016-06-27
- nixpkgs-unstable 0-unstable-2016-06-27
- nixos-unstable-small 0-unstable-2016-06-27

Package maintainers

@mmahut Marek Mahut <marek.mahut@gmail.com>
@globin Robin Gloster <mail@glob.in>
@emilylange Emily Lange <nix@emilylange.de>
@ryan4yin Ryan Yin <xiaoyin_c@qq.com>
@loispostula Loïs Postula <lois@postu.la>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@Moraxyc Moraxyc Xu <i@qaq.li>
@peterromfeldhk Peter Romfeld <peter.romfeld.hk@gmail.com>