Nixpkgs security tracker

Untriaged

Permalink CVE-2026-42789

7.0 HIGH

CVSS version (CVSS): 4.0
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Attack Requirement (AT): Present (P)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Vulnerable System Impact Confidentiality (VC): Low (L)
Vulnerable System Impact Integrity (VI): Low (L)
Vulnerable System Impact Availability (VA): None (N)
Subsequent System Impact Confidentiality (SC): High (H)
Subsequent System Impact Integrity (SI): High (H)
Subsequent System Impact Availability (SA): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Attack Requirement (MAT): Present (P)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
Modified Vulnerable System Impact Integrity (MVI): Low (L)
Modified Vulnerable System Impact Availability (MVA): None (N)
Modified Subsequent System Impact Confidentiality (MSC): High (H)
Modified Subsequent System Impact Integrity (MSI): High (H)
Modified Subsequent System Impact Availability (MSA): Negligible (N)
Safety (S): Not Defined (X)
Automatable (AU): Not Defined (X)
Recovery (R): Not Defined (X)
Value Density (V): Not Defined (X)
Vulnerability Response Effort (RE): Not Defined (X)
Provider Urgency (U): Not Defined (X)
Confidentiality Req. (CR): Not Defined (X)
Integrity Req. (IR): Not Defined (X)
Availability Req. (AR): Not Defined (X)
Exploit Maturity (E): Not Defined (X)

created 4 weeks ago Activity log

Created suggestion 4 weeks ago

Non-CA certificate accepted as intermediate issuer in public_key path validation

Improper Following of a Certificate's Chain of Trust vulnerability in Erlang OTP public_key (pubkey_cert module) allows a non-CA certificate to be accepted as an intermediate issuer, enabling certificate chain forgery. In lib/public_key/src/pubkey_cert.erl, pubkey_cert:validate_extensions/7 contains two flaws that together allow a certificate with basicConstraints cA:false and no keyUsage extension to be used as an intermediate issuer in a chain passed to public_key:pkix_path_validation/3: the cA:false clause recurses into the remaining extensions without rejecting the certificate when it is in issuer position, and the keyUsage check only fires when the extension is present, so a certificate lacking keyUsage entirely bypasses the keyCertSign enforcement. Any party holding an end-entity certificate with basicConstraints cA:false and no keyUsage extension, issued by any CA in the victim's trust store, can use that certificate's private key to sign forged leaf certificates for arbitrary identities. public_key:pkix_path_validation/3 accepts the resulting chain, and by extension every TLS or mTLS endpoint built on the OTP ssl application that relies on the default verifier is affected, including server identity verification on the client side and client certificate verification on mTLS servers. This issue affects OTP from OTP 17.0 before OTP 26.2.5.21, 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 0.22 before 1.15.1.7, 1.17.1.3, 1.20.3.1, and 1.21.1.

References

https://github.com/erlang/otp/security/advisories/GHSA-c99q-jmpx-v8qq relatedvendor-advisory
https://cna.erlef.org/cves/CVE-2026-42789.html related
https://osv.dev/vulnerability/EEF-CVE-2026-42789 related
https://www.erlang.org/doc/system/versions.html#order-of-versions x_version-scheme
https://github.com/erlang/otp/commit/471cd2f664300a95353c467873800bbe706005db patch
https://github.com/erlang/otp/commit/59c8d824386b2eb1614ff9340624843ef6aca0fd patch

Affected products

erlang/otp

public_key

Matching in nixpkgs

pkgs.cotp

Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality

nixos-unstable 1.9.10
- nixpkgs-unstable 1.9.10
- nixos-unstable-small 1.9.10

pkgs.otpw

One-time password login package

nixos-unstable 1.5
- nixpkgs-unstable 1.5
- nixos-unstable-small 1.5

pkgs.libcotp

C library that generates TOTP and HOTP

nixos-unstable 3.1.1
- nixpkgs-unstable 3.1.1
- nixos-unstable-small 3.1.1

pkgs.mintotp

Minimal TOTP generator

nixos-unstable 0.3.0
- nixpkgs-unstable 0.3.0
- nixos-unstable-small 0.3.0

pkgs.otpauth

Google Authenticator migration decoder

nixos-unstable 0.6.0
- nixpkgs-unstable 0.6.0
- nixos-unstable-small 0.6.0

pkgs.hotpatch

Hot patching executables on Linux using .so file injection

nixos-unstable 0.2
- nixpkgs-unstable 0.2
- nixos-unstable-small 0.2

pkgs.totp-cli

Authy/Google Authenticator like TOTP CLI tool written in Go

nixos-unstable 1.9.2
- nixpkgs-unstable 1.9.2
- nixos-unstable-small 1.9.2

pkgs.otpclient

Highly secure and easy to use OTP client written in C/GTK that supports both TOTP and HOTP

nixos-unstable 4.2.0
- nixpkgs-unstable 4.2.0
- nixos-unstable-small 4.2.0

pkgs.tpm2-totp

Attest the trustworthiness of a device against a human using time-based one-time passwords

nixos-unstable 0.3.0
- nixpkgs-unstable 0.3.0
- nixos-unstable-small 0.3.0

pkgs.godotpcktool

Standalone tool for extracting and creating Godot .pck files

nixos-unstable 2.2
- nixpkgs-unstable 2.2
- nixos-unstable-small 2.2

pkgs.nitrotpm-tools

Collection of utilities for working with NitroTPM attestation

nixos-unstable 1.1.1
- nixpkgs-unstable 1.1.1
- nixos-unstable-small 1.1.1

pkgs.keepass-otpkeyprov

None

nixos-unstable 2.6
- nixpkgs-unstable 2.6
- nixos-unstable-small 2.6

pkgs.keepass-keetraytotp

None

nixos-unstable 0.108.0
- nixpkgs-unstable 0.108.0
- nixos-unstable-small 0.108.0

pkgs.gnomeExtensions.totp

Generate One-Time Passwords (aka OTP, both TOTP and HOTP) for websites that use Two-Factor Authentication (2FA) like Google, Facebook, Discord, Amazon, Steam, etc.