Nixpkgs security tracker

Untriaged

Permalink CVE-2026-34742

created 1 month, 3 weeks ago Activity log

Created suggestion 1 month, 3 weeks ago

Model Context Protocol Go SDK: DNS Rebinding Protection Disabled by Default for Servers Running on Localhost

The Go MCP SDK used Go's standard encoding/json. Prior to version 1.4.0, the Model Context Protocol (MCP) Go SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP server is run on localhost without authentication with StreamableHTTPHandler or SSEHandler, a malicious website could exploit DNS rebinding to bypass same-origin policy restrictions and send requests to the local MCP server. This could allow an attacker to invoke tools or access resources exposed by the MCP server on behalf of the user in those limited circumstances. This issue has been patched in version 1.4.0.

References

https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-xw59-hvm2-8pj6 x_refsource_CONFIRM
https://github.com/modelcontextprotocol/go-sdk/pull/760 x_refsource_MISC
https://github.com/modelcontextprotocol/go-sdk/commit/67bd3f2e2b53ce11a16db8d976cdb8ff1e986b6d x_refsource_MISC
https://github.com/modelcontextprotocol/go-sdk/releases/tag/v1.4.0 x_refsource_MISC

Affected products

go-sdk

==< 1.4.0

Matching in nixpkgs

pkgs.google-app-engine-go-sdk

Google App Engine SDK for Go

nixos-unstable 1.9.61
- nixpkgs-unstable 1.9.61
- nixos-unstable-small 1.9.61
nixos-25.11 1.9.61
- nixos-25.11-small 1.9.61
- nixpkgs-25.11-darwin 1.9.61

Package maintainers

@lufia Kyohei Kadota <lufia@lufia.org>

Dismissed

(not in Nixpkgs)

Permalink CVE-2026-33252

7.1 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): None (N)
Integrity (I): High (H)
Availability (A): Low (L)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): None (N)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): High (H)
Modified Availability (MA): Low (L)

updated 2 months ago by @LeSuisse Activity log

Created suggestion 2 months ago
@LeSuisse dismissed (not in Nixpkgs) 2 months ago

MCP Go SDK Allows Cross-Site Tool Execution for HTTP Servers without Authorizatrion

The Go MCP SDK used Go's standard encoding/json. Prior to version 1.4.1, the Go SDK's Streamable HTTP transport accepted browser-generated cross-site `POST` requests without validating the `Origin` header and without requiring `Content-Type: application/json`. In deployments without Authorization, especially stateless or sessionless configurations, this allows an arbitrary website to send MCP requests to a local server and potentially trigger tool execution. Version 1.4.1 contains a patch for the issue.

References

https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-89xv-2j6f-qhc8 x_refsource_CONFIRM
https://github.com/modelcontextprotocol/go-sdk/commit/a433a831d6e5d5ac3b9e625a8095aa8eaa040dfc x_refsource_MISC

Affected products

go-sdk

==< 1.4.1

Matching in nixpkgs

pkgs.google-app-engine-go-sdk

Google App Engine SDK for Go

nixos-unstable 1.9.61
- nixpkgs-unstable 1.9.61
- nixos-unstable-small 1.9.61
nixos-25.11 1.9.61
- nixos-25.11-small 1.9.61
- nixpkgs-25.11-darwin 1.9.61

Package maintainers

@lufia Kyohei Kadota <lufia@lufia.org>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.google-app-engine-go-sdk

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.google-app-engine-go-sdk

Package maintainers