GHSA-wppj-c6mr-83jj
Suggest an improvement- Source
- https://github.com/advisories/GHSA-wppj-c6mr-83jj
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/05/GHSA-wppj-c6mr-83jj/GHSA-wppj-c6mr-83jj.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-wppj-c6mr-83jj
- Aliases
-
- CVE-2026-44112
- Downstream
- Published
- 2026-05-04T20:57:50Z
- Modified
- 2026-05-12T17:16:37.836039Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- 6.0 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root
- Details
-
Summary
OpenShell FS bridge writes stay pinned to the sandbox mount root
Affected Packages / Versions
- Package: openclaw (npm)
- Affected versions: <= 2026.4.21
- Fixed version: 2026.4.22
Impact
A time-of-check/time-of-use race around OpenShell sandbox filesystem writes could let a symlink swap redirect a write outside the intended local mount root.
Fix
OpenShell write paths now validate the canonical target against the mount root, reject unsafe symlink parents and symlink leaves for writes, and use root-scoped write helpers before syncing to the remote sandbox.
Fix Commit(s)
- 7be82d4fd1193bcb7e44ee38838f00bf924ffa76
Verification
- The fix commit is contained in the public v2026.4.22 tag.
- openclaw@2026.4.22 is published on npm and the compiled package contains the fix.
- Focused regression coverage for this path passed before publication.
Thanks @VladimirEliTokarev for reporting.
- Database specific
{ "github_reviewed_at": "2026-05-04T20:57:50Z", "github_reviewed": true, "cwe_ids": [ "CWE-367" ], "nvd_published_at": null, "severity": "MODERATE" }- References
-
- https://github.com/openclaw/openclaw/security/advisories/GHSA-wppj-c6mr-83jj
- https://nvd.nist.gov/vuln/detail/CVE-2026-44112
- https://github.com/openclaw/openclaw/commit/7be82d4fd1193bcb7e44ee38838f00bf924ffa76
- https://github.com/openclaw/openclaw
- https://www.vulncheck.com/advisories/openclaw-symlink-swap-race-condition-in-openshell-fs-bridge-writes
Affected packages
npm / openclaw
Package
- Name
- openclaw
- View open source insights on deps.dev
- Purl
- pkg:npm/openclaw