UBUNTU-CVE-2026-58203

Source
https://ubuntu.com/security/CVE-2026-58203
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-58203.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-58203
Upstream
Published
2026-07-06T16:16:00Z
Modified
2026-07-09T17:17:12.900655432Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

pydantic-settings provides settings management using Pydantic. From 2.12.0 until 2.14.2, NestedSecretsSettingsSource reads secret values from files in a configured secretsdir. When secretsnestedsubdir=True, a directory entry inside secretsdir that is a symbolic link pointing outside secretsdir is followed, so files outside the configured directory are read into settings values. The same code path bypasses the documented secretsdirmaxsize protection. An attacker or lower-privileged component able to influence entries in the configured secrets directory (for example, a writable or shared secrets mount) can turn this into an unintended local file read into settings and can defeat the advertised loading-size cap. This vulnerability is fixed in 2.14.2.

References

Affected packages

Ubuntu:25.10 / pydantic-settings

Package

Name
pydantic-settings
Purl
pkg:deb/ubuntu/pydantic-settings?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.8.1-1
2.8.1-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "python3-pydantic-settings",
            "binary_version": "2.8.1-2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-58203.json"

Ubuntu:26.04:LTS / pydantic-settings

Package

Name
pydantic-settings
Purl
pkg:deb/ubuntu/pydantic-settings?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.8.1-2
2.12.0-2
2.13.0-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "python3-pydantic-settings",
            "binary_version": "2.13.0-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-58203.json"