UBUNTU-CVE-2026-59831

Source
https://ubuntu.com/security/CVE-2026-59831
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-59831.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-59831
Upstream
Published
2026-07-10T00:00:00Z
Modified
2026-07-11T00:15:19.546871490Z
Severity
  • 4.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

GitHub CLI (gh) is GitHub’s official command line tool. From 2.10.0 through 2.95.0, connecting to a malicious Codespace with gh codespace jupyter can allow command execution because the command opens a JupyterLab URL supplied by a process inside the Codespace without validating that it is a loopback HTTP or HTTPS address, allowing a crafted vscode:// or vscode-insiders:// URL to be handed to VS Code. This issue is fixed in version 2.96.0.

References

Affected packages

Ubuntu:22.04:LTS / gh

Package

Name
gh
Purl
pkg:deb/ubuntu/gh?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.4.0+dfsg1-1
2.4.0+dfsg1-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "gh",
            "binary_version": "2.4.0+dfsg1-2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-59831.json"

Ubuntu:Pro:24.04:LTS / gh

Package

Name
gh
Purl
pkg:deb/ubuntu/gh?arch=source&distro=esm-apps%2Fnoble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.27.0+dfsg1-1build1
2.30.0-2
2.35.0-1
2.40.1+dfsg1-1
2.42.1-1
2.43.1-1
2.44.1-1
2.44.1-2
2.45.0-1
2.45.0-1build1
2.45.0-1ubuntu0.1
2.45.0-1ubuntu0.2
2.45.0-1ubuntu0.2+esm1
2.45.0-1ubuntu0.2+esm2
2.45.0-1ubuntu0.3
2.45.0-1ubuntu0.3+esm1
2.45.0-1ubuntu0.3+esm2
2.45.0-1ubuntu0.3+esm3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "gh",
            "binary_version": "2.45.0-1ubuntu0.3+esm3"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-59831.json"

Ubuntu:Pro:26.04:LTS / gh

Package

Name
gh
Purl
pkg:deb/ubuntu/gh?arch=source&distro=esm-apps%2Fresolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.46.0-3
2.46.0-4
2.46.0-4ubuntu0.26.04.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "gh",
            "binary_version": "2.46.0-4ubuntu0.26.04.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-59831.json"