CVE-2024-36050

Published: 2024-05-18T22:15Z

Last Modified: 2024-11-21T09:21Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt