—
GO-2026-5319
Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots in github.com/lxc/incus
Details
Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots in github.com/lxc/incus
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/lxc/incus
Introduced in:
0 No fixed version published yet for github.com/lxc/incus (go modules). Pin to a known-safe version or switch to an alternative.
Go / github.com/lxc/incus/v6
Introduced in:
0 No fixed version published yet for github.com/lxc/incus/v6 (go modules). Pin to a known-safe version or switch to an alternative.
Go / github.com/lxc/incus/v7
Introduced in:
0 Fixed in: 7.0.0 Fix
go get github.com/lxc/incus/v7@v7.0.0 References
- https://github.com/lxc/incus/security/advisories/GHSA-c839-4qxr-j4x3 [ADVISORY]
- https://nvd.nist.gov/vuln/detail/CVE-2026-40243 [ADVISORY]
- https://github.com/lxc/incus/blob/v6.22.0/internal/server/network/ovn/ovn_icnb.go [WEB]
- https://github.com/lxc/incus/blob/v6.22.0/internal/server/network/ovn/ovn_icsb.go [WEB]
- https://github.com/lxc/incus/blob/v6.22.0/internal/server/network/ovn/ovn_nb.go [WEB]
- https://github.com/lxc/incus/blob/v6.22.0/internal/server/network/ovn/ovn_sb.go [WEB]