MidnightBSD

Advisories for gitoxidelabs

CVE-2026-0810

A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid non-UTF8 characters. This issue violates the internal safety invariants of the `TimeBuf` component, leading to undefined behavior when these malformed strings are subsequently processed. This could potentially result in application instability or other unforeseen consequences.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert@redhat.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H 2.5 4.2

Products Affected

Vendor Product Version
gitoxidelabs gix-date *