CVE-2026-0810

EUVD-2026-4669
A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid non-UTF8 characters. This issue violates the internal safety invariants of the `TimeBuf` component, leading to undefined behavior when these malformed strings are subsequently processed. This could potentially result in application instability or other unforeseen consequences.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
redhatCNA
7.1 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
Affected Products (NVD)
VendorProductVersion
gitoxidelabsgix-date
𝑥
< 0.12.0
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
gitoxidelabsgitoxide
𝑥
< 0.12.0
CNA
Debian logo
Debian Releases
Debian Product
Codename
rust-gix-date
forky
vulnerable
sid
vulnerable
trixie
no-dsa
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
cargo
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
cargo-c
Amazon Linux 2023
0:0.10.19-1.amzn2023.0.1
fixed
cargo-c-debuginfo
Amazon Linux 2023
0:0.10.19-1.amzn2023.0.1
fixed
cargo-debuginfo
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
clippy
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
clippy-debuginfo
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-analyzer
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-analyzer-debuginfo
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-cargo-c-debugsource
Amazon Linux 2023
0:0.10.19-1.amzn2023.0.1
fixed
rust-debugger-common
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-debuginfo
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-debugsource
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-doc
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-gdb
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-lldb
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-src
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-std-static
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-std-static-wasm32-unknown-unknown
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-std-static-wasm32-wasip1
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-toolset
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rust-toolset-srpm-macros
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rustfmt
Amazon Linux 2
0:1.94.0-1.amzn2.0.2
fixed
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed
rustfmt-debuginfo
Amazon Linux 2023
0:1.94.0-1.amzn2023.0.2
fixed