Skip to content

CVE lookup

CVE-2026-44471

Pruva has a verified reproduction for CVE-2026-44471: gitoxide (gix-fs): symlink worktree escape on checkout writes files outside the worktree. The canonical evidence record is REPRO-2026-00155.

REPRO

REPRO-2026-00155

Package

gix-fs · cargo

Severity

HIGH

Status

published