Jörg Thalheim

2 exploits Active since Apr 2025
CVE-2025-32435 WRITEUP LOW WRITEUP
Hydra - Info Disclosure
Hydra is a Continuous Integration service for Nix based projects. Evaluation of untrusted non-flake nix code could potentially access secrets that are accessible by the hydra user/group. This should not affect the signing keys, that are owned by the hydra-queue-runner and hydra-www users respectively.
CVSS 2.6
CVE-2025-54864 WRITEUP HIGH WRITEUP
Nixos Hydra < 2025-08-12 - Missing Authentication
Hydra is a continuous integration service for Nix based projects. Prior to commit f7bda02, /api/push-github and /api/push-gitea are called by the corresponding forge without HTTP Basic authentication. Both forges do however feature HMAC signing with a secret key. Triggering an evaluation can be very taxing on the infrastructure when large evaluations are done, introducing potential denial of service attacks on the host running the evaluator. This issue has been patched by commit f7bda02. A workaround involves blocking /api/push-github and /api/push-gitea via a reverse proxy.
CVSS 7.5