Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

Debian opam Important Directory Traversal Fix DSA-6386-1 CVE-2026-57825

debian
Calendar Grey July 10, 2026
Debian Logo
Upgrade your Debian opam packages to fix a directory traversal issue reported by Kate Deplaix and classified as important.
Kate Deplaix reported that .install file directives were insufficiently restricted in OPAM, a package manager for OCaml

Summary

For the stable distribution (trixie), this problem has been fixed in
version 2.3.0-1+deb13u2.

We recommend that you upgrade your opam packages.

For the detailed security status of opam please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/opam

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
important
Lowest
Low
Medium
High
Critical

Package: opam
CVE ID: CVE-2026-57825

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.