Explore top 10 tips to secure your open-source projects now. Read More
×
Description:
The updated packages fix a security vulnerability:
NestedSecretsSettingsSource follows symlinks outside secrets_dir,
enabling local file read and bypassing secrets_dir_max_size.
(CVE-2026-58203)
- https://bugs.mageia.org/show_bug.cgi?id=35774
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RIQBQN77WGZ57LE5TTARNBPREPF3JLEX/
- https://github.com/pydantic/pydantic-settings/security/advisories/GHSA-4xgf-cpjx-pc3j
- https://www.cve.org/CVERecord?id=CVE-2026-58203
- 10/core/python-pydantic-settings-2.14.2-1.mga10
Publication date:18 Jul 2026
Get the latest Linux and open source security news straight to your inbox.