<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Pip - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/pip/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Tue, 14 Jul 2026 10:01:37 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/pip/feed.xml" rel="self" type="application/rss+xml"/><item><title>Analyzing Supply Chain Risks in Python Package Installation</title><link>https://feed.craftedsignal.io/briefs/2026-07-python-supply-chain-risk/</link><pubDate>Tue, 14 Jul 2026 10:01:37 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-python-supply-chain-risk/</guid><description>Threat actors, including TeamPCP, are increasingly using malicious Python packages in supply chain attacks to compromise developer devices and infrastructure by exploiting trust in Python's packaging ecosystem, leading to automatic payload execution during installation.</description><content:encoded><![CDATA[<p>Python's widespread adoption and extensive third-party library ecosystem have made its packaging infrastructure an attractive target for threat actors engaging in supply chain attacks. Malicious Python packages, distributed via official repositories like PyPI, version control systems such as GitHub and GitLab, or custom web servers, are increasingly common. These attacks exploit the inherent trust in the Python packaging ecosystem, enabling payloads to execute automatically during the installation process without direct user interaction. This presents a significant risk to developer devices and organizational infrastructure that rely on Python. For example, TeamPCP has actively used misused Python modules in supply chain attacks to compromise Microsoft's GitHub subsidiary, highlighting the real-world impact of such threats. This brief details the layers of Python package installation, from hosting and distribution formats to the installation process itself, to help defenders understand the various vectors for compromise.</p>
<h2 id="impact">Impact</h2>
<p>Successful supply chain attacks exploiting Python packages can lead to significant compromise of developer workstations and organizational infrastructure. Attackers can gain initial access, establish persistence, and execute arbitrary code, potentially leading to data exfiltration, further network compromise, or the introduction of backdoors into development environments. The widespread use of Python across data science, AI, and backend projects means a large number of development environments and production systems are at risk. The increasing trend of published malware advisories related to the Python package ecosystem, with Pip-related advisories representing 17% of all GitHub advisories in 2025, indicates a growing and targeted threat landscape.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Enable comprehensive logging for <code>pip</code> installations and Python package management activities across all development and production environments to identify suspicious package installations or modifications.</li>
<li>Implement dependency auditing tools to regularly scan Python projects for known malicious packages and vulnerabilities, leveraging the <code>pip</code> environment variable <code>PIP_CONFIG_FILE</code> for centralized configuration.</li>
<li>Enforce strict version pinning strategies for all Python dependencies to prevent automatic updates to potentially compromised package versions.</li>
<li>Utilize installation-time controls, such as sandboxed environments or package integrity checks, to mitigate the risk of malicious code execution during <code>pip install</code> commands.</li>
<li>Review and control access to custom Python package repositories, ensuring that any <code>pip --index-url</code> or <code>pip --extra-index-url</code> configurations point to trusted sources.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">threat</category><category>supply-chain</category><category>python</category><category>pypi</category><category>software-security</category></item><item><title>Open Babel Heap Buffer Overflow in ChemKin Parser (CVE-2025-10997)</title><link>https://feed.craftedsignal.io/briefs/2026-07-open-babel-heap-overflow/</link><pubDate>Fri, 03 Jul 2026 13:01:12 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-open-babel-heap-overflow/</guid><description>A heap buffer overflow vulnerability (CVE-2025-10997) in Open Babel's ChemKin parser allows an attacker to achieve memory corruption when a victim processes a specially crafted ChemKin file, potentially leading to denial of service or arbitrary code execution.</description><content:encoded><![CDATA[<p>A memory-safety vulnerability, identified as CVE-2025-10997, has been discovered in Open Babel, a widely used C++ library and command-line tool for chemistry file format conversion. This flaw, reported via OSS-Fuzz, specifically exists within the <code>ChemKinFormat::CheckSpecies</code> function of the ChemKin parser. Attackers can exploit this vulnerability by crafting a malicious ChemKin file that, when processed by a victim using Open Babel components (such as the <code>obabel</code> tool, the <code>OBConversion</code> API, or its language bindings), causes a heap buffer overflow. This leads to memory corruption, potentially resulting in application crashes (Denial of Service) or, under certain conditions, arbitrary code execution. All Open Babel releases up to and including version 3.1.1 are affected; the vulnerability was patched in version 3.2.0, released on 2026-05-26.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>Attacker crafts a malicious ChemKin file specifically designed to contain malformed species records, triggering the heap buffer overflow in <code>ChemKinFormat::CheckSpecies</code>.</li>
<li>The malicious ChemKin file is delivered to the victim, typically via social engineering (e.g., email attachment), malicious download link, or embedding within a seemingly legitimate data set.</li>
<li>The victim interacts with the malicious file, causing it to be processed by an Open Babel component, such as the <code>obabel</code> command-line tool, the <code>OBConversion</code> API, or one of its language bindings (Python, Ruby, Java, etc.).</li>
<li>Open Babel's internal parser, specifically within the <code>ChemKinFormat::CheckSpecies</code> function, attempts to process the malformed species record from the crafted file.</li>
<li>Due to the malformed data, the <code>ChemKinFormat::CheckSpecies</code> function attempts to write data beyond the allocated bounds of a heap-allocated buffer.</li>
<li>This heap buffer overflow corrupts memory, leading to an application crash (Denial of Service) or, under specific conditions, allows for arbitrary code execution on the victim's system.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2025-10997 can lead to severe consequences for systems processing untrusted ChemKin files with affected versions of Open Babel. The primary impact includes denial of service, as the application processing the malicious file will likely crash due to memory corruption. More critically, sophisticated exploitation could lead to arbitrary code execution, granting attackers control over the compromised system. Open Babel is widely integrated, being shipped by Linux distributions and embedded in various services that parse chemical file formats. Organizations using Open Babel in such contexts, especially those handling external or untrusted data, are at risk.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch CVE-2025-10997 by upgrading all instances of Open Babel and its language bindings to version 3.2.0 or later immediately.</li>
<li>Implement strict input validation and sanitization for all ChemKin files processed by applications utilizing Open Babel components to mitigate risks from specially crafted inputs.</li>
<li>Monitor systems that utilize Open Babel for unexpected application crashes or unusual process behavior that could indicate attempted exploitation.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>chemistry</category><category>vulnerability</category><category>buffer-overflow</category><category>memory-corruption</category><category>cve</category></item><item><title>Open Babel PQS coord_file parser suffers from out-of-bounds write vulnerability (CVE-2022-43467)</title><link>https://feed.craftedsignal.io/briefs/2026-07-open-babel-pqs-oob-write/</link><pubDate>Fri, 03 Jul 2026 12:53:09 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-open-babel-pqs-oob-write/</guid><description>A high-severity memory-safety vulnerability (CVE-2022-43467) in Open Babel's PQS `coord_file` parser allows an attacker to achieve an out-of-bounds write by tricking a victim into opening a specially crafted PQS file, potentially leading to arbitrary code execution or denial of service in systems processing untrusted chemistry file formats.</description><content:encoded><![CDATA[<p>A high-severity memory-safety vulnerability, identified as CVE-2022-43467, has been discovered in Open Babel's PQS <code>coord_file</code> parser. This flaw affects all versions up to and including 3.1.1 of the Open Babel library and CLI tool, which is critical for processing various chemistry file formats. Exploitation occurs when a victim processes a specially crafted PQS file, leading to an out-of-bounds write within the <code>coord_file</code> parsing path. This vulnerability was reported by Cisco TALOS and subsequently patched in version 3.2.0, released on 2026-05-26. Given Open Babel's widespread use across Linux distributions and in services that handle untrusted input, this flaw poses a significant risk of arbitrary code execution or denial of service.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker crafts a specially designed PQS file containing a malformed <code>coord_file</code> specifier that targets the vulnerability.</li>
<li>The attacker delivers this malicious PQS file to a target system or user, often via email, download, or integration into a workflow.</li>
<li>A user or automated service on the victim system opens and processes the malicious PQS file using an affected Open Babel component (e.g., <code>obabel</code> CLI tool, <code>OBConversion</code> API, or language bindings).</li>
<li>During the parsing process of the PQS <code>coord_file</code> path, the malformed specifier triggers an out-of-bounds write operation.</li>
<li>This memory corruption overwrites adjacent memory regions, leading to unpredictable program behavior, including crashes.</li>
<li>Successful exploitation can result in application crashes (Denial of Service) or, with further exploitation, arbitrary code execution on the compromised system.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>The vulnerability affects any system or service utilizing Open Babel versions up to 3.1.1 to process PQS files, particularly those that handle untrusted or external input. Open Babel is widely deployed as a C++ library and command-line interface, integrated into Linux distributions and various scientific applications. Successful exploitation of CVE-2022-43467 can lead to service disruption through denial of service (application crashes) or, more severely, arbitrary code execution, allowing attackers to gain control over affected systems. The full scope of potential victims is broad due to the library's foundational role in chemistry informatics.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Immediately update all Open Babel installations to version 3.2.0 or later to patch CVE-2022-43467.</li>
<li>For Python environments, ensure <code>pip/openbabel</code> is updated to a version greater than or equal to 3.2.0.</li>
<li>Implement strict input validation for all PQS files processed by Open Babel components, especially those originating from untrusted sources, to mitigate the risk of malformed file attacks.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>open-babel</category><category>vulnerability</category><category>memory-corruption</category><category>cve</category><category>library</category></item><item><title>Linuxfabrik Monitoring Plugins Local Privilege Escalation via Sudo apt-get</title><link>https://feed.craftedsignal.io/briefs/2026-07-linuxfabrik-lpe/</link><pubDate>Fri, 03 Jul 2026 11:27:55 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-linuxfabrik-lpe/</guid><description>A local privilege escalation vulnerability, CVE-2026-52817, exists in Linuxfabrik Monitoring Plugins within its Debian.sudoers configuration, allowing a pre-compromised `nagios` user to inject arbitrary `apt-get` arguments to execute commands as root and obtain a root shell on affected Debian systems.</description><content:encoded><![CDATA[<p>A significant local privilege escalation (LPE) vulnerability, tracked as CVE-2026-52817, has been identified in Linuxfabrik Monitoring Plugins, specifically affecting installations using the provided <code>Debian.sudoers</code> file. This flaw permits the <code>nagios</code> user, configured to run <code>apt-get</code> via <code>sudo</code> without strict argument enforcement, to inject malicious parameters into the <code>apt-get</code> command. An attacker who has already compromised the <code>nagios</code> account can leverage this to execute arbitrary commands with root privileges, effectively gaining a root shell. The vulnerability impacts environments where the <code>Linuxfabrik Monitoring Plugins</code> are deployed on Debian systems with the vulnerable <code>sudoers</code> configuration, particularly versions of <code>pip/linuxfabrik-lib</code> up to and including 5.0.0. This LPE poses a severe risk as it allows an attacker to escalate from a potentially low-privileged service account to full system compromise.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker gains initial access to a Debian system, compromising the <code>nagios</code> user account (e.g., via a compromised monitoring agent or service).</li>
<li>The attacker identifies that the <code>nagios</code> user has <code>sudo</code> privileges for <code>apt-get</code> commands, specifically due to the permissive entry in <code>/etc/sudoers.d/Debian.sudoers</code>.</li>
<li>The attacker constructs a malicious <code>apt-get</code> command utilizing the <code>-o</code> option to inject a <code>Pre-Invoke</code> hook.</li>
<li>The attacker executes <code>sudo apt-get update -o APT::Update::Pre-Invoke::=&quot;/bin/sh&quot;</code> as the <code>nagios</code> user.</li>
<li><code>sudo</code> executes <code>apt-get update</code> with root privileges.</li>
<li>During the <code>apt-get</code> update process, the <code>APT::Update::Pre-Invoke</code> option causes <code>/bin/sh</code> to be executed with root privileges before the update officially starts.</li>
<li>The attacker gains a fully functional root shell, bypassing standard privilege separation.</li>
<li>The attacker can now execute arbitrary commands, install malicious software, or modify system configurations with administrative privileges.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>This local privilege escalation allows a threat actor to achieve full root access on a compromised Debian system, provided they have already gained initial access to the <code>nagios</code> user account. Successful exploitation means an attacker can move from a potentially isolated monitoring context to complete control over the host system. This can lead to severe data breaches, system integrity compromise, installation of backdoors, further lateral movement within the network, or deployment of ransomware. While the prerequisite of <code>nagios</code> account compromise is a high barrier, the resulting root access represents a critical security failure for affected organizations, potentially affecting any sector utilizing Linuxfabrik Monitoring Plugins on Debian.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li><strong>Patch CVE-2026-52817</strong> by updating <code>pip/linuxfabrik-lib</code> to a version greater than 5.0.0, or apply the recommended <code>sudoers</code> file configuration change mentioned in the advisory immediately.</li>
<li><strong>Deploy the Sigma rule</strong> provided in this brief to your SIEM to detect attempts to exploit CVE-2026-52817.</li>
<li><strong>Review <code>sudoers</code> configurations</strong> across your Linux fleet for overly permissive entries, especially for service accounts, following the principle of least privilege.</li>
<li><strong>Enable process command-line logging</strong> (e.g., via Auditd or Sysmon for Linux) to ensure the necessary telemetry for detecting the malicious <code>apt-get</code> execution.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>privilege-escalation</category><category>linux</category><category>sudo</category><category>cve</category></item></channel></rss>