CVE-2026-24843 is a path traversal vulnerability classified under CWE-22 found in chainguard-dev's melange, a tool used for building apk packages via declarative pipelines. Versions from 0.11.3 up to but not including 0.40.3 are vulnerable. The vulnerability arises in the retrieveWorkspace function, which extracts tar archive entries without validating that the file paths remain within the designated workspace directory. An attacker capable of influencing the tar stream generated by a QEMU guest virtual machine can craft malicious tar entries containing '../' sequences to traverse directories and write files outside the intended workspace on the host system. This can lead to unauthorized file creation or overwriting, potentially compromising system integrity and availability. The attack vector requires local access to the QEMU guest VM and some user interaction but does not require privileges or authentication. The vulnerability has a CVSS 3.1 score of 8.2, indicating high severity, with an attack vector classified as local, low attack complexity, no privileges required, user interaction needed, and scope changed. Although no known exploits are currently reported in the wild, the risk is significant due to the potential for arbitrary file writes on the host. The issue was patched in melange version 0.40.3 by adding proper path validation to ensure tar entries do not escape the workspace directory.

For European organizations, this vulnerability poses a significant risk especially for those utilizing melange in their software build pipelines involving QEMU guest VMs. Successful exploitation can lead to unauthorized modification or creation of files on the host system, potentially allowing attackers to alter build artifacts, inject malicious code, or disrupt build processes. This threatens the integrity and availability of critical development infrastructure. Organizations relying on melange for secure and reproducible builds may face supply chain risks if attackers manipulate build outputs. Additionally, if the host system is shared or part of a larger infrastructure, lateral movement or further compromise could occur. The impact is heightened in environments with sensitive or regulated software development, such as financial, telecommunications, or critical infrastructure sectors prevalent in Europe. The requirement for local access limits remote exploitation but insider threats or compromised guest VMs remain a concern.

The primary mitigation is to upgrade melange to version 0.40.3 or later, where the vulnerability is patched. Organizations should audit their build environments to identify any instances of melange within the affected version range. Restricting and monitoring access to QEMU guest VMs is critical to prevent unauthorized manipulation of tar streams. Implement strict controls on who can influence build inputs and tar archives. Employ runtime monitoring to detect anomalous file writes outside expected directories during builds. Consider sandboxing or isolating build hosts to limit the impact of potential escapes. Additionally, validate all inputs and outputs in build pipelines and use integrity verification mechanisms on build artifacts. Regularly review and update CI/CD pipeline security policies to incorporate lessons from this vulnerability.