Coordinated Disclosure Timeline

• 2025-01-13: Reported via Private Vulnerability Reporting in GitHub
• 2026-03-05: Advisory published

Summary

Checking out of untrusted code in benchmarks.yml workflow may lead to code execution in privileged runner

Project

Mesa

Tested Version

commit 1ce3f37

Details

Checking out of untrusted code in benchmarks.yml workflow may lead to code execution in privileged runner (GHSL-2025-009)

The benchmarks.yml workflow checks out code from the PR branch, it then calls pip install, as well as a python script global_benchmark.py. However, as these scripts are based on code on the PR branch, a malicious setup.py or a benchmarks/global_benchmark.py could be created in the PR branch, allowing it to run arbitrary code in the runner, which has write privileges to issues and pull-requests.

Impact

This issue may lead to code execution in runner with write privileges.

CVE

• CVE-2026-29075

Credit

This issue was discovered by CodeQL and reported by GHSL team member @m-y-mo (Man Yue Mo).

Contact

You can contact the GHSL team at securitylab@github.com, please include a reference to GHSL-2025-009 in any communication regarding this issue.