CVE-2026-27976

Name of the Vulnerable Software and Affected Versions Zed versions prior to 0.224.4

Description The extension installer in Zed allows tar/gzip downloads. Prior to version 0.224.4, the tar extractor uses async tar::Archive::unpack which creates symlinks from the archive without validation. The path guard writeable path from extension performs lexical prefix checks without resolving symlinks. An attacker can ship a tar archive that creates a symlink inside the extension workdir pointing outside, then writes files through the symlink, causing writes to arbitrary host paths. This escapes the extension sandbox and enables code execution.

Recommendations Update to Zed version 0.224.4 or later.