CVE-2025-14542 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): HIGH Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH updated 2 days, 4 hours ago by @fricklerhandwerk Activity log Created automatic suggestion 3 days, 6 hours ago @fricklerhandwerk dismissed 2 days, 4 hours ago Command execution in python-utcp allows attackers to achieve remote code execution when fetching a remote Manual from a malicious endpoint The vulnerability arises when a client fetches a tools’ JSON specification, known as a Manual, from a remote Manual Endpoint. While a provider may initially serve a benign manual (e.g., one defining an HTTP tool call), earning the clients’ trust, a malicious provider can later change the manual to exploit the client. Affected products utcp <1.1.0 Matching in nixpkgs pkgs.strutcpp Collection of string utilities nixos-25.11 0-unstable-2025-07-21 nixpkgs-25.11-darwin 0-unstable-2025-07-21 Package maintainers: 1 @SchweGELBin Jannik Michael Abram <abramjannikmichael06@gmail.com>
pkgs.strutcpp Collection of string utilities nixos-25.11 0-unstable-2025-07-21 nixpkgs-25.11-darwin 0-unstable-2025-07-21
CVE-2025-13742 updated 1 week, 1 day ago by @Erethon Activity log Created automatic suggestion 2 weeks, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago Limited HTML injection in emails Emails sent by pretix can utilize placeholders that will be filled with customer data. For example, when {name} is used in an email template, it will be replaced with the buyer's name for the final email. If the name of the attendee contained HTML or Markdown formatting, this was rendered as HTML in the resulting email. This way, a user could inject links or other formatted text through a maliciously formatted name. Since pretix applies a strict allow list approach to allowed HTML tags, this could not be abused for XSS or similarly dangerous attack chains. However, it can be used to manipulate emails in a way that makes user-provided content appear in a trustworthy and credible way, which can be abused for phishing. Affected products pretix <2025.7.0 <2025.10.0 <2025.8.0 <2025.9.0 Matching in nixpkgs pkgs.pretix Ticketing software that cares about your event—all the way nixos-25.05 ??? nixos-25.05-small 2025.4.0 nixos-unstable 2025.6.0 nixos-unstable-small 2024.10.0 nixpkgs-unstable 2025.4.0 pkgs.pretix-banktool Automatic bank data upload tool for pretix (with FinTS client) nixos-25.05 ??? nixos-25.05-small 1.1.0 nixos-unstable 1.1.0 nixos-unstable-small 1.1.0 nixpkgs-unstable 1.1.0 Package maintainers: 1 @mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
pkgs.pretix Ticketing software that cares about your event—all the way nixos-25.05 ??? nixos-25.05-small 2025.4.0 nixos-unstable 2025.6.0 nixos-unstable-small 2024.10.0 nixpkgs-unstable 2025.4.0
pkgs.pretix-banktool Automatic bank data upload tool for pretix (with FinTS client) nixos-25.05 ??? nixos-25.05-small 1.1.0 nixos-unstable 1.1.0 nixos-unstable-small 1.1.0 nixpkgs-unstable 1.1.0
CVE-2024-21907 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH updated 1 week, 1 day ago by @Erethon Activity log Created automatic suggestion 2 weeks, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago @Erethon accepted as draft 1 week, 1 day ago @Erethon dismissed 1 week, 1 day ago Improper Handling of Exceptional Conditions in Newtonsoft.Json Newtonsoft.Json before version 13.0.1 is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exception resulting in denial of service. Depending on the usage of the library, an unauthenticated and remote attacker may be able to cause the denial of service condition. Affected products Newtonsoft.Json <13.0.1 Matching in nixpkgs pkgs.dotnetPackages.NewtonsoftJson nixos-25.05 ??? nixos-25.05-small 11.0.2 nixos-unstable 11.0.2 nixos-unstable-small 11.0.2 nixpkgs-unstable 11.0.2
pkgs.dotnetPackages.NewtonsoftJson nixos-25.05 ??? nixos-25.05-small 11.0.2 nixos-unstable 11.0.2 nixos-unstable-small 11.0.2 nixpkgs-unstable 11.0.2
CVE-2025-49974 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): NONE updated 5 months, 3 weeks ago by @fricklerhandwerk Activity log Created automatic suggestion 5 months, 3 weeks ago @fricklerhandwerk dismissed 5 months, 3 weeks ago WordPress UpStream: a Project Management Plugin for WordPress plugin <= 2.1.0 - Broken Access Control Vulnerability Missing Authorization vulnerability in upstreamplugin UpStream: a Project Management Plugin for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects UpStream: a Project Management Plugin for WordPress: from n/a through 2.1.0. Affected products upstream =<2.1.0 Matching in nixpkgs pkgs.git-upstream Shortcut for `git push --set-upstream` nixos-25.05 ??? nixos-25.05-small 1.6.0 nixos-unstable 1.2.0 nixos-unstable-small 1.2.0 nixpkgs-unstable 1.6.0 pkgs.lomiri.qtmir QPA plugin to make Qt a Mir server nixos-25.05 ??? nixos-25.05-small 0.8.0-unstable-2024-03-06 nixos-unstable 0.8.0-unstable-2024-03-06 nixos-unstable-small 0.8.0-unstable-2024-03-06 nixpkgs-unstable 0.8.0-unstable-2024-03-06 pkgs.lomiri.qtmir.x86_64-linux QPA plugin to make Qt a Mir server nixos-unstable ??? nixos-unstable-small 0.8.0-unstable-2024-03-06 pkgs.lomiri.qtmir.aarch64-linux QPA plugin to make Qt a Mir server nixos-unstable ??? nixos-unstable-small 0.8.0-unstable-2024-03-06 pkgs.emacsPackages.melpa-upstream-visit nixos-unstable 20130720.1033 nixos-unstable-small 20130720.1033 nixpkgs-unstable 20130720.1033 pkgs.tests.haskell.upstreamStackHpackVersion Test that the stack in Nixpkgs uses the same version of Hpack as the upstream stack release nixos-25.05 ??? nixos-25.05-small 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixos-unstable 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixos-unstable-small 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixpkgs-unstable 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 Package maintainers: 3 @OPNA2608 Cosima Neidahl <opna2608@protonmail.com> @9999years Rebecca Turner <rbt@fastmail.com> @cdepillabout Dennis Gosnell <cdep.illabout@gmail.com>
pkgs.git-upstream Shortcut for `git push --set-upstream` nixos-25.05 ??? nixos-25.05-small 1.6.0 nixos-unstable 1.2.0 nixos-unstable-small 1.2.0 nixpkgs-unstable 1.6.0
pkgs.lomiri.qtmir QPA plugin to make Qt a Mir server nixos-25.05 ??? nixos-25.05-small 0.8.0-unstable-2024-03-06 nixos-unstable 0.8.0-unstable-2024-03-06 nixos-unstable-small 0.8.0-unstable-2024-03-06 nixpkgs-unstable 0.8.0-unstable-2024-03-06
pkgs.lomiri.qtmir.x86_64-linux QPA plugin to make Qt a Mir server nixos-unstable ??? nixos-unstable-small 0.8.0-unstable-2024-03-06
pkgs.lomiri.qtmir.aarch64-linux QPA plugin to make Qt a Mir server nixos-unstable ??? nixos-unstable-small 0.8.0-unstable-2024-03-06
pkgs.emacsPackages.melpa-upstream-visit nixos-unstable 20130720.1033 nixos-unstable-small 20130720.1033 nixpkgs-unstable 20130720.1033
pkgs.tests.haskell.upstreamStackHpackVersion Test that the stack in Nixpkgs uses the same version of Hpack as the upstream stack release nixos-25.05 ??? nixos-25.05-small 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixos-unstable 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixos-unstable-small 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57 nixpkgs-unstable 3.5.1-hpack-0.38.0-3c7ec163b41accac6cb7904ba3906e269b503777a3171d9b8694f0f0fb592a57
CVE-2025-49964 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): NONE updated 5 months, 3 weeks ago by @fricklerhandwerk Activity log Created automatic suggestion 5 months, 3 weeks ago @fricklerhandwerk dismissed 5 months, 3 weeks ago WordPress ClipLink plugin <= 1.1 - Cross Site Request Forgery (CSRF) Vulnerability Cross-Site Request Forgery (CSRF) vulnerability in indgeek ClipLink allows Cross Site Request Forgery. This issue affects ClipLink: from n/a through 1.1. Affected products cliplink =<1.1 Matching in nixpkgs pkgs.emacsPackages.org-cliplink nixos-unstable 20201126.1020 nixos-unstable-small 20201126.1020 nixpkgs-unstable 20201126.1020
pkgs.emacsPackages.org-cliplink nixos-unstable 20201126.1020 nixos-unstable-small 20201126.1020 nixpkgs-unstable 20201126.1020
CVE-2025-3931 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH updated 7 months ago by @LeSuisse Activity log Created automatic suggestion 7 months ago @LeSuisse dismissed 7 months ago Yggdrasil: local privilege escalation in yggdrasil A flaw was found in Yggdrasil, which acts as a system broker, allowing the processes to communicate to other children's "worker" processes through the DBus component. Yggdrasil creates a DBus method to dispatch messages to workers. However, it misses authentication and authorization checks, allowing every system user to call it. One available Yggdrasil worker acts as a package manager with capabilities to create and enable new repositories and install or remove packages. This flaw allows an attacker with access to the system to leverage the lack of authentication on the dispatch message to force the Yggdrasil worker to install arbitrary RPM packages. This issue results in local privilege escalation, enabling the attacker to access and modify sensitive system data. Affected products yggdrasil <0.4.7 * rhc-worker-playbook Matching in nixpkgs pkgs.yggdrasil An experiment in scalable routing as an encrypted IPv6 overlay network nixos-unstable 0.5.10 nixos-unstable-small 0.5.10 nixpkgs-unstable 0.5.10 Package maintainers: 4 @ehmry Emery Hemingway <ehmry@posteo.net> @gazally Gemini Lasswell <gazally@runbox.com> @Lassulus Lassulus <lassulus@gmail.com> @peigongdsd Peilin Lee <peigong2013@outlook.com>
pkgs.yggdrasil An experiment in scalable routing as an encrypted IPv6 overlay network nixos-unstable 0.5.10 nixos-unstable-small 0.5.10 nixpkgs-unstable 0.5.10
CVE-2025-31846 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): NONE updated 8 months, 1 week ago by @LeSuisse Activity log Created automatic suggestion 8 months, 2 weeks ago @LeSuisse dismissed 8 months, 1 week ago WordPress Theater for WordPress plugin <= 0.18.7 - Broken Access Control vulnerability Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Theater for WordPress: from n/a through 0.18.7. Affected products theatre =<0.18.7 Matching in nixpkgs pkgs.haskellPackages.theatre Minimalistic actor library nixos-unstable 1.0.0.2 nixos-unstable-small 1.0.0.2 nixpkgs-unstable 1.0.0.2
pkgs.haskellPackages.theatre Minimalistic actor library nixos-unstable 1.0.0.2 nixos-unstable-small 1.0.0.2 nixpkgs-unstable 1.0.0.2
CVE-2025-31538 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW updated 8 months, 1 week ago by @LeSuisse Activity log Created automatic suggestion 8 months, 2 weeks ago @LeSuisse dismissed 8 months, 1 week ago WordPress Checklist plugin <= 1.1.9 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in checklistcom Checklist allows Stored XSS. This issue affects Checklist: from n/a through 1.1.9. Affected products checklist =<1.1.9 Matching in nixpkgs
CVE-2025-31549 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW updated 8 months, 1 week ago by @LeSuisse Activity log Created automatic suggestion 8 months, 2 weeks ago @Srylax accepted as draft 8 months, 2 weeks ago @Srylax marked as untriaged 8 months, 2 weeks ago @LeSuisse dismissed 8 months, 1 week ago WordPress Fusion plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Agency Dominion Inc. Fusion allows DOM-Based XSS. This issue affects Fusion: from n/a through 1.6.3. Affected products fusion =<1.6.3 Matching in nixpkgs pkgs.datafusion-cli cli for Apache Arrow DataFusion nixos-unstable 43.0.0 nixos-unstable-small 43.0.0 nixpkgs-unstable 43.0.0 pkgs.lxgw-fusionkai Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One nixos-unstable 24.134 nixos-unstable-small 24.134 nixpkgs-unstable 24.134 pkgs.finalfusion-utils Utility for converting, quantizing, and querying word embeddings nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python311Packages.datafusion Extensible query execution framework nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.python312Packages.datafusion Extensible query execution framework nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.haskellPackages.fusion-plugin GHC plugin to make stream fusion more predictable nixos-unstable 0.2.7 nixos-unstable-small 0.2.7 nixpkgs-unstable 0.2.7 pkgs.python311Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python311Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.python312Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python312Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.haskellPackages.fusion-plugin-types Types for the fusion-plugin package nixos-unstable 0.1.0 nixos-unstable-small 0.1.0 nixpkgs-unstable 0.1.0 pkgs.vimPlugins.nvim-treesitter-parsers.fusion nixos-unstable ??? nixos-unstable-small nixpkgs-unstable pkgs.haskellPackages.fusion-plugin.x86_64-linux GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7 pkgs.python312Packages.k-diffusion.x86_64-linux Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 pkgs.haskellPackages.fusion-plugin.aarch64-linux GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7 pkgs.haskellPackages.fusion-plugin.x86_64-darwin GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7 pkgs.python312Packages.k-diffusion.aarch64-linux Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 pkgs.python312Packages.k-diffusion.x86_64-darwin Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 pkgs.haskellPackages.fusion-plugin.aarch64-darwin GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7 pkgs.haskellPackages.fusion-plugin-types.x86_64-linux Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0 pkgs.haskellPackages.fusion-plugin-types.aarch64-linux Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0 pkgs.haskellPackages.fusion-plugin-types.x86_64-darwin Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0 pkgs.haskellPackages.fusion-plugin-types.aarch64-darwin Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0 Package maintainers: 4 @cpcloud Phillip Cloud @Mic92 Jörg Thalheim <joerg@thalheim.io> @hellodword hellodword @happysalada Raphael Megzari <raphael@megzari.com>
pkgs.datafusion-cli cli for Apache Arrow DataFusion nixos-unstable 43.0.0 nixos-unstable-small 43.0.0 nixpkgs-unstable 43.0.0
pkgs.lxgw-fusionkai Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One nixos-unstable 24.134 nixos-unstable-small 24.134 nixpkgs-unstable 24.134
pkgs.finalfusion-utils Utility for converting, quantizing, and querying word embeddings nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1
pkgs.python311Packages.datafusion Extensible query execution framework nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0
pkgs.python312Packages.datafusion Extensible query execution framework nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0
pkgs.haskellPackages.fusion-plugin GHC plugin to make stream fusion more predictable nixos-unstable 0.2.7 nixos-unstable-small 0.2.7 nixpkgs-unstable 0.2.7
pkgs.python311Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python311Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1
pkgs.python312Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python312Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1
pkgs.haskellPackages.fusion-plugin-types Types for the fusion-plugin package nixos-unstable 0.1.0 nixos-unstable-small 0.1.0 nixpkgs-unstable 0.1.0
pkgs.vimPlugins.nvim-treesitter-parsers.fusion nixos-unstable ??? nixos-unstable-small nixpkgs-unstable
pkgs.haskellPackages.fusion-plugin.x86_64-linux GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7
pkgs.python312Packages.k-diffusion.x86_64-linux Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1
pkgs.haskellPackages.fusion-plugin.aarch64-linux GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7
pkgs.haskellPackages.fusion-plugin.x86_64-darwin GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7
pkgs.python312Packages.k-diffusion.aarch64-linux Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1
pkgs.python312Packages.k-diffusion.x86_64-darwin Karras et al. (2022) diffusion models for PyTorch nixos-unstable 0.1.1.post1
pkgs.haskellPackages.fusion-plugin.aarch64-darwin GHC plugin to make stream fusion more predictable nixos-unstable ??? nixpkgs-unstable 0.2.7
pkgs.haskellPackages.fusion-plugin-types.x86_64-linux Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0
pkgs.haskellPackages.fusion-plugin-types.aarch64-linux Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0
pkgs.haskellPackages.fusion-plugin-types.x86_64-darwin Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0
pkgs.haskellPackages.fusion-plugin-types.aarch64-darwin Types for the fusion-plugin package nixos-unstable ??? nixpkgs-unstable 0.1.0
CVE-2025-3155 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE updated 8 months, 1 week ago by @LeSuisse Activity log Created automatic suggestion 8 months, 1 week ago @LeSuisse dismissed 8 months, 1 week ago CVE Program Container None Affected products yelp * <42.2-8 yelp-xsl * Matching in nixpkgs pkgs.yelp Help viewer in Gnome nixos-unstable 42.2 nixos-unstable-small 42.2 nixpkgs-unstable 42.2 pkgs.yelp-xsl Yelp's universal stylesheets for Mallard and DocBook nixos-unstable 42.1 nixos-unstable-small 42.1 nixpkgs-unstable 42.1 pkgs.yelp-tools Small programs that help you create, edit, manage, and publish your Mallard or DocBook documentation nixos-unstable 42.1 nixos-unstable-small 42.1 nixpkgs-unstable 42.1 Package maintainers: 5 @hedning Tor Hedin Brønner <torhedinbronner@gmail.com> @domenkozar Domen Kozar <domen@dev.si> @bobby285271 Bobby Rong <rjl931189261@126.com> @jtojnar Jan Tojnar <jtojnar@gmail.com> @dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
pkgs.yelp-xsl Yelp's universal stylesheets for Mallard and DocBook nixos-unstable 42.1 nixos-unstable-small 42.1 nixpkgs-unstable 42.1
pkgs.yelp-tools Small programs that help you create, edit, manage, and publish your Mallard or DocBook documentation nixos-unstable 42.1 nixos-unstable-small 42.1 nixpkgs-unstable 42.1