Nixpkgs Security Tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Automatically generated suggestions

to queue a suggestion for refinement.

to remove a suggestion from the queue.

CVE-2023-43785
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 2 weeks, 1 day ago
Libx11: out-of-bounds memory access in _xkbreadkeysyms()

A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.

Affected products

libX11
  • *
  • <1.8.7

Matching in nixpkgs

pkgs.tests.pkg-config.defaultPkgConfigPackages.x11

Test whether libX11-1.8.12 exposes pkg-config modules x11

CVE-2023-4234
8.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 2 weeks, 1 day ago
Ofono: sms decoder stack-based buffer overflow remote code execution vulnerability within the decode_submit_report() function

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().

Affected products

ofono

Matching in nixpkgs

pkgs.ofono

Infrastructure for building mobile telephony (GSM/UMTS) applications

pkgs.libsForQt5.libqofono

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.libsForQt5.libqofono.x86_64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.libsForQt5.libqofono.aarch64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono.x86_64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono.aarch64-linux

Library for accessing the ofono daemon, and declarative plugin for it

CVE-2023-5380
4.7 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): HIGH
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 2 weeks, 1 day ago
Xorg-x11-server: use-after-free bug in destroywindow

A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is destroyed followed by another window being destroyed.

Affected products

tigervnc
  • *
xorg-x11-server
  • *
xorg-x11-server-Xwayland

Matching in nixpkgs

CVE-2023-2794
8.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 2 weeks, 1 day ago
Ofono: sms decoder stack-based buffer overflow remote code execution vulnerability within the decode_deliver() function

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver().

Affected products

ofono
  • *

Matching in nixpkgs

pkgs.ofono

Infrastructure for building mobile telephony (GSM/UMTS) applications

pkgs.libsForQt5.libqofono

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.libsForQt5.libqofono.x86_64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.libsForQt5.libqofono.aarch64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono.x86_64-linux

Library for accessing the ofono daemon, and declarative plugin for it

pkgs.plasma5Packages.libqofono.aarch64-linux

Library for accessing the ofono daemon, and declarative plugin for it

CVE-2025-12695
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 2 weeks, 1 day ago
Insecure configuration in DSPy lead to arbitrary file read when running untrusted code inside the sandbox

The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class.

Affected products

dspy
  • ==0

Matching in nixpkgs

pkgs.python311Packages.ndspy

Python library for many Nintendo DS file formats

pkgs.python312Packages.ndspy

Python library for many Nintendo DS file formats

pkgs.python313Packages.ndspy

Python library for many Nintendo DS file formats

pkgs.python312Packages.ndspy.x86_64-linux

Python library for many Nintendo DS file formats

pkgs.python312Packages.ndspy.aarch64-linux

Python library for many Nintendo DS file formats

pkgs.python312Packages.ndspy.x86_64-darwin

Python library for many Nintendo DS file formats

pkgs.python312Packages.ndspy.aarch64-darwin

Python library for many Nintendo DS file formats

Package maintainers: 1

CVE-2025-40929
5.6 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 weeks, 2 days ago
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

Affected products

Cpanel-JSON-XS
  • <4.40

Matching in nixpkgs

pkgs.perlPackages.CpanelJSONXS

CPanel fork of JSON::XS, fast and correct serializing

pkgs.perl538Packages.CpanelJSONXS

CPanel fork of JSON::XS, fast and correct serializing

pkgs.perl540Packages.CpanelJSONXS

CPanel fork of JSON::XS, fast and correct serializing

CVE-2024-4340
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 2 weeks, 2 days ago
Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.

Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.

Affected products

sqlparse
  • <0.5.0

Matching in nixpkgs

pkgs.python311Packages.sqlparse

Non-validating SQL parser for Python

pkgs.python312Packages.sqlparse

Non-validating SQL parser for Python

pkgs.python313Packages.sqlparse

Non-validating SQL parser for Python

pkgs.python312Packages.sqlparse.x86_64-linux

Non-validating SQL parser for Python

pkgs.python312Packages.sqlparse.aarch64-linux

Non-validating SQL parser for Python

pkgs.python312Packages.sqlparse.x86_64-darwin

Non-validating SQL parser for Python

pkgs.python312Packages.sqlparse.aarch64-darwin

Non-validating SQL parser for Python

CVE-2023-7250
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 2 weeks, 2 days ago
Iperf3: possible denial of service

A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning client can send less than the expected amount of data to the iperf server, which can cause the server to hang indefinitely waiting for the remainder or until the connection gets closed. This will prevent other connections to the server, leading to a denial of service.

Affected products

iperf3
  • *

Matching in nixpkgs

pkgs.iperf3d

Iperf3 client and server wrapper for dynamic server ports

Package maintainers: 5

CVE-2025-64354
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 weeks, 2 days ago
WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matias Ventura Gutenberg gutenberg allows Stored XSS.This issue affects Gutenberg: from n/a through <= 21.8.2.

Affected products

gutenberg
  • =<<= 21.8.2

Matching in nixpkgs

pkgs.haskellPackages.gutenberg-fibonaccis

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

pkgs.haskellPackages.gutenberg-fibonaccis.x86_64-linux

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

pkgs.haskellPackages.gutenberg-fibonaccis.aarch64-linux

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

pkgs.haskellPackages.gutenberg-fibonaccis.x86_64-darwin

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

pkgs.haskellPackages.gutenberg-fibonaccis.aarch64-darwin

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

Package maintainers: 2

CVE-2025-62231
7.3 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): LOW
  • Availability impact (A): HIGH
created 2 weeks, 2 days ago
Xorg: xmayland: value overflow in xkbsetcompatmap()

A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the XkbSetCompatMap() function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a crash.

Affected products

tigervnc
  • *
xorg-x11-server
  • *
xorg-x11-server-Xwayland
  • *

Matching in nixpkgs