CVE-2025-54941 4.6 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 2 weeks, 2 days ago Apache Airflow: Command injection in "example_dag_decorator" An example dag `example_dag_decorator` had non-validated parameter that allowed the UI user to redirect the example to a malicious server and execute code on worker. This however required that the example dags are enabled in production (not default) or the example dag code copied to build your own similar dag. If you used the `example_dag_decorator` please review it and apply the changes implemented in Airflow 3.0.5 accordingly. Affected products apache-airflow << 3.0.5 Matching in nixpkgs pkgs.apache-airflow Programmatically author, schedule and monitor data pipelines nixos-25.05 ??? nixos-25.05-small 2.7.3 nixos-unstable 2.7.3 nixos-unstable-small 2.7.3 nixpkgs-unstable 2.7.3 Package maintainers: 3 @bhipple Benjamin Hipple <bhipple@protonmail.com> @gbpdt Graham Bennett <nix@pdtpartners.com> @ingenieroariel Ariel Nunez <ariel@nunez.co>
pkgs.apache-airflow Programmatically author, schedule and monitor data pipelines nixos-25.05 ??? nixos-25.05-small 2.7.3 nixos-unstable 2.7.3 nixos-unstable-small 2.7.3 nixpkgs-unstable 2.7.3
CVE-2025-62402 5.4 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 2 weeks, 2 days ago Apache Airflow: Airflow 3 API: /api/v2/dagReports executes DAG Python in API API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the environment where Dag files were available. Affected products apache-airflow <3.1.1 Matching in nixpkgs pkgs.apache-airflow Programmatically author, schedule and monitor data pipelines nixos-25.05 ??? nixos-25.05-small 2.7.3 nixos-unstable 2.7.3 nixos-unstable-small 2.7.3 nixpkgs-unstable 2.7.3 Package maintainers: 3 @bhipple Benjamin Hipple <bhipple@protonmail.com> @gbpdt Graham Bennett <nix@pdtpartners.com> @ingenieroariel Ariel Nunez <ariel@nunez.co>
pkgs.apache-airflow Programmatically author, schedule and monitor data pipelines nixos-25.05 ??? nixos-25.05-small 2.7.3 nixos-unstable 2.7.3 nixos-unstable-small 2.7.3 nixpkgs-unstable 2.7.3
CVE-2025-62230 7.3 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): LOW Availability impact (A): HIGH created 2 weeks, 2 days ago Xorg: xwayland: use-after-free in xkb client resource removal A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected clients disconnect. Affected products tigervnc * xorg-x11-server * xorg-x11-server-Xwayland * Matching in nixpkgs pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-25.05 ??? nixos-25.05-small 1.14.0 nixos-unstable 1.15.0 nixos-unstable-small 1.15.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-25.05 ??? nixos-25.05-small 1.14.0 nixos-unstable 1.15.0 nixos-unstable-small 1.15.0 nixpkgs-unstable 1.14.0
CVE-2025-62229 7.3 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): HIGH Availability impact (A): HIGH created 2 weeks, 2 days ago Xorg: xmayland: use-after-free in xpresentnotify structure creation A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension notifications. Improper error handling during notification creation can leave dangling pointers that lead to a use-after-free condition. This can cause memory corruption or a crash, potentially allowing an attacker to execute arbitrary code or cause a denial of service. Affected products tigervnc * xorg-x11-server * xorg-x11-server-Xwayland * Matching in nixpkgs pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-25.05 ??? nixos-25.05-small 1.14.0 nixos-unstable 1.15.0 nixos-unstable-small 1.15.0 nixpkgs-unstable 1.15.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-25.05 ??? nixos-25.05-small 1.14.0 nixos-unstable 1.15.0 nixos-unstable-small 1.15.0 nixpkgs-unstable 1.15.0
CVE-2025-64228 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): NONE Availability impact (A): NONE created 2 weeks, 2 days ago WordPress SUMO Affiliates Pro plugin <= 11.0.0 - Sensitive Data Exposure vulnerability Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Retrieve Embedded Sensitive Data.This issue affects SUMO Affiliates Pro: from n/a through <= 11.0.0. Affected products affs =<<= 11.0.0 Matching in nixpkgs pkgs.unyaffs Tool to extract files from a YAFFS2 file system image nixos-25.05 ??? nixos-25.05-small 0.9 nixos-unstable 0.9 nixos-unstable-small 0.9 nixpkgs-unstable 0.9 pkgs.yaffshiv Simple YAFFS file system parser and extractor nixos-25.05 ??? nixos-25.05-small 0-unstable-2024-08-30 nixos-unstable 0-unstable-2024-08-30 nixos-unstable-small 0-unstable-2024-08-30 nixpkgs-unstable 0-unstable-2024-08-30 Package maintainers: 2 @KSJ2000 KSJ2000 <katsho123@outlook.com> @stigtsp Stig Palmquist <stig@stig.io>
pkgs.unyaffs Tool to extract files from a YAFFS2 file system image nixos-25.05 ??? nixos-25.05-small 0.9 nixos-unstable 0.9 nixos-unstable-small 0.9 nixpkgs-unstable 0.9
pkgs.yaffshiv Simple YAFFS file system parser and extractor nixos-25.05 ??? nixos-25.05-small 0-unstable-2024-08-30 nixos-unstable 0-unstable-2024-08-30 nixos-unstable-small 0-unstable-2024-08-30 nixpkgs-unstable 0-unstable-2024-08-30
CVE-2025-62952 8.8 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 weeks, 2 days ago WordPress ChatBot plugin <= 7.3.0 - Broken Access Control vulnerability Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through <= 7.3.0. Affected products chatbot =<<= 7.3.0 Matching in nixpkgs pkgs.gnomeExtensions.penguin-ai-chatbot A GNOME Shell extension that provides a chatbot interface using various LLM providers, including Anthropic, OpenAI, Gemini, and OpenRouter. Features include multiple provider support, customizable models, chat history, customizable appearance, a keyboard shortcut, and copy-to-clipboard functionality. nixos-25.05 ??? nixos-25.05-small 22 nixos-unstable 22 nixos-unstable-small 22 nixpkgs-unstable 22 Package maintainers: 1 @honnip Jung seungwoo <me@honnip.page>
pkgs.gnomeExtensions.penguin-ai-chatbot A GNOME Shell extension that provides a chatbot interface using various LLM providers, including Anthropic, OpenAI, Gemini, and OpenRouter. Features include multiple provider support, customizable models, chat history, customizable appearance, a keyboard shortcut, and copy-to-clipboard functionality. nixos-25.05 ??? nixos-25.05-small 22 nixos-unstable 22 nixos-unstable-small 22 nixpkgs-unstable 22
CVE-2025-62395 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): NONE Availability impact (A): NONE created 2 weeks, 2 days ago Moodle: external cohort search service leaks system cohort data A flaw in the cohort search web service allowed users with permissions in lower contexts to access cohort information from the system context, revealing restricted administrative data. Affected products moodle <4.5.7 <4.1.21 <4.4.11 <5.0.3 Matching in nixpkgs pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1 pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13 Package maintainers: 2 @freezeboy freezeboy @kmein Kierán Meinhardt <kmein@posteo.de>
pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1
pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13
CVE-2025-62393 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): NONE Availability impact (A): NONE created 2 weeks, 2 days ago Moodle: course access permissions not properly checked in course_output_fragment_course_overview A flaw was found in the course overview output function where user access permissions were not fully enforced. This could allow unauthorized users to view information about courses they should not have access to, potentially exposing limited course details. Affected products moodle <5.0.3 Matching in nixpkgs pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1 pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13 Package maintainers: 2 @freezeboy freezeboy @kmein Kierán Meinhardt <kmein@posteo.de>
pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1
pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13
CVE-2025-62394 4.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): NONE Availability impact (A): NONE created 2 weeks, 2 days ago Moodle: quiz notifications sent to suspended participants Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information. Affected products moodle <4.5.7 <5.0.3 Matching in nixpkgs pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1 pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13 Package maintainers: 2 @freezeboy freezeboy @kmein Kierán Meinhardt <kmein@posteo.de>
pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1
pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13
CVE-2025-62396 5.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): NONE Availability impact (A): NONE created 2 weeks, 2 days ago Moodle: router (r.php) could expose application directories An error-handling issue in the Moodle router (r.php) could cause the application to display internal directory listings when specific HTTP headers were not properly configured. Affected products moodle <4.5.7 <5.0.3 Matching in nixpkgs pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1 pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13 Package maintainers: 2 @freezeboy freezeboy @kmein Kierán Meinhardt <kmein@posteo.de>
pkgs.moodle Free and open-source learning management system (LMS) written in PHP nixos-25.05 ??? nixos-25.05-small 5.0 nixos-unstable 4.4.3 nixos-unstable-small 5.0.1 nixpkgs-unstable 5.0.1
pkgs.moodle-dl Moodle downloader that downloads course content fast from Moodle nixos-25.05 ??? nixos-25.05-small 2.3.13 nixos-unstable 2.3.12 nixos-unstable-small 2.3.13 nixpkgs-unstable 2.3.13