Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2011-1930

created 2 months ago Activity log

Created suggestion 2 months ago

In klibc 1.5.20 and 1.5.21, the DHCP options written by …

In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options.

References

https://security-tracker.debian.org/tracker/CVE-2011-1930 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-1930 x_transferredx_refsource_MISC
http://security.gentoo.org/glsa/glsa-201309-21.xml x_transferredx_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/05/22/12 x_transferredx_refsource_MISC
http://www.securityfocus.com/bid/47924 x_transferredx_refsource_MISC

Affected products

klibc

==1.5.21
==1.5.20

Matching in nixpkgs

pkgs.klibc

Minimalistic libc subset for initramfs usage

nixos-unstable 2.0.14
- nixpkgs-unstable 2.0.14
- nixos-unstable-small 2.0.14
nixos-25.11 2.0.14
- nixos-25.11-small 2.0.14
- nixpkgs-25.11-darwin 2.0.14

pkgs.klibcShrunk

Minimalistic libc subset for initramfs usage

nixos-unstable 2.0.14
- nixpkgs-unstable 2.0.14
- nixos-unstable-small 2.0.14
nixos-25.11 2.0.14
- nixos-25.11-small 2.0.14
- nixpkgs-25.11-darwin 2.0.14

Package maintainers

@fpletz Franz Pletz <fpletz@fnordicwalking.de>