Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2014-4860

created 1 month, 3 weeks ago

Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase …

Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase in the Capsule Update feature in the UEFI implementation in EDK2 allow physically proximate attackers to bypass intended access restrictions by providing crafted data that is not properly handled during the coalescing phase.

References

http://www.kb.cert.org/vuls/id/552286 x_refsource_MISC
http://www.kb.cert.org/vuls/id/552286 x_transferredx_refsource_MISC
http://www.kb.cert.org/vuls/id/552286 x_refsource_MISC
http://www.kb.cert.org/vuls/id/552286 x_transferredx_refsource_MISC
http://www.kb.cert.org/vuls/id/552286 x_refsource_MISC
http://www.kb.cert.org/vuls/id/552286 x_transferredx_refsource_MISC

Affected products

BIOS

==unknown

SCT3

==before 5/23/2014

Matching in nixpkgs

pkgs.seabios

Open source implementation of a 16bit x86 BIOS

nixos-unstable 1.17.0
- nixpkgs-unstable 1.17.0
- nixos-unstable-small 1.17.0
nixos-25.11 1.17.0
- nixos-25.11-small 1.17.0
- nixpkgs-25.11-darwin 1.17.0

pkgs.libsmbios

Library to obtain BIOS information

nixos-unstable 2.4.3
- nixpkgs-unstable 2.4.3
- nixos-unstable-small 2.4.3
nixos-25.11 2.4.3
- nixos-25.11-small 2.4.3
- nixpkgs-25.11-darwin 2.4.3

pkgs.biosdevname

Udev helper for naming devices per BIOS names

nixos-unstable 0.7.3
- nixpkgs-unstable 0.7.3
- nixos-unstable-small 0.7.3
nixos-25.11 0.7.3
- nixos-25.11-small 0.7.3
- nixpkgs-25.11-darwin 0.7.3

pkgs.seabios-csm

Open source implementation of a 16bit x86 BIOS

nixos-unstable 1.17.0
- nixpkgs-unstable 1.17.0
- nixos-unstable-small 1.17.0
nixos-25.11 1.17.0
- nixos-25.11-small 1.17.0
- nixpkgs-25.11-darwin 1.17.0

pkgs.seabios-qemu

Open source implementation of a 16bit x86 BIOS

nixos-unstable 1.17.0
- nixpkgs-unstable 1.17.0
- nixos-unstable-small 1.17.0
nixos-25.11 1.17.0
- nixos-25.11-small 1.17.0
- nixpkgs-25.11-darwin 1.17.0

pkgs.seabios-coreboot

Open source implementation of a 16bit x86 BIOS

nixos-unstable 1.17.0
- nixpkgs-unstable 1.17.0
- nixos-unstable-small 1.17.0
nixos-25.11 1.17.0
- nixos-25.11-small 1.17.0
- nixpkgs-25.11-darwin 1.17.0

pkgs.dell-bios-fan-control

Simple tool to enable or disable the SMBIOS (auto) fan control on various Dell laptops

nixos-unstable 0-unstable-2022-01-19
- nixpkgs-unstable 0-unstable-2022-01-19
- nixos-unstable-small 0-unstable-2022-01-19

pkgs.haskellPackages.hie-bios

Set up a GHC API session

nixos-unstable 0.17.0
- nixpkgs-unstable 0.17.0
- nixos-unstable-small 0.17.0
nixos-25.11 0.17.0
- nixos-25.11-small 0.17.0
- nixpkgs-25.11-darwin 0.17.0

pkgs.python312Packages.biosppy

Biosignal Processing in Python

nixos-25.11 2.2.4
- nixos-25.11-small 2.2.4
- nixpkgs-25.11-darwin 2.2.4

pkgs.python313Packages.biosppy

Biosignal Processing in Python

nixos-unstable 2.2.4
- nixpkgs-unstable 2.2.4
- nixos-unstable-small 2.2.4
nixos-25.11 2.2.4
- nixos-25.11-small 2.2.4
- nixpkgs-25.11-darwin 2.2.4

pkgs.python314Packages.biosppy

Biosignal Processing in Python

nixos-unstable 2.2.4
- nixpkgs-unstable 2.2.4
- nixos-unstable-small 2.2.4

pkgs.gnomeExtensions.one-click-bios

Restart into firmware settings directly from OS

nixos-unstable 8
- nixpkgs-unstable 8
- nixos-unstable-small 8
nixos-25.11 8
- nixos-25.11-small 8
- nixpkgs-25.11-darwin 8

pkgs.vscode-extensions.fabiospampinato.vscode-open-in-github

VS Code extension to open the current project or file in github.com

nixos-unstable 2.4.0
- nixpkgs-unstable 2.4.0
- nixos-unstable-small 2.4.0
nixos-25.11 2.4.0
- nixos-25.11-small 2.4.0
- nixpkgs-25.11-darwin 2.4.0

Package maintainers

@honnip Jung seungwoo <me@honnip.page>
@genga898 Emmanuel Genga <genga898@gmail.com>
@SigmaSquadron Fernando Rodrigues <alpha@sigmasquadron.net>
@rickyelopez Ricky