Nixpkgs security tracker

Untriaged

Permalink CVE-2026-25477

created 1 month, 3 weeks ago Activity log

Created suggestion 1 month, 3 weeks ago

AFFiNE: Open Redirect via Regex Bypass in redirect-proxy

AFFiNE is an open-source, all-in-one workspace and an operating system. Prior to version 0.26.0, there is an Open Redirect vulnerability located at the /redirect-proxy endpoint. The flaw exists in the domain validation logic, where an improperly anchored Regular Expression allows an attacker to bypass the whitelist by using malicious domains that end with a trusted string. This issue has been patched in version 0.26.0.

References

https://github.com/toeverything/AFFiNE/security/advisories/GHSA-wx9m-v7wq-g289 x_refsource_CONFIRM

Affected products

AFFiNE

==< 0.26.0

Matching in nixpkgs

pkgs.affine

Workspace with fully merged docs, whiteboards and databases

nixos-unstable 0.26.2
- nixpkgs-unstable 0.26.2
- nixos-unstable-small 0.26.2
nixos-25.11 0.25.5
- nixos-25.11-small 0.25.5
- nixpkgs-25.11-darwin 0.25.5

pkgs.affine-bin

Workspace with fully merged docs, whiteboards and databases

nixos-unstable 0.18.1
- nixpkgs-unstable 0.18.1
- nixos-unstable-small 0.18.1
nixos-25.11 0.18.1
- nixos-25.11-small 0.18.1
- nixpkgs-25.11-darwin 0.18.1

pkgs.python312Packages.affine

Matrices describing affine transformation of the plane

nixos-25.11 2.4.0
- nixos-25.11-small 2.4.0
- nixpkgs-25.11-darwin 2.4.0

pkgs.python313Packages.affine

Matrices describing affine transformation of the plane

nixos-unstable 2.4.0
- nixpkgs-unstable 2.4.0
- nixos-unstable-small 2.4.0
nixos-25.11 2.4.0
- nixos-25.11-small 2.4.0
- nixpkgs-25.11-darwin 2.4.0

pkgs.python314Packages.affine

Matrices describing affine transformation of the plane

nixos-unstable 2.4.0
- nixpkgs-unstable 2.4.0
- nixos-unstable-small 2.4.0

pkgs.python312Packages.affinegap

Cython implementation of the affine gap string distance

nixos-25.11 1.12
- nixos-25.11-small 1.12
- nixpkgs-25.11-darwin 1.12

pkgs.python313Packages.affinegap

Cython implementation of the affine gap string distance

nixos-unstable 2
- nixpkgs-unstable 2
- nixos-unstable-small 2
nixos-25.11 1.12
- nixos-25.11-small 1.12
- nixpkgs-25.11-darwin 1.12

pkgs.python314Packages.affinegap

Cython implementation of the affine gap string distance

nixos-unstable 2
- nixpkgs-unstable 2
- nixos-unstable-small 2

pkgs.python312Packages.affine-gaps

None

nixos-25.11 0.2.4
- nixos-25.11-small 0.2.4
- nixpkgs-25.11-darwin 0.2.4

pkgs.python313Packages.affine-gaps

None

nixos-25.11 0.2.4
- nixos-25.11-small 0.2.4
- nixpkgs-25.11-darwin 0.2.4

pkgs.haskellPackages.affinely-extended

None

nixos-unstable 0.1.0.0
- nixpkgs-unstable 0.1.0.0
- nixos-unstable-small 0.1.0.0
nixos-25.11 0.1.0.0
- nixos-25.11-small 0.1.0.0
- nixpkgs-25.11-darwin 0.1.0.0

pkgs.haskellPackages.simple-affine-space

A simple library for affine and vector spaces

nixos-unstable 0.2.1
- nixpkgs-unstable 0.2.1
- nixos-unstable-small 0.2.1
nixos-25.11 0.2.1
- nixos-25.11-small 0.2.1
- nixpkgs-25.11-darwin 0.2.1

Package maintainers

@xiaoxiangmoe ZHAO JinXiang <xiaoxiangmoe@gmail.com>
@ri-char richar
@redyf Mateus Alves <mateusalvespereira7@gmail.com>
@turion Manuel Bärenz <programming@manuelbaerenz.de>
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>
@daniel-fahey Daniel Fahey <daniel.fahey+nixpkgs@pm.me>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.affine

pkgs.affine-bin

pkgs.python312Packages.affine

pkgs.python313Packages.affine

pkgs.python314Packages.affine

pkgs.python312Packages.affinegap

pkgs.python313Packages.affinegap

pkgs.python314Packages.affinegap

pkgs.python312Packages.affine-gaps

pkgs.python313Packages.affine-gaps

pkgs.haskellPackages.affinely-extended

pkgs.haskellPackages.simple-affine-space

Package maintainers