Nixpkgs security tracker
Untriaged
Permalink
CVE-2025-66342
7.8 HIGH
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Activity log
- Created suggestion
A type confusion vulnerability exists in the EMF functionality of …
A type confusion vulnerability exists in the EMF functionality of Canva Affinity. A specially crafted EMF file can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution.
References
Affected products
Affinity
- <3.1.0 (March 26)
Matching in nixpkgs
pkgs.perlPackages.SysCpuAffinity
Set CPU affinity for processes
pkgs.perl5Packages.SysCpuAffinity
Set CPU affinity for processes
pkgs.perl538Packages.SysCpuAffinity
Set CPU affinity for processes
pkgs.perl540Packages.SysCpuAffinity
Set CPU affinity for processes
Package maintainers
-
@TomaSajt TomaSajt