Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2026-20726

6.1 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): NONE
Availability impact (A): LOW

created 1 month ago Activity log

Created suggestion 1 month ago

An out-of-bounds read vulnerability exists in the EMF functionality of …

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.

References

Affected products

Affinity

<3.1.0 (March 26)

Matching in nixpkgs

pkgs.perlPackages.SysCpuAffinity

Set CPU affinity for processes

nixos-unstable 1.12
- nixpkgs-unstable 1.12
- nixos-unstable-small 1.12
nixos-25.11 1.12
- nixos-25.11-small 1.12
- nixpkgs-25.11-darwin 1.12

pkgs.perl5Packages.SysCpuAffinity

Set CPU affinity for processes

nixos-unstable 1.12
- nixpkgs-unstable 1.12
- nixos-unstable-small 1.12

pkgs.perl538Packages.SysCpuAffinity

Set CPU affinity for processes

nixos-25.11 1.12
- nixos-25.11-small 1.12
- nixpkgs-25.11-darwin 1.12

pkgs.perl540Packages.SysCpuAffinity

Set CPU affinity for processes

nixos-25.11 1.12
- nixos-25.11-small 1.12
- nixpkgs-25.11-darwin 1.12

Package maintainers

@TomaSajt TomaSajt