Nixpkgs security tracker

Untriaged

Permalink CVE-2026-41285

4.3 MEDIUM

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 2 days, 4 hours ago Activity log

Created suggestion 2 days, 4 hours ago

In OpenBSD through 7.8, the slaacd and rad daemons have …

In OpenBSD through 7.8, the slaacd and rad daemons have an infinite loop when they receive a crafted ICMPv6 Neighbor Discovery (ND) option (over a local network) with length zero, because of an "nd_opt_len * 8 - 2" expression with no preceding check for whether nd_opt_len is zero.

References

Affected products

OpenBSD

=<7.8

Matching in nixpkgs

pkgs.netcat-openbsd

TCP/IP swiss army knife. OpenBSD variant

nixos-unstable 1.234-2
- nixpkgs-unstable 1.234-2
- nixos-unstable-small 1.234-2
nixos-25.11 1.219-1
- nixos-25.11-small 1.219-1
- nixpkgs-25.11-darwin 1.219-1

pkgs.nagiosPlugins.openbsd_snmp3_check

SNMP v3 check for OpenBSD systems state monitoring

nixos-unstable 0.55
- nixpkgs-unstable 0.55
- nixos-unstable-small 0.55
nixos-25.11 0.55
- nixos-25.11-small 0.55
- nixpkgs-25.11-darwin 0.55

Package maintainers