Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged
Permalink CVE-2025-59617
6.6 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): Low (L)
  • Integrity (I): High (H)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): Low (L)
created 1 week, 2 days ago Activity log
  • Created suggestion
Use After Free in Computer Vision

Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input.

Affected products

Snapdragon
  • ==WCN7881
  • ==WSA8832
  • ==Qualcomm Video Collaboration VC3 Platform
  • ==WCD9378
  • ==Snapdragon 662 Mobile Platform
  • ==WSA8835
  • ==QCM5430
  • ==WSA8845
  • ==WCN3988
  • ==WCN7760
  • ==FastConnect 6900
  • ==WCD9375
  • ==WCN6450
  • ==WSA8830
  • ==Orne
  • ==QMP1000
  • ==WSA8850
  • ==FastConnect 7800
  • ==Pandeiro
  • ==WCN7861
  • ==WSA8855C
  • ==WSA8845H
  • ==WCN3950
  • ==Snapdragon XR2+ Gen 1 Platform
  • ==QCM6490
  • ==SM6850
  • ==Snapdragon 460 Mobile Platform
  • ==WCN7860
  • ==FastConnect 6700
  • ==WCD9395
  • ==WSA8840
  • ==WCN7880
  • ==WCD9370
  • ==Molokai
  • ==SXR2250P
  • ==WCD9385
  • ==Snapdragon 8 Elite Gen 5
  • ==QMP2001
  • ==SXR2230P
  • ==WCD9380
  • ==SC8380XP
  • ==WSA8850W
  • ==SD865 5G
  • ==Snapdragon XR2 5G Platform
  • ==SM8845P
  • ==Snapdragon AR1 Gen 1 Platform
  • ==WSA8815
  • ==WSA8810

Matching in nixpkgs