Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestions search

All statuses
Filter by:
With package: gnomeExtensions.rudra

Found 1 matching suggestions

View:
Compact
Detailed
Untriaged
Permalink CVE-2026-40343
created 2 days ago Activity log
  • Created suggestion 2 days ago
free5GC UDR: Fail-open handling in PolicyDataSubsToNotifyPost allows unintended subscription creation

free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. In versions up to and including 1.4.2, a fail-open request handling flaw in the UDR service causes the `/nudr-dr/v2/policy-data/subs-to-notify` POST handler to continue processing requests even after request body retrieval or deserialization errors. This may allow unintended creation of Policy Data notification subscriptions with invalid, empty, or partially processed input, depending on downstream processor behavior. As of time of publication, a patched version is not available.

Affected products

udr
  • ==<= 1.4.2

Matching in nixpkgs

pkgs.eludris

Simple CLI to help you with setting up and managing your Eludris instance

pkgs.gnomeExtensions.rudra

A lightning-fast, keyboard-centric launcher for GNOME Shell designed for power users who want to keep their hands on the keyboard.

  • nixos-unstable 3
    • nixpkgs-unstable 3
    • nixos-unstable-small 3

pkgs.vscode-extensions.saoudrizwan.claude-dev

VSCode extension providing an autonomous coding agent right in your IDE, capable of creating/editing files, executing commands, using the browser, and more with your permission every step of the way

Package maintainers