Nixpkgs security tracker
5.3 MEDIUM
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): Low (L)
- Integrity (I): None (N)
- Availability (A): None (N)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): Low (L)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): None (N)
Activity log
- Created suggestion
Security vulnerability was found in IBM Security Directory Integrator
IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
References
Affected products
- =<7.2.0.14
- =<10.0.0.2
Matching in nixpkgs
pkgs.bsdiff
Efficient binary diff/patch tool
pkgs.nsdiff
Create a "nsupdate" script from DNS zone file differences
pkgs.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.dnsdiag
DNS Measurement, Troubleshooting and Security Auditing Toolset
pkgs.dnsdist
DNS Loadbalancer
pkgs.vipsdisp
Tiny image viewer with libvips
pkgs.sysdig-cli-scanner
Tool for scanning container images and directories using Sysdig
pkgs.perlPackages.nsdiff
Create a "nsupdate" script from DNS zone file differences
pkgs.linuxPackages.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.perl5Packages.nsdiff
Create a "nsupdate" script from DNS zone file differences
pkgs.perl538Packages.nsdiff
Create a "nsupdate" script from DNS zone file differences
pkgs.perl540Packages.nsdiff
Create a "nsupdate" script from DNS zone file differences
pkgs.python312Packages.bsdiff4
Binary diff and patch using the BSDIFF4-format
-
nixos-25.11 bsdiff4-1.2.6
- nixos-25.11-small bsdiff4-1.2.6
- nixpkgs-25.11-darwin bsdiff4-1.2.6
pkgs.python313Packages.bsdiff4
Binary diff and patch using the BSDIFF4-format
-
nixos-unstable bsdiff4-1.2.6
- nixpkgs-unstable bsdiff4-1.2.6
- nixos-unstable-small bsdiff4-1.2.6
-
nixos-25.11 bsdiff4-1.2.6
- nixos-25.11-small bsdiff4-1.2.6
- nixpkgs-25.11-darwin bsdiff4-1.2.6
pkgs.python314Packages.bsdiff4
Binary diff and patch using the BSDIFF4-format
-
nixos-unstable bsdiff4-1.2.6
- nixpkgs-unstable bsdiff4-1.2.6
- nixos-unstable-small bsdiff4-1.2.6
pkgs.haskellPackages.mega-sdist
Handles uploading to Hackage from mega repos
pkgs.python312Packages.cmsdials
Python API client interface to CMS DIALS service
pkgs.python313Packages.cmsdials
Python API client interface to CMS DIALS service
pkgs.python314Packages.cmsdials
Python API client interface to CMS DIALS service
pkgs.terraform-providers.sysdig
None
pkgs.linuxPackages_latest.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxPackages_xanmod.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.python313Packages.rocksdict
Python fast on-disk dictionary / RocksDB & SpeeDB Python binding
pkgs.python314Packages.rocksdict
Python fast on-disk dictionary / RocksDB & SpeeDB Python binding
pkgs.vscode-extensions.asdine.cue
Cue language support for Visual Studio Code
pkgs.python312Packages.wsdiscovery
WS-Discovery implementation for Python
pkgs.python313Packages.wsdiscovery
WS-Discovery implementation for Python
pkgs.python314Packages.wsdiscovery
WS-Discovery implementation for Python
pkgs.haskellPackages.keuringsdienst
Data validation in Haskell: composable, easy and clean
pkgs.linuxPackages_xanmod_latest.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxPackages_xanmod_stable.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_6_1.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_6_6.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_7_0.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.terraform-providers.sysdiglabs_sysdig
None
pkgs.linuxKernel.packages.linux_5_10.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_5_15.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_6_12.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_6_18.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.linuxKernel.packages.linux_xanmod.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
pkgs.vscode-extensions.sysdig.sysdig-vscode-ext
Scan your VS Code projects with Sysdig to investigate misconfigurations in IaC files or track vulnerabilities
pkgs.linuxKernel.packages.linux_xanmod_latest.sysdig
Tracepoint-based system tracing tool for Linux (with clients for other OSes)
Package maintainers
-
@thoughtpolice Austin Seipp <aseipp@pobox.com>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@jojosch Johannes Schleifenbaum <johannes@js-webcoding.de>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
-
@Mynacol Mynacol
-
@risicle Robert Scott <code@humanleg.org.uk>
-
@ShamrockLee Yueh-Shun Li <shamrocklee@posteo.net>
-
@GaetanLepage Gaetan Lepage <gaetan@glepage.com>
-
@tembleking Fede Barcelona <fede_rico_94@hotmail.com>
-
@matthewpi Matthew Penner <me+nix@matthewp.io>