Nixpkgs security tracker

Untriaged

Permalink CVE-2026-5567

8.8 HIGH

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 1 week, 1 day ago

Tenda M3 Destination setAdvPolicyData buffer overflow

A flaw has been found in Tenda M3 1.0.0.10. This vulnerability affects the function setAdvPolicyData of the file /goform/setAdvPolicyData of the component Destination Handler. Executing a manipulation of the argument policyType can lead to buffer overflow. The attack can be executed remotely. The exploit has been published and may be used.

References

VDB-355337 | Tenda M3 Destination setAdvPolicyData buffer overflow vdb-entrytechnical-description
VDB-355337 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #782999 | Tenda Tenda M3 Access Controller(M3) V1.0.0.10 Buffer Overflow third-party-advisory
https://github.com/Moxxkidd/CVE/issues/2 exploitissue-tracking
https://www.tenda.com.cn/ product

Affected products

==1.0.0.10

Matching in nixpkgs

pkgs.flam3

Cosmic recursive fractal flames

nixos-unstable 3.1.1+date=2018-04-12
- nixpkgs-unstable 3.1.1+date=2018-04-12
- nixos-unstable-small 3.1.1+date=2018-04-12
nixos-25.11 3.1.1+date=2018-04-12
- nixos-25.11-small 3.1.1+date=2018-04-12
- nixpkgs-25.11-darwin 3.1.1+date=2018-04-12

pkgs.fvwm3

Multiple large virtual desktop window manager - Version 3

nixos-unstable 1.1.0
- nixpkgs-unstable 1.1.0
- nixos-unstable-small 1.1.0
nixos-25.11 1.1.0
- nixos-25.11-small 1.1.0
- nixpkgs-25.11-darwin 1.1.0

pkgs.wasm3

Fastest WebAssembly interpreter, and the most universal runtime

nixos-unstable 0.5.0
- nixpkgs-unstable 0.5.0
- nixos-unstable-small 0.5.0
nixos-25.11 0.5.0
- nixos-25.11-small 0.5.0
- nixpkgs-25.11-darwin 0.5.0

pkgs.dhewm3

Doom 3 port to SDL

nixos-unstable 1.5.4
- nixpkgs-unstable 1.5.4
- nixos-unstable-small 1.5.4
nixos-25.11 1.5.4
- nixos-25.11-small 1.5.4
- nixpkgs-25.11-darwin 1.5.4

pkgs.grails

Full stack, web application framework for the JVM

nixos-unstable 7.0.0-M3
- nixpkgs-unstable 7.0.0-M3
- nixos-unstable-small 7.0.0-M3
nixos-25.11 7.0.0-M3
- nixos-25.11-small 7.0.0-M3
- nixpkgs-25.11-darwin 7.0.0-M3

pkgs.icbm3d

3D vector-based clone of the atari game Missile Command

nixos-unstable 0.4
- nixpkgs-unstable 0.4
- nixos-unstable-small 0.4
nixos-25.11 0.4
- nixos-25.11-small 0.4
- nixpkgs-25.11-darwin 0.4

pkgs.m32edit

Editor for the Midas M32 digital mixer

nixos-unstable 4.4.1
- nixpkgs-unstable 4.4.1
- nixos-unstable-small 4.4.1
nixos-25.11 4.4
- nixos-25.11-small 4.4
- nixpkgs-25.11-darwin 4.4

pkgs.m33-linux

Linux program that can communicate with the Micro 3D printer

nixos-unstable 0-unstable-2016-06-23
- nixpkgs-unstable 0-unstable-2016-06-23
- nixos-unstable-small 0-unstable-2016-06-23
nixos-25.11 0-unstable-2016-06-23
- nixos-25.11-small 0-unstable-2016-06-23
- nixpkgs-25.11-darwin 0-unstable-2016-06-23

pkgs.stm32flash

Open source flash program for the STM32 ARM processors using the ST bootloader

nixos-unstable 0.7
- nixpkgs-unstable 0.7
- nixos-unstable-small 0.7
nixos-25.11 0.7
- nixos-25.11-small 0.7
- nixpkgs-25.11-darwin 0.7

pkgs.n-m3u8dl-re

Cross-Platform, modern and powerful stream downloader for MPD/M3U8/ISM

nixos-unstable m3u8dl-re-0.5.1-beta
- nixpkgs-unstable m3u8dl-re-0.5.1-beta
- nixos-unstable-small m3u8dl-re-0.5.1-beta
nixos-25.11 m3u8dl-re-0.5.1-beta
- nixos-25.11-small m3u8dl-re-0.5.1-beta
- nixpkgs-25.11-darwin m3u8dl-re-0.5.1-beta

pkgs.stm32cubemx

A graphical tool for configuring STM32 microcontrollers and microprocessors

nixos-unstable 6.17.0
- nixpkgs-unstable 6.17.0
- nixos-unstable-small 6.17.0
nixos-25.11 6.15.0
- nixos-25.11-small 6.15.0
- nixpkgs-25.11-darwin 6.15.0

pkgs.stm32loader

Flash firmware to STM32 microcontrollers in Python

nixos-unstable 0.7.1
- nixpkgs-unstable 0.7.1
- nixos-unstable-small 0.7.1
nixos-25.11 0.7.1
- nixos-25.11-small 0.7.1
- nixpkgs-25.11-darwin 0.7.1

pkgs.ubootCM3588NAS

Boot loader for embedded systems

nixos-unstable cm3588-nas-rk3588_defconfig-2025.10
- nixpkgs-unstable cm3588-nas-rk3588_defconfig-2025.10
- nixos-unstable-small cm3588-nas-rk3588_defconfig-2025.10
nixos-25.11 cm3588-nas-rk3588_defconfig-2025.10
- nixos-25.11-small cm3588-nas-rk3588_defconfig-2025.10
- nixpkgs-25.11-darwin cm3588-nas-rk3588_defconfig-2025.10

pkgs.python312Packages.m3u8

Python m3u8 parser

nixos-25.11 m3u8-6.0.0
- nixos-25.11-small m3u8-6.0.0
- nixpkgs-25.11-darwin m3u8-6.0.0

pkgs.python313Packages.m3u8

Python m3u8 parser

nixos-unstable m3u8-6.0.0
- nixpkgs-unstable m3u8-6.0.0
- nixos-unstable-small m3u8-6.0.0
nixos-25.11 m3u8-6.0.0
- nixos-25.11-small m3u8-6.0.0
- nixpkgs-25.11-darwin m3u8-6.0.0

pkgs.python314Packages.m3u8

Python m3u8 parser

nixos-unstable m3u8-6.0.0
- nixpkgs-unstable m3u8-6.0.0
- nixos-unstable-small m3u8-6.0.0

pkgs.tests.fetchpatch.simple

None

nixos-25.11 nvqqhkpm3h9z
- nixpkgs-25.11-darwin nvqqhkpm3h9z

pkgs.tests.fetchpatch2.simple

None

nixos-25.11 -
- nixos-25.11-small qc98km3m7h11

pkgs.python312Packages.pycomm3

Python Ethernet/IP library for communicating with Allen-Bradley PLCs

nixos-25.11 pycomm3-1.2.14
- nixos-25.11-small pycomm3-1.2.14
- nixpkgs-25.11-darwin pycomm3-1.2.14

pkgs.python313Packages.pycomm3

Python Ethernet/IP library for communicating with Allen-Bradley PLCs

nixos-unstable pycomm3-1.2.16
- nixpkgs-unstable pycomm3-1.2.16
- nixos-unstable-small pycomm3-1.2.16
nixos-25.11 pycomm3-1.2.14
- nixos-25.11-small pycomm3-1.2.14
- nixpkgs-25.11-darwin pycomm3-1.2.14

pkgs.python314Packages.pycomm3

Python Ethernet/IP library for communicating with Allen-Bradley PLCs

nixos-unstable pycomm3-1.2.16
- nixpkgs-unstable pycomm3-1.2.16
- nixos-unstable-small pycomm3-1.2.16

pkgs.haskellPackages.data-stm32

ARM SVD and CubeMX XML parser and pretty printer for STM32 family

nixos-unstable stm32-0.1.0.0
- nixpkgs-unstable stm32-0.1.0.0
- nixos-unstable-small stm32-0.1.0.0
nixos-25.11 stm32-0.1.0.0
- nixos-25.11-small stm32-0.1.0.0
- nixpkgs-25.11-darwin stm32-0.1.0.0

pkgs.python312Packages.distorm3

Disassembler library for x86/AMD64

nixos-25.11 distorm3-3.5.2b
- nixos-25.11-small distorm3-3.5.2b
- nixpkgs-25.11-darwin distorm3-3.5.2b

pkgs.python313Packages.distorm3

Disassembler library for x86/AMD64

nixos-unstable distorm3-3.5.2
- nixpkgs-unstable distorm3-3.5.2
- nixos-unstable-small distorm3-3.5.2
nixos-25.11 distorm3-3.5.2b
- nixos-25.11-small distorm3-3.5.2b
- nixpkgs-25.11-darwin distorm3-3.5.2b

pkgs.python314Packages.distorm3

Disassembler library for x86/AMD64

nixos-unstable distorm3-3.5.2
- nixpkgs-unstable distorm3-3.5.2
- nixos-unstable-small distorm3-3.5.2

pkgs.python312Packages.pymystem3

Python wrapper for the Yandex MyStem 3.1 morpholocial analyzer of the Russian language

nixos-25.11 pymystem3-0.2.0
- nixos-25.11-small pymystem3-0.2.0
- nixpkgs-25.11-darwin pymystem3-0.2.0

pkgs.python313Packages.pymystem3

Python wrapper for the Yandex MyStem 3.1 morpholocial analyzer of the Russian language

nixos-unstable pymystem3-0.2.0
- nixpkgs-unstable pymystem3-0.2.0
- nixos-unstable-small pymystem3-0.2.0
nixos-25.11 pymystem3-0.2.0
- nixos-25.11-small pymystem3-0.2.0
- nixpkgs-25.11-darwin pymystem3-0.2.0

pkgs.python314Packages.pymystem3

Python wrapper for the Yandex MyStem 3.1 morpholocial analyzer of the Russian language

nixos-unstable pymystem3-0.2.0
- nixpkgs-unstable pymystem3-0.2.0
- nixos-unstable-small pymystem3-0.2.0

pkgs.python312Packages.quantulum3

Library for unit extraction - fork of quantulum for python3

nixos-25.11 quantulum3-0.9.2
- nixos-25.11-small quantulum3-0.9.2
- nixpkgs-25.11-darwin quantulum3-0.9.2

pkgs.python313Packages.quantulum3

Library for unit extraction - fork of quantulum for python3

nixos-unstable quantulum3-0.10.0
- nixpkgs-unstable quantulum3-0.10.0
- nixos-unstable-small quantulum3-0.10.0
nixos-25.11 quantulum3-0.9.2
- nixos-25.11-small quantulum3-0.9.2
- nixpkgs-25.11-darwin quantulum3-0.9.2

pkgs.python314Packages.quantulum3

Library for unit extraction - fork of quantulum for python3

nixos-unstable quantulum3-0.10.0
- nixpkgs-unstable quantulum3-0.10.0
- nixos-unstable-small quantulum3-0.10.0

pkgs.python312Packages.stm32loader

Flash firmware to STM32 microcontrollers in Python

nixos-25.11 stm32loader-0.7.1
- nixos-25.11-small stm32loader-0.7.1
- nixpkgs-25.11-darwin stm32loader-0.7.1

pkgs.python313Packages.stm32loader

Flash firmware to STM32 microcontrollers in Python

nixos-unstable stm32loader-0.7.1
- nixpkgs-unstable stm32loader-0.7.1
- nixos-unstable-small stm32loader-0.7.1
nixos-25.11 stm32loader-0.7.1
- nixos-25.11-small stm32loader-0.7.1
- nixpkgs-25.11-darwin stm32loader-0.7.1

pkgs.python314Packages.stm32loader

Flash firmware to STM32 microcontrollers in Python

nixos-unstable stm32loader-0.7.1
- nixpkgs-unstable stm32loader-0.7.1
- nixos-unstable-small stm32loader-0.7.1

pkgs.haskellPackages.STM32F103xx-SVD

Definition for Peripherals,Registers and Fields from STM32F103xx.svd

nixos-unstable 0.1
- nixpkgs-unstable 0.1
- nixos-unstable-small 0.1
nixos-25.11 0.1
- nixos-25.11-small 0.1
- nixpkgs-25.11-darwin 0.1

pkgs.python312Packages.pym3u8downloader

Python class to download and concatenate video files from M3U8 playlists

nixos-25.11 pym3u8downloader-0.1.8
- nixos-25.11-small pym3u8downloader-0.1.8
- nixpkgs-25.11-darwin pym3u8downloader-0.1.8

pkgs.python313Packages.pym3u8downloader

Python class to download and concatenate video files from M3U8 playlists

nixos-unstable pym3u8downloader-0.1.8
- nixpkgs-unstable pym3u8downloader-0.1.8
- nixos-unstable-small pym3u8downloader-0.1.8
nixos-25.11 pym3u8downloader-0.1.8
- nixos-25.11-small pym3u8downloader-0.1.8
- nixpkgs-25.11-darwin pym3u8downloader-0.1.8

pkgs.python314Packages.pym3u8downloader

Python class to download and concatenate video files from M3U8 playlists

nixos-unstable pym3u8downloader-0.1.8
- nixpkgs-unstable pym3u8downloader-0.1.8
- nixos-unstable-small pym3u8downloader-0.1.8

pkgs.tests.prefer-remote-fetch.fetchgit

None

nixos-unstable 4sp62sm354z1
- nixpkgs-unstable 4sp62sm354z1
- nixos-unstable-small 4sp62sm354z1
nixos-25.11 xxkfs2vgfm3i
- nixpkgs-25.11-darwin xxkfs2vgfm3i

pkgs.tests.fetchpatch.fileWithApostrophe

None

nixos-25.11 2264wm34fg71
- nixpkgs-25.11-darwin 2264wm34fg71

pkgs.tests.fetchFromGitHub.submodule-deep

None

nixos-25.11 vpnm3z7x4h1f
- nixpkgs-25.11-darwin vpnm3z7x4h1f

pkgs.tests.fetchpatch2.fileWithApostrophe

None

nixos-25.11 4qvdcaczwm3v
- nixpkgs-25.11-darwin 4qvdcaczwm3v

pkgs.tests.fetchNextcloudApp.simple-sha512

None

nixos-25.11 jgp5mm3l1agh
- nixpkgs-25.11-darwin jgp5mm3l1agh

pkgs.tests.fetchurl.flag-appending-curlOpts

None

nixos-unstable qy4m3fmq9693
- nixpkgs-unstable qy4m3fmq9693
- nixos-unstable-small qy4m3fmq9693

pkgs.tests.buildRustCrate.tests.crateLibOutputsWasm32

None

nixos-unstable wasm32-crate-lib
- nixpkgs-unstable wasm32-crate-lib
- nixos-unstable-small wasm32-crate-lib
nixos-25.11 wasm32-crate-lib
- nixos-25.11-small wasm32-crate-lib
- nixpkgs-25.11-darwin wasm32-crate-lib

pkgs.tests.buildRustCrate.tests.crateWasm32BinHyphens

None

nixos-unstable wasm32-crate-bin-hyphens
- nixpkgs-unstable wasm32-crate-bin-hyphens
- nixos-unstable-small wasm32-crate-bin-hyphens
nixos-25.11 wasm32-crate-bin-hyphens
- nixos-25.11-small wasm32-crate-bin-hyphens
- nixpkgs-25.11-darwin wasm32-crate-bin-hyphens

Package maintainers

@bjornfor Bjørn Forsman <bjorn.forsman@gmail.com>
@sorki Richard Marko <srk@48.io>
@magnetophon Bart Brouns <bart@magnetophon.nl>
@abbradar Nikolay Amiantov <ab@fmap.me>
@phanirithvij Phani Rithvij <phanirithvij2000@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@Scriptkiddi Fritz Otlinghaus <nixos@scriptkiddi.de>
@ShamrockLee Yueh-Shun Li <shamrocklee@posteo.net>
@happysalada Raphael Megzari <raphael@megzari.com>
@angaz Angus Dippenaar
@wucke13 Wucke <wucke13@gmail.com>
@elitak Eric Litak <elitak@gmail.com>
@lopsided98 Ben Wolsieffer <benwolsieffer@gmail.com>
@dezgeg Tuomas Tynkkynen <tuomas.tynkkynen@iki.fi>
@bartsch Daniel Martin <consume.noise@gmail.com>
@malbarbo Marco A L Barbosa <malbarbo@gmail.com>

Untriaged

Permalink CVE-2025-15572

3.3 LOW

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 2 months ago

wasm3 NewCodePage memory leak

A vulnerability has been found in wasm3 up to 0.5.0. The affected element is the function NewCodePage. The manipulation leads to memory leak. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Unfortunately, the project has no active maintainer at the moment.

References

VDB-344934 | wasm3 NewCodePage memory leak vdb-entrytechnical-description
VDB-344934 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #752765 | wasm3 main branch Resource Consumption third-party-advisory
https://github.com/wasm3/wasm3/issues/550 issue-tracking
https://github.com/oneafter/cve-proofs/blob/main/POC-20251203-07/repro exploit
https://github.com/wasm3/wasm3/ product

Affected products

wasm3

==0.3
==0.2
==0.5.0
==0.4
==0.1

Matching in nixpkgs

pkgs.wasm3

Fastest WebAssembly interpreter, and the most universal runtime

nixos-unstable 0.5.0
- nixpkgs-unstable 0.5.0
- nixos-unstable-small 0.5.0
nixos-25.11 0.5.0
- nixpkgs-25.11-darwin 0.5.0

pkgs.tests.buildRustCrate.tests.crateLibOutputsWasm32

None

nixos-unstable -
- nixpkgs-unstable wasm32-crate-lib
- nixos-unstable-small wasm32-crate-lib
nixos-25.11 wasm32-crate-lib
- nixpkgs-25.11-darwin wasm32-crate-lib

pkgs.tests.buildRustCrate.tests.crateWasm32BinHyphens

None

nixos-unstable -
- nixpkgs-unstable wasm32-crate-bin-hyphens
- nixos-unstable-small wasm32-crate-bin-hyphens
nixos-25.11 wasm32-crate-bin-hyphens
- nixpkgs-25.11-darwin wasm32-crate-bin-hyphens

Package maintainers

@malbarbo Marco A L Barbosa <malbarbo@gmail.com>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.flam3

pkgs.fvwm3

pkgs.wasm3

pkgs.dhewm3

pkgs.grails

pkgs.icbm3d

pkgs.m32edit

pkgs.m33-linux

pkgs.stm32flash

pkgs.n-m3u8dl-re

pkgs.stm32cubemx

pkgs.stm32loader

pkgs.ubootCM3588NAS

pkgs.python312Packages.m3u8

pkgs.python313Packages.m3u8

pkgs.python314Packages.m3u8

pkgs.tests.fetchpatch.simple

pkgs.tests.fetchpatch2.simple

pkgs.python312Packages.pycomm3

pkgs.python313Packages.pycomm3

pkgs.python314Packages.pycomm3

pkgs.haskellPackages.data-stm32

pkgs.python312Packages.distorm3

pkgs.python313Packages.distorm3

pkgs.python314Packages.distorm3

pkgs.python312Packages.pymystem3

pkgs.python313Packages.pymystem3

pkgs.python314Packages.pymystem3

pkgs.python312Packages.quantulum3

pkgs.python313Packages.quantulum3

pkgs.python314Packages.quantulum3

pkgs.python312Packages.stm32loader

pkgs.python313Packages.stm32loader

pkgs.python314Packages.stm32loader

pkgs.haskellPackages.STM32F103xx-SVD

pkgs.python312Packages.pym3u8downloader

pkgs.python313Packages.pym3u8downloader

pkgs.python314Packages.pym3u8downloader

pkgs.tests.prefer-remote-fetch.fetchgit

pkgs.tests.fetchpatch.fileWithApostrophe

pkgs.tests.fetchFromGitHub.submodule-deep

pkgs.tests.fetchpatch2.fileWithApostrophe

pkgs.tests.fetchNextcloudApp.simple-sha512

pkgs.tests.fetchurl.flag-appending-curlOpts

pkgs.tests.buildRustCrate.tests.crateLibOutputsWasm32

pkgs.tests.buildRustCrate.tests.crateWasm32BinHyphens

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.wasm3

pkgs.tests.buildRustCrate.tests.crateLibOutputsWasm32

pkgs.tests.buildRustCrate.tests.crateWasm32BinHyphens

Package maintainers