Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Automatically generated suggestions

to slate a suggestion for refinement.

to mark a suggestion as irrelevant and log the reason.

View:
Compact
Detailed
Permalink CVE-2013-4158
created 2 months ago Activity log
  • Created suggestion 2 months ago
smokeping before 2.6.9 has XSS (incomplete fix for CVE-2012-0790)

smokeping before 2.6.9 has XSS (incomplete fix for CVE-2012-0790)

Affected products

smokeping
  • ==< 2.6.9

Matching in nixpkgs

Package maintainers

Permalink CVE-2014-4860
created 2 months ago Activity log
  • Created suggestion 2 months ago
Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase …

Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase in the Capsule Update feature in the UEFI implementation in EDK2 allow physically proximate attackers to bypass intended access restrictions by providing crafted data that is not properly handled during the coalescing phase.

References

Affected products

BIOS
  • ==unknown
SCT3
  • ==before 5/23/2014

Matching in nixpkgs

pkgs.gnomeExtensions.one-click-bios

Restart into firmware settings directly from OS

  • nixos-unstable 8
    • nixpkgs-unstable 8
    • nixos-unstable-small 8
  • nixos-25.11 8
    • nixos-25.11-small 8
    • nixpkgs-25.11-darwin 8

Package maintainers

Permalink CVE-2013-3619
created 2 months ago Activity log
  • Created suggestion 2 months ago
Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 …

Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before SMT_X9_317 and firmware for Supermicro X8 generation motherboards before SMT X8 312 contain harcoded private encryption keys for the (1) Lighttpd web server SSL interface and the (2) Dropbear SSH daemon.

Affected products

IPMI
  • ==before SMT_X9_317 and before SMT X8 312

Matching in nixpkgs

pkgs.freeipmi

Implementation of the Intelligent Platform Management Interface

pkgs.ipmiutil

Easy-to-use IPMI server management utility

pkgs.openipmi

User-level library that provides a higher-level abstraction of IPMI and generic services

Package maintainers

Permalink CVE-2015-1326
created 2 months ago Activity log
  • Created suggestion 2 months ago
python-dbusmock arbitrary code execution or file overwrite when templates are loaded from /tmp

python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spawn_server_template() method could be tricked into executing malicious code if an attacker supplies a .pyc file.

References

Affected products

python-dbusmock
  • <0.15.1

Matching in nixpkgs

Package maintainers

Permalink CVE-2025-14876
5.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 2 months ago Activity log
  • Created suggestion 2 months ago
Qemu-kvm: unbounded allocation in virtio-crypto

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service (DoS) on the host system by causing the QEMU process to terminate unexpectedly.

References

Affected products

qemu
  • =<10.2.0
rhcos
qemu-kvm
qemu-kvm-ma
virt:rhel/qemu-kvm

Matching in nixpkgs

pkgs.qemu

Generic and open source machine emulator and virtualizer

pkgs.qemu-user

QEMU User space emulator - launch executables compiled for one CPU on another CPU

Package maintainers

Permalink CVE-2013-2012
created 2 months ago Activity log
  • Created suggestion 2 months ago
autojump before 21.5.8 allows local users to gain privileges via …

autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory.

Affected products

autojump
  • ==before 21.5.8

Matching in nixpkgs

Package maintainers

Permalink CVE-2014-0011
created 2 months ago Activity log
  • Created suggestion 2 months ago
Multiple heap-based buffer overflows in the ZRLE_DECODE function in common/rfb/zrleDecode.h …

Multiple heap-based buffer overflows in the ZRLE_DECODE function in common/rfb/zrleDecode.h in TigerVNC before 1.3.1, when NDEBUG is enabled, allow remote VNC servers to cause a denial of service (vncviewer crash) and possibly execute arbitrary code via vectors related to screen image rendering.

References

Affected products

TigerVNC
  • ==before 1.3.1

Matching in nixpkgs

Permalink CVE-2026-2657
3.3 LOW
  • CVSS version: 3.1
  • Attack vector (AV):
  • Attack complexity (AC):
  • Privileges required (PR):
  • User interaction (UI):
  • Scope (S):
  • Confidentiality impact (C):
  • Integrity impact (I):
  • Availability impact (A):
created 2 months ago Activity log
  • Created suggestion 2 months ago
wren-lang wren Error Message wren_compiler.c printError stack-based overflow

A vulnerability has been found in wren-lang wren up to 0.4.0. This impacts the function printError of the file src/vm/wren_compiler.c of the component Error Message Handler. Such manipulation leads to stack-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

wren
  • ==0.2
  • ==0.3
  • ==0.4.0
  • ==0.1

Matching in nixpkgs

Package maintainers

Permalink CVE-2015-7507
created 2 months ago Activity log
  • Created suggestion 2 months ago
libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a …

libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.

Affected products

Libnsbmp
  • ==0.1.2

Matching in nixpkgs

Package maintainers

Permalink CVE-2012-6094
created 2 months ago Activity log
  • Created suggestion 2 months ago
cups (Common Unix Printing System) 'Listen localhost:631' option not honored …

cups (Common Unix Printing System) 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system

References

Affected products

cups
  • ==<= 1.7.5

Matching in nixpkgs

pkgs.cups-filters

Backends, filters, and other software that was once part of the core CUPS distribution but is no longer maintained by Apple Inc

pkgs.cups-kyocera

CUPS drivers for several Kyocera FS-{1020,1025,1040,1060,1120,1125} printers

pkgs.cups-pk-helper

PolicyKit helper to configure cups with fine-grained privileges

pkgs.libcupsfilters

Backends, filters, and other software that was once part of the core CUPS distribution but is no longer maintained by Apple Inc

pkgs.cups-idprt-tspl

CUPS drivers for TSPL-based iDPRT thermal label printers (SP210, SP310, SP320, SP320E, SP410, SP410BT, SP420, SP450, SP460BT)

pkgs.cups-idprt-barcode

CUPS drivers for iDPRT barcode printers (iD2P, iD2X, iD4P, iD4S, iE2P, iE2X, iE4P, iE4S, iT4B, iT4E, iT4P, iT4S, iT4X, iX4E, iX4L, iX4P, iX4E, iX6P)

pkgs.cups-toshiba-estudio

Printer only driver for the Toshiba e-STUDIO class of printers

  • nixos-unstable 7.89
    • nixpkgs-unstable 7.89
    • nixos-unstable-small 7.89
  • nixos-25.11 7.89
    • nixos-25.11-small 7.89
    • nixpkgs-25.11-darwin 7.89

Package maintainers