Nixpkgs security tracker

Login with GitHub

Published issues

All published security issues are tracked and resolved on GitHub.

NIXPKGS-2026-2127
published an hour ago
Wasmtime: WASI hard links bypass wasmtime-wasi's FilePerms for destination
Permalink CVE-2026-58494
6.5 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Changed (C)
  • Confidentiality (C): None (N)
  • Integrity (I): High (H)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): None (N)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse ignored
    2 packages
    • python313Packages.wasmtime
    • python314Packages.wasmtime
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

Wasmtime: WASI hard links bypass wasmtime-wasi's FilePerms for destination


wasmtime
  • ==>= 25.0.0, < 36.0.12
  • ==>= 46.0.0, < 46.0.1
  • ==>= 37.0.0, < 45.0.3
  • ==< 24.0.11
NIXPKGS-2026-2126
published an hour ago
bentoml OpenLLM Model Repository Directory Name common.py async_run_command command injection
Permalink CVE-2026-15035
1.9 LOW
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): Low (L)
  • Vulnerable System Impact Integrity (VI): Low (L)
  • Vulnerable System Impact Availability (VA): Low (L)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Exploit Maturity (E): POC (P)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
  • Modified Vulnerable System Impact Integrity (MVI): Low (L)
  • Modified Vulnerable System Impact Availability (MVA): Low (L)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
updated an hour ago by @LeSuisse Activity log

bentoml OpenLLM Model Repository Directory Name common.py async_run_command command injection


OpenLLM
  • ==0.6.30
NIXPKGS-2026-2125
published an hour ago
etcd: gRPC client listener does not enforce `--client-crl-file` certificate revocation
Permalink CVE-2026-59818
6.5 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): None (N)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse ignored
    20 packages
    • netcdf
    • pnetcdf
    • netcdf-mpi
    • netcdfcxx4
    • netcdffortran
    • pkgsRocm.pnetcdf
    • pkgsRocm.netcdf-mpi
    • octavePackages.netcdf
    • python313Packages.etcd
    • python314Packages.etcd
    • python313Packages.aetcd
    • python313Packages.etcd3
    • python314Packages.aetcd
    • python314Packages.etcd3
    • python313Packages.netcdf4
    • python314Packages.netcdf4
    • python313Packages.h5netcdf
    • python314Packages.h5netcdf
    • python313Packages.python-etcd
    • python314Packages.python-etcd
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

etcd: gRPC client listener does not enforce `--client-crl-file` certificate revocation


etcd
  • ==>= 3.6.0-alpha.0, < 3.6.13
  • ==< 3.5.32
NIXPKGS-2026-2124
published an hour ago
httplib2: Decompression Bomb Denial of Service via Unbounded gzip/deflate Response Handling
Permalink CVE-2026-59939
7.5 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): High (H)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse ignored
    2 packages
    • python313Packages.google-auth-httplib2
    • python314Packages.google-auth-httplib2
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

httplib2: Decompression Bomb Denial of Service via Unbounded gzip/deflate Response Handling


httplib2
  • ==< 0.32.0
NIXPKGS-2026-2123
published an hour ago
Snipe-IT's selectlist visibility is too permissive
Permalink CVE-2026-48492
4.9 MEDIUM
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): None (N)
  • Vulnerable System Impact Availability (VA): None (N)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Exploit Maturity (E): Unreported (U)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): None (N)
  • Modified Vulnerable System Impact Availability (MVA): None (N)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

Snipe-IT's selectlist visibility is too permissive


snipe-it
  • ==< 8.5.1
NIXPKGS-2026-2122
published an hour ago
Heap-based Buffer Overflow in Wireshark
Permalink CVE-2026-15173
4.7 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): High (H)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

Heap-based Buffer Overflow in Wireshark


Wireshark
  • <4.6.7
NIXPKGS-2026-2121
published an hour ago
ONNX: Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs)
Permalink CVE-2026-44512
5.5 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): High (H)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse ignored
    39 packages
    • onnxruntime
    • sherpa-onnx
    • pkgsRocm.onnxruntime
    • pkgsRocm.sherpa-onnx
    • python313Packages.onnx
    • python314Packages.onnx
    • python313Packages.onnx-ir
    • python313Packages.tf2onnx
    • python314Packages.onnx-ir
    • python313Packages.onnx-asr
    • python313Packages.onnxslim
    • python313Packages.skl2onnx
    • python314Packages.onnx-asr
    • python314Packages.onnxslim
    • python314Packages.skl2onnx
    • python313Packages.onnxscript
    • python314Packages.onnxscript
    • python313Packages.onnxmltools
    • python313Packages.onnxruntime
    • python313Packages.sherpa-onnx
    • python314Packages.onnxmltools
    • python314Packages.onnxruntime
    • python314Packages.sherpa-onnx
    • python313Packages.optimum-onnx
    • python314Packages.optimum-onnx
    • pkgsRocm.python3Packages.onnx-ir
    • pkgsRocm.python3Packages.tf2onnx
    • pkgsRocm.python3Packages.onnx-asr
    • pkgsRocm.python3Packages.onnxscript
    • python313Packages.onnxruntime-tools
    • python314Packages.onnxruntime-tools
    • pkgsRocm.python3Packages.onnxruntime
    • pkgsRocm.python3Packages.sherpa-onnx
    • pkgsRocm.python3Packages.optimum-onnx
    • python313Packages.onnxconverter-common
    • python313Packages.rapidocr-onnxruntime
    • python314Packages.onnxconverter-common
    • python314Packages.rapidocr-onnxruntime
    • pkgsRocm.python3Packages.rapidocr-onnxruntime
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

ONNX: Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs)


onnx
  • ==>= 1.9.0, < 1.22.0
NIXPKGS-2026-2120
published an hour ago
Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse ignored
    10 packages
    • imager
    • usbimager
    • vcdimager
    • rpi-imager
    • gImageReader
    • gimagereader
    • gImageReader-qt
    • gimagereader-qt
    • perlPackages.ImagerQRCode
    • perl5Packages.ImagerQRCode
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed


Imager
  • <1.033
NIXPKGS-2026-2119
published an hour ago
LiteLLM: MCP Authentication Bypass via OAuth2 Passthrough Fallback
Permalink CVE-2026-59822
8.8 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): Low (L)
  • Vulnerable System Impact Availability (VA): None (N)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): Low (L)
  • Modified Vulnerable System Impact Availability (MVA): None (N)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

LiteLLM: MCP Authentication Bypass via OAuth2 Passthrough Fallback


litellm
  • ==< 1.84.0
Needs some backports to stable
NIXPKGS-2026-2118
published an hour ago
RestrictedPython guard hooks can be shadowed via positional-only arguments
Permalink CVE-2026-55830
8.3 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): Low (L)
updated an hour ago by @LeSuisse Activity log
  • Created suggestion
  • @LeSuisse accepted
  • @LeSuisse published on GitHub

RestrictedPython guard hooks can be shadowed via positional-only arguments


RestrictedPython
  • ==< 8.3