NIXPKGS-2026-0896

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-32619

updated 2 months, 3 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 3 weeks ago
@LeSuisse ignored
5 packages
- discourse-mail-receiver
- python312Packages.pydiscourse
- python313Packages.pydiscourse
- python314Packages.pydiscourse
- grafanaPlugins.grafana-discourse-datasource
2 months, 3 weeks ago
@LeSuisse deleted maintainer @talyz 2 months, 3 weeks ago maintainer.delete
@LeSuisse accepted 2 months, 3 weeks ago
@LeSuisse published on GitHub 2 months, 3 weeks ago

Discourse: Insufficient topic visibility check allows unauthorized poll manipulation in private categories

https://github.com/discourse/discourse/security/advisories/GHSA-wq58-pvf6-w4p8 x_refsource_CONFIRM
https://github.com/discourse/discourse/commit/d74ff25db994f06aa27e3466684f613b4e986ba6 x_refsource_MISC

discourse

==>= 2026.3.0-latest, < 2026.3.0
==>= 2026.1.0-latest, < 2026.1.3
==>= 2026.2.0-latest, < 2026.2.2

https://github.com/discourse/discourse/security/advisories/GHSA-wq58-pvf6-w4p8

NIXPKGS-2026-0895

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-32143

updated 2 months, 3 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 3 weeks ago
@LeSuisse ignored
5 packages
- discourse-mail-receiver
- python312Packages.pydiscourse
- python313Packages.pydiscourse
- python314Packages.pydiscourse
- grafanaPlugins.grafana-discourse-datasource
2 months, 3 weeks ago
@LeSuisse accepted 2 months, 3 weeks ago
@LeSuisse published on GitHub 2 months, 3 weeks ago

Discourse: Admin-only report can be exported by moderators

https://github.com/discourse/discourse/security/advisories/GHSA-rhjf-mgqw-37wq x_refsource_CONFIRM
https://github.com/discourse/discourse/commit/727029a2983a14b50bce19439fbf9840db8372aa x_refsource_MISC

discourse

==>= 2026.3.0-latest, < 2026.3.0
==>= 2026.1.0-latest, < 2026.1.3
==>= 2026.2.0-latest, < 2026.2.2

https://github.com/discourse/discourse/security/advisories/GHSA-rhjf-mgqw-37wq

NIXPKGS-2026-0894

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-32951

4.3 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): Low (L)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): None (N)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): None (N)

updated 2 months, 3 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 3 weeks ago
@LeSuisse ignored
5 packages
- discourse-mail-receiver
- python312Packages.pydiscourse
- python313Packages.pydiscourse
- python314Packages.pydiscourse
- grafanaPlugins.grafana-discourse-datasource
2 months, 3 weeks ago
@LeSuisse accepted 2 months, 3 weeks ago
@LeSuisse published on GitHub 2 months, 3 weeks ago

Discourse: Authorization bypass in oneboxer via user-controlled category id

https://github.com/discourse/discourse/security/advisories/GHSA-v93g-8f4f-4rgm x_refsource_CONFIRM
https://github.com/discourse/discourse/commit/0b4e6ff170362823d1cfe2a1a096785d0d77ee83 x_refsource_MISC

discourse

==>= 2026.3.0-latest, < 2026.3.0
==>= 2026.1.0-latest, < 2026.1.3
==>= 2026.2.0-latest, < 2026.2.2

https://github.com/discourse/discourse/security/advisories/GHSA-v93g-8f4f-4rgm

NIXPKGS-2026-0893

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-32615

updated 2 months, 3 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 3 weeks ago
@LeSuisse ignored
5 packages
- discourse-mail-receiver
- python312Packages.pydiscourse
- python313Packages.pydiscourse
- python314Packages.pydiscourse
- grafanaPlugins.grafana-discourse-datasource
2 months, 3 weeks ago
@LeSuisse accepted 2 months, 3 weeks ago
@LeSuisse published on GitHub 2 months, 3 weeks ago

Discourse: Category group moderators can perform actions on topics in restricted categories without read access

https://github.com/discourse/discourse/security/advisories/GHSA-pr9m-5hpq-wc57 x_refsource_CONFIRM
https://github.com/discourse/discourse/commit/5a00b47523ec70cbb6e8efc3ac7677cc0a91448b x_refsource_MISC

discourse

==>= 2026.3.0-latest, < 2026.3.0
==>= 2026.1.0-latest, < 2026.1.3
==>= 2026.2.0-latest, < 2026.2.2

https://github.com/discourse/discourse/security/advisories/GHSA-pr9m-5hpq-wc57

NIXPKGS-2026-0892

GitHub issue published 2 months, 3 weeks ago

          Permalink
          
            CVE-2026-32113
          
              updated
            
          2 months, 3 weeks ago
          by @LeSuisse
        
      Activity log
    
              Created suggestion
            
          2 months, 3 weeks ago
          
          @LeSuisse
          
              ignored
            
                5 packages
                discourse-mail-receiver
python312Packages.pydiscourse
python313Packages.pydiscourse
python314Packages.pydiscourse
grafanaPlugins.grafana-discourse-datasource

          2 months, 3 weeks ago
          
          @LeSuisse
          
              accepted
            
          2 months, 3 weeks ago
          
          @LeSuisse
          
              published on GitHub
            
          2 months, 3 weeks ago
          
            Discourse: Open redirect via `sso_destination_url` cookie in `enter`
          
      https://github.com/discourse/discourse/security/advisories/GHSA-378j-ccw4-4fwh
    
    x_refsource_CONFIRM
  
      https://github.com/discourse/discourse/commit/080408b93d00305b51d71f63f755f43fa601884d
    
    x_refsource_MISC
  
      https://meta.discourse.org/t/using-discourse-as-a-sso-provider/32974
    
    x_refsource_MISC
  
    discourse

            ==>= 2026.3.0-latest, < 2026.3.0
          
            ==>= 2026.1.0-latest, < 2026.1.3
          
            ==>= 2026.2.0-latest, < 2026.2.2
          
          https://github.com/discourse/discourse/security/advisories/GHSA-378j-ccw4-4fwh

NIXPKGS-2026-0863

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2025-49010

3.8 LOW

CVSS version (CVSS): 3.1
Attack Vector (AV): Physical (P)
Attack Complexity (AC): High (H)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): Low (L)
Availability (A): Low (L)
Modified Attack Vector (MAV): Physical (P)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): Low (L)
Modified Availability (MA): Low (L)

updated 2 months, 3 weeks ago by @mweinelt Activity log

Created suggestion 2 months, 3 weeks ago
@mweinelt ignored
12 packages
- python313Packages.tree-sitter-grammars.tree-sitter-openscad
- python314Packages.tree-sitter-grammars.tree-sitter-openscad
- openscad
- openscap
- openscreen
- openscad-lsp
- openscenegraph
- openscad-unstable
- opensc
- tree-sitter-grammars.tree-sitter-openscad
- vscode-extensions.antyos.openscad
- kakounePlugins.openscad-kak
2 months, 3 weeks ago
@mweinelt restored package opensc 2 months, 3 weeks ago
@mweinelt accepted 2 months, 3 weeks ago
@mweinelt published on GitHub 2 months, 3 weeks ago

OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

https://github.com/OpenSC/OpenSC/security/advisories/GHSA-q5cf-5wmx-9wh4 x_refsource_CONFIRM
https://github.com/OpenSC/OpenSC/wiki/CVE-2025-49010 x_refsource_MISC

OpenSC

==< 0.27.0

https://github.com/OpenSC/OpenSC/security/advisories/GHSA-q5cf-5wmx-9wh4

NIXPKGS-2026-0891

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-25704

updated 2 months, 3 weeks ago by @mweinelt Activity log

Created suggestion 2 months, 3 weeks ago
@mweinelt accepted 2 months, 3 weeks ago
@mweinelt published on GitHub 2 months, 3 weeks ago

Incomplete privilege drop for com.system76.CosmicGreeter.GetUserData

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25704

cosmic-greeter

<https://github.com/pop-os/cosmic-greeter/pull/426

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25704

NIXPKGS-2026-0890

GitHub issue published 2 months, 3 weeks ago

          Permalink
          
            CVE-2026-5107
          
        4.2 MEDIUM
      
        CVSS version (CVSS): 3.1
      
          Attack Vector (AV): Network (N)
        
          Attack Complexity (AC): High (H)
        
          Privileges Required (PR): Low (L)
        
          User Interaction (UI): None (N)
        
          Scope (S): Unchanged (U)
        
          Confidentiality (C): None (N)
        
          Integrity (I): Low (L)
        
          Availability (A): Low (L)
        
          Exploit Code Maturity (E): Not Defined (X)
        
          Remediation Level (RL): Official Fix (O)
        
          Report Confidence (RC): Confirmed (C)
        
          Modified Attack Vector (MAV): Network (N)
        
          Modified Attack Complexity (MAC): High (H)
        
          Modified Privileges Required (MPR): Low (L)
        
          Modified User Interaction (MUI): None (N)
        
          Modified Confidentiality (MC): None (N)
        
          Modified Scope (MS): Unchanged (U)
        
          Modified Integrity (MI): Low (L)
        
          Modified Availability (MA): Low (L)
        
              updated
            
          2 months, 3 weeks ago
          by @mweinelt
        
      Activity log
    
              Created suggestion
            
          2 months, 3 weeks ago
          
          @mweinelt
          
              ignored
            
                2 packages
                prometheus-frr-exporter
tests.prefer-remote-fetch.fetchgit

          2 months, 3 weeks ago
          
          @mweinelt
          
              accepted
            
          2 months, 3 weeks ago
          
          @mweinelt
          
              published on GitHub
            
          2 months, 3 weeks ago
          
            FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control
          
      VDB-354132 | FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control
    
    technical-descriptionvdb-entry
  
      VDB-354132 | CTI Indicators (IOB, IOC, TTP, IOA)
    
    permissions-requiredsignature
  
      Submit #780123 | FRRouting FRR 10.5.1 Improper Input Validation
    
    third-party-advisory
  
      https://github.com/FRRouting/frr/pull/21098
    
    issue-trackingpatch
  
      https://github.com/FRRouting/frr/commit/7676cad65114aa23adde583d91d9d29e2debd045
    
    patch
  
      https://github.com/FRRouting/frr/
    
    product
  
    FRR

            ==10.5.1
          
            ==10.5.0
          
          https://github.com/FRRouting/frr/commit/7676cad65114aa23adde583d91d9d29e2debd045

NIXPKGS-2026-0889

GitHub issue published 2 months, 3 weeks ago

          Permalink
          
            CVE-2026-27018
          
              updated
            
          2 months, 3 weeks ago
          by @mweinelt
        
      Activity log
    
              Created suggestion
            
          2 months, 3 weeks ago
          
          @mweinelt
          
              ignored
            
                3 packages
                python312Packages.gotenberg-client
python313Packages.gotenberg-client
python314Packages.gotenberg-client

          2 months, 3 weeks ago
          
          @mweinelt
          
              accepted
            
          2 months, 3 weeks ago
          
          @mweinelt
          
              published on GitHub
            
          2 months, 3 weeks ago
          
            Gotenberg: Chromium deny-list bypass via case-insensitive URL scheme
          
      https://github.com/gotenberg/gotenberg/security/advisories/GHSA-jjwv-57xh-xr6r
    
    x_refsource_CONFIRM
  
      https://github.com/gotenberg/gotenberg/commit/06b2b2e10c52b58135edbfe82e94d599eb0c5a11
    
    x_refsource_MISC
  
      https://github.com/gotenberg/gotenberg/commit/8625a4e899eb75e6fcf46d28394334c7fd79fff5
    
    x_refsource_MISC
  
      https://github.com/gotenberg/gotenberg/releases/tag/v8.29.0
    
    x_refsource_MISC
  
    gotenberg

            ==< 8.29.0
          
          https://github.com/gotenberg/gotenberg/security/advisories/GHSA-jjwv-57xh-xr6r

NIXPKGS-2026-0888

GitHub issue published 2 months, 3 weeks ago

Permalink CVE-2026-5121

updated 2 months, 3 weeks ago by @mweinelt Activity log

Created suggestion 2 months, 3 weeks ago
@mweinelt ignored
28 packages
- libarchive-qt
- haskellPackages.libarchive
- kodiPackages.vfs-libarchive
- perlPackages.ArchiveLibarchive
- python312Packages.libarchive-c
- python313Packages.libarchive-c
- python314Packages.libarchive-c
- haskellPackages.libarchive-clib
- perl5Packages.ArchiveLibarchive
- perl538Packages.ArchiveLibarchive
- perl540Packages.ArchiveLibarchive
- haskellPackages.archive-libarchive
- haskellPackages.libarchive-conduit
- perlPackages.ArchiveLibarchivePeek
- perlPackages.TestArchiveLibarchive
- perl5Packages.ArchiveLibarchivePeek
- perl5Packages.TestArchiveLibarchive
- perl538Packages.ArchiveLibarchivePeek
- perl538Packages.TestArchiveLibarchive
- perl540Packages.ArchiveLibarchivePeek
- perl540Packages.TestArchiveLibarchive
- perlPackages.ArchiveLibarchiveExtract
- perl5Packages.ArchiveLibarchiveExtract
- perl538Packages.ArchiveLibarchiveExtract
- perl540Packages.ArchiveLibarchiveExtract
- python312Packages.extractcode-libarchive
- python313Packages.extractcode-libarchive
- python314Packages.extractcode-libarchive
2 months, 3 weeks ago
@mweinelt accepted 2 months, 3 weeks ago
@mweinelt published on GitHub 2 months, 3 weeks ago

Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing

https://access.redhat.com/security/cve/CVE-2026-5121 x_refsource_REDHATvdb-entry
https://github.com/libarchive/libarchive/pull/2934

rhcos

libarchive

https://github.com/libarchive/libarchive/pull/2934

Nixpkgs security tracker

Published issues

Discourse: Insufficient topic visibility check allows unauthorized poll manipulation in private categories

Discourse: Admin-only report can be exported by moderators

Discourse: Authorization bypass in oneboxer via user-controlled category id

Discourse: Category group moderators can perform actions on topics in restricted categories without read access

Discourse: Open redirect via `sso_destination_url` cookie in `enter`

OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

Incomplete privilege drop for com.system76.CosmicGreeter.GetUserData

FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control

Gotenberg: Chromium deny-list bypass via case-insensitive URL scheme

Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing