Nixpkgs security tracker

Login with GitHub

Published issues

All published security issues are tracked and resolved on GitHub.

NIXPKGS-2025-0002
published 7 months, 2 weeks ago
Permalink CVE-2025-9900
8.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 7 months, 2 weeks ago by @balsoft Activity log
  • Created suggestion 8 months, 2 weeks ago
  • @balsoft accepted 7 months, 2 weeks ago
  • @balsoft deleted
    3 maintainers
    • @sikmir
    • @imincik
    • @nialov
    7 months, 2 weeks ago maintainer.delete
  • @balsoft added maintainer @balsoft 7 months, 2 weeks ago maintainer.add
  • @balsoft published on GitHub 7 months, 2 weeks ago

Libtiff: libtiff write-what-where

libtiff
  • *
  • <4.7.1
mingw-libtiff
  • *
compat-libtiff3
  • *
spice-client-win
  • *
rhaiis/vllm-cuda-rhel9
  • *
rhaiis/vllm-rocm-rhel9
  • *
rhaiis/model-opt-cuda-rhel9
  • *
discovery/discovery-ui-rhel9
  • *
NIXPKGS-2025-0001
published 7 months, 2 weeks ago
Permalink CVE-2025-8067
8.5 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Changed (C)
  • Confidentiality (C): Low (L)
  • Integrity (I): Low (L)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): Low (L)
  • Modified Availability (MA): High (H)
updated 7 months, 2 weeks ago by @balsoft Activity log
  • Created suggestion 8 months, 3 weeks ago
  • @balsoft added maintainer @balsoft 7 months, 2 weeks ago maintainer.add
  • @balsoft accepted 7 months, 2 weeks ago
  • @balsoft published on GitHub 7 months, 2 weeks ago

Udisks: out-of-bounds read in udisks daemon

udisks
udisks2
  • *
  • <2.10.2
  • <2.10.91