NIXPKGS-2026-0004 published on 11 Jan 2026 CVE-2025-69194 updated 1 week, 4 days ago by @LeSuisse Activity log Created automatic suggestion 1 week, 5 days ago @LeSuisse removed maintainer @SuperSandro2000 1 week, 5 days ago @LeSuisse accepted as draft 1 week, 5 days ago @LeSuisse published on GitHub 1 week, 4 days ago Wget2: arbitrary file write via metalink path traversal in gnu wget2 A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink <file name> elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially allow further compromise of the user’s environment. Affected products wget2 =<2.2.0 ==2.2.1 Matching in nixpkgs pkgs.wget2 Successor of GNU Wget, a file and recursive website downloader nixos-unstable 2.2.0 nixpkgs-unstable 2.2.0 nixos-unstable-small 2.2.0 nixos-25.11 2.2.0 nixos-25.11-small 2.2.0 nixpkgs-25.11-darwin 2.2.0 nixos-25.05 2.2.0 nixos-25.05-small 2.2.0 nixpkgs-25.05-darwin 2.2.0
CVE-2025-69194 updated 1 week, 4 days ago by @LeSuisse Activity log Created automatic suggestion 1 week, 5 days ago @LeSuisse removed maintainer @SuperSandro2000 1 week, 5 days ago @LeSuisse accepted as draft 1 week, 5 days ago @LeSuisse published on GitHub 1 week, 4 days ago Wget2: arbitrary file write via metalink path traversal in gnu wget2 A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink <file name> elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially allow further compromise of the user’s environment. Affected products wget2 =<2.2.0 ==2.2.1 Matching in nixpkgs pkgs.wget2 Successor of GNU Wget, a file and recursive website downloader nixos-unstable 2.2.0 nixpkgs-unstable 2.2.0 nixos-unstable-small 2.2.0 nixos-25.11 2.2.0 nixos-25.11-small 2.2.0 nixpkgs-25.11-darwin 2.2.0 nixos-25.05 2.2.0 nixos-25.05-small 2.2.0 nixpkgs-25.05-darwin 2.2.0
pkgs.wget2 Successor of GNU Wget, a file and recursive website downloader nixos-unstable 2.2.0 nixpkgs-unstable 2.2.0 nixos-unstable-small 2.2.0 nixos-25.11 2.2.0 nixos-25.11-small 2.2.0 nixpkgs-25.11-darwin 2.2.0 nixos-25.05 2.2.0 nixos-25.05-small 2.2.0 nixpkgs-25.05-darwin 2.2.0