NIXPKGS-2026-0013 published on 16 Jan 2026 CVE-2026-0861 updated 6 days ago by @LeSuisse Activity log Created automatic suggestion 6 days, 10 hours ago @LeSuisse removed 21 packages tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled tests.hardeningFlags.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled tests.hardeningFlags-gcc.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-clang.allExplicitDisabledGlibcxxAssertions glibcLocalesUtf8 unixtools.getent unixtools.locale unixtools.getconf getent locale iconv mtrace getconf libiconv glibcInfo glibcLocales 6 days ago @LeSuisse accepted as draft 6 days ago @LeSuisse published on GitHub 6 days ago Integer overflow in memalign leads to heap corruption Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned_alloc, valloc, pvalloc) in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Affected products glibc =<2.42 Matching in nixpkgs pkgs.libc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 pkgs.glibc_multi None nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 Package maintainers: 2 @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @Ma27 Maximilian Bosch <maximilian@mbosch.me>
CVE-2026-0861 updated 6 days ago by @LeSuisse Activity log Created automatic suggestion 6 days, 10 hours ago @LeSuisse removed 21 packages tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled tests.hardeningFlags.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled tests.hardeningFlags-gcc.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-clang.allExplicitDisabledGlibcxxAssertions glibcLocalesUtf8 unixtools.getent unixtools.locale unixtools.getconf getent locale iconv mtrace getconf libiconv glibcInfo glibcLocales 6 days ago @LeSuisse accepted as draft 6 days ago @LeSuisse published on GitHub 6 days ago Integer overflow in memalign leads to heap corruption Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned_alloc, valloc, pvalloc) in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Affected products glibc =<2.42 Matching in nixpkgs pkgs.libc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 pkgs.glibc_multi None nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 Package maintainers: 2 @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @Ma27 Maximilian Bosch <maximilian@mbosch.me>
pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66
pkgs.glibc_multi None nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66
pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66