NIXPKGS-2026-0072 published on 21 Jan 2026 CVE-2025-15281 updated 1 day ago by @LeSuisse Activity log Created automatic suggestion 1 day, 16 hours ago @LeSuisse removed 24 packages getconf mtrace locale getent iconv libc libiconv glibcInfo glibc_multi glibc_memusage glibcLocales glibcLocalesUtf8 unixtools.getent tests.hardeningFlags-clang.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled tests.hardeningFlags.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp unixtools.getconf unixtools.locale 1 day ago @LeSuisse accepted as draft 1 day ago @LeSuisse published on GitHub 1 day ago wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process. Affected products glibc =<2.42 Matching in nixpkgs pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 Package maintainers: 2 @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @Ma27 Maximilian Bosch <maximilian@mbosch.me> GitHub issue
CVE-2025-15281 updated 1 day ago by @LeSuisse Activity log Created automatic suggestion 1 day, 16 hours ago @LeSuisse removed 24 packages getconf mtrace locale getent iconv libc libiconv glibcInfo glibc_multi glibc_memusage glibcLocales glibcLocalesUtf8 unixtools.getent tests.hardeningFlags-clang.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled tests.hardeningFlags.allExplicitDisabledGlibcxxAssertions tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp unixtools.getconf unixtools.locale 1 day ago @LeSuisse accepted as draft 1 day ago @LeSuisse published on GitHub 1 day ago wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process. Affected products glibc =<2.42 Matching in nixpkgs pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66 Package maintainers: 2 @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @Ma27 Maximilian Bosch <maximilian@mbosch.me>
pkgs.glibc GNU C Library nixos-unstable 2.40-66 nixpkgs-unstable 2.40-66 nixos-unstable-small 2.40-66 nixos-25.05 2.40-66 nixos-25.05-small 2.40-66 nixpkgs-25.05-darwin 2.40-66