Automatically generated suggestions

Create Draft to queue a suggestion for refinement.

Dismiss to remove a suggestion from the queue.

CVE-2025-48041 created 1 month, 2 weeks ago
SSH_FXP_OPENDIR may Lead to Exhaustion of File Handles

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

ssh
<pkg:otp/ssh@*
*

pkgs.assh

Advanced SSH config - Regex, aliases, gateways, includes and dynamic hosts

pkgs.pssh

Parallel SSH Tools

pkgs.sshs

Terminal user interface for SSH

pkgs.sshx

Fast, collaborative live terminal sharing over the web

pkgs.zssh

SSH and Telnet client with ZMODEM file transfer capability

pkgs.passh

Sshpass alternative for non-interactive ssh auth

pkgs.sshed

ssh config editor and bookmarks manager

pkgs.libssh

SSH client library

pkgs.opkssh

Enables SSH to be used with OpenID Connect

pkgs.smassh

TUI based typing test application inspired by MonkeyType

pkgs.tarssh

Simple SSH tarpit inspired by endlessh

pkgs.webssh

Web based SSH client

pkgs.autossh

Automatically restart SSH sessions and tunnels

pkgs.lazyssh

Terminal-based SSH manager

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

pkgs.openssh

Implementation of the SSH protocol

pkgs.sshoogr

A Groovy-based DSL for working with remote SSH servers

pkgs.sshpass

Non-interactive ssh password auth

pkgs.sshping

Measure character-echo latency and bandwidth for an interactive ssh session

pkgs.tinyssh

Minimalistic SSH server

pkgs.baboossh

Tool to do SSH spreading

pkgs.endlessh

SSH tarpit that slowly sends an endless banner

pkgs.esshader

Offline ShaderToy-compatible GLSL shader viewer using OpenGL ES 2.0

pkgs.fast-ssh

TUI tool to use the SSH config for connections

pkgs.hyperssh

Run SSH over hyperswarm

pkgs.pam_rssh

PAM module for authenticating via ssh-agent, written in Rust

pkgs.pfsshell

PFS (PlayStation File System) shell for POSIX-based systems

pkgs.ssh-chat

Chat over SSH

pkgs.ssh-mitm

Tool for SSH security audits

pkgs.sshesame

Easy to set up and use SSH honeypot

pkgs.sshguard

Protects hosts from brute-force attacks

pkgs.sshified

Proxy HTTP requests through SSH

pkgs.sshlatex

Collection of hacks to efficiently run LaTeX via ssh

pkgs.sshocker

Tool for SSH, reverse sshfs and port forwarder

pkgs.sshuttle

Transparent proxy server that works as a poor man's VPN

pkgs.guile-ssh

Bindings to Libssh for GNU Guile

pkgs.ssh-audit

Tool for ssh server auditing

pkgs.ssh-ident

Start and use ssh-agent and load identities as necessary

pkgs.ssh-tools

Making SSH more convenient

pkgs.sshportal

Simple, fun and transparent SSH (and telnet) bastion server

pkgs.tmux-cssh

SSH to multiple hosts at the same time using tmux

pkgs.trzsz-ssh

SSH client designed as a drop-in replacement for the openssh client

pkgs.usbip-ssh

Import usb devices from another linux machine with ssh's connection forwarding mechanism

pkgs.ssh-agents

Spawn and maintain multiple ssh-agents across terminals

pkgs.ssh-to-age

Convert ssh private keys in ed25519 format to age keys

pkgs.ssh-to-pgp

Convert ssh private keys to PGP

pkgs.sshchecker

Dedicated SSH brute-forcing tool

pkgs.sshfs-fuse

FUSE-based filesystem that allows remote filesystems to be mounted over SSH

pkgs.endlessh-go

Implementation of endlessh exporting Prometheus metrics

pkgs.opensshTest

Implementation of the SSH protocol

pkgs.openssh_hpn

Implementation of the SSH protocol with high performance networking patches

pkgs.pritunl-ssh

Pritunl Zero SSH client

pkgs.ssh-copy-id

Tool to copy SSH public keys to a remote machine

pkgs.sshx-server

Fast, collaborative live terminal sharing over the web

pkgs.ssh-import-id

Retrieves an SSH public key and installs it locally

pkgs.ssh-tpm-agent

SSH agent with support for TPM sealed keys for public key authentication

pkgs.openssh_gssapi

Implementation of the SSH protocol with GSSAPI support

pkgs.tkey-ssh-agent

SSH Agent for TKey, the flexible open hardware/software USB security key

pkgs.vault-ssh-plus

Automatically use HashiCorp Vault SSH Client Key Signing with ssh(1)

pkgs.x11_ssh_askpass

Lightweight passphrase dialog for OpenSSH or other open variants of SSH

pkgs.drone-runner-ssh

Experimental Drone runner that executes a pipeline on a remote machine

pkgs.ssh-openpgp-auth

Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts

pkgs.tmate-ssh-server

tmate SSH Server

pkgs.ssh-key-confirmer

Test ssh login key acceptance without having the private key

pkgs.sshd-openpgp-auth

Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys

pkgs.pam_ssh_agent_auth

PAM module for authentication through the SSH agent

pkgs.keepass-keepasshttp

pkgs.opensshWithKerberos

Implementation of the SSH protocol

pkgs.haskellPackages.hssh

SSH protocol implementation

pkgs.php81Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php82Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php83Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php84Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.rubyPackages.net-ssh

pkgs.haskellPackages.libssh

libssh bindings

pkgs.ssh-askpass-fullscreen

Small, fullscreen SSH askpass GUI using GTK+2

pkgs.hareThirdParty.hare-ssh

SSH client & server protocol implementation for Hare

pkgs.haskellPackages.chesshs

Simple library for validating chess moves and parsing PGN files

pkgs.kdePackages.ksshaskpass

ssh-add helper that uses KWallet and KPasswordDialog

pkgs.openssh_hpnWithKerberos

Implementation of the SSH protocol with high performance networking patches

pkgs.python312Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.python313Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.terraform-providers.ssh

pkgs.azure-cli-extensions.ssh

SSH into Azure VMs using RBAC and AAD OpenSSH Certificates

pkgs.python312Packages.webssh

Web based SSH client

pkgs.python313Packages.webssh

Web based SSH client

pkgs.rubyPackages_3_1.net-ssh

pkgs.rubyPackages_3_2.net-ssh

pkgs.rubyPackages_3_3.net-ssh

pkgs.rubyPackages_3_4.net-ssh

pkgs.gnomeExtensions.guake-ssh

Systray menu to connect to SSH hosts configured in ~/.ssh/config or any files in ~/.ssh/config.d/ using Guake.

pkgs.lxqt.lxqt-openssh-askpass

GUI to query passwords on behalf of SSH agents

pkgs.python312Packages.dvc-ssh

SSH plugin for dvc

pkgs.python313Packages.dvc-ssh

SSH plugin for dvc

pkgs.python312Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python313Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python312Packages.sshtunnel

Pure python SSH tunnels

pkgs.python313Packages.sshtunnel

Pure python SSH tunnels

pkgs.python312Packages.ssh-python

Python bindings for libssh C library

pkgs.python312Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python313Packages.ssh-python

Python bindings for libssh C library

pkgs.python313Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python312Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.python313Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.haskellPackages.ssh-known-hosts

Read and interpret the SSH known-hosts file

pkgs.gnomeExtensions.ssh-profile-list

SSH Profile List is a GNOME extension that allows you to show SSH connections from .ssh/config file directly from the GNOME panel systray. This extension is fork of https://github.com/pramalho/guake-ssh-extension that modified to run on any terminal.

pkgs.python312Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python313Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python312Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python313Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.gnomeExtensions.rdp-and-ssh-connect

Connect to hosts in $HOME/.config/rd-ssh-connect/config.json file with Remmina (RDP or VNC) or SSH.

pkgs.vscode-extensions.leonardssh.vscord

Highly customizable Discord Rich Presence extension for Visual Studio Code

pkgs.chickenPackages_5.chickenEggs.minissh

An SSH-2 server and client implementation

pkgs.gnomeExtensions.ssh-search-provider-reborn

Provide SSH search results in overview.

pkgs.python312Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.python313Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.vimPlugins.nvim-treesitter-parsers.ssh_config

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh

Use any remote machine with a SSH server as your development environment

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh-edit

Visual Studio Code extension that complements the Remote SSH extension with syntax colorization, keyword intellisense, and simple snippets when editing SSH configuration files
Package maintainers: 78
CVE-2025-48040 created 1 month, 2 weeks ago
Malicious Key Exchange Messages may Lead to Excessive Resource Consumption

Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

ssh
<pkg:otp/ssh@*
*

pkgs.assh

Advanced SSH config - Regex, aliases, gateways, includes and dynamic hosts

pkgs.pssh

Parallel SSH Tools

pkgs.sshs

Terminal user interface for SSH

pkgs.sshx

Fast, collaborative live terminal sharing over the web

pkgs.zssh

SSH and Telnet client with ZMODEM file transfer capability

pkgs.passh

Sshpass alternative for non-interactive ssh auth

pkgs.sshed

ssh config editor and bookmarks manager

pkgs.libssh

SSH client library

pkgs.opkssh

Enables SSH to be used with OpenID Connect

pkgs.smassh

TUI based typing test application inspired by MonkeyType

pkgs.tarssh

Simple SSH tarpit inspired by endlessh

pkgs.webssh

Web based SSH client

pkgs.autossh

Automatically restart SSH sessions and tunnels

pkgs.lazyssh

Terminal-based SSH manager

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

pkgs.openssh

Implementation of the SSH protocol

pkgs.sshoogr

A Groovy-based DSL for working with remote SSH servers

pkgs.sshpass

Non-interactive ssh password auth

pkgs.sshping

Measure character-echo latency and bandwidth for an interactive ssh session

pkgs.tinyssh

Minimalistic SSH server

pkgs.baboossh

Tool to do SSH spreading

pkgs.endlessh

SSH tarpit that slowly sends an endless banner

pkgs.esshader

Offline ShaderToy-compatible GLSL shader viewer using OpenGL ES 2.0

pkgs.fast-ssh

TUI tool to use the SSH config for connections

pkgs.hyperssh

Run SSH over hyperswarm

pkgs.pam_rssh

PAM module for authenticating via ssh-agent, written in Rust

pkgs.pfsshell

PFS (PlayStation File System) shell for POSIX-based systems

pkgs.ssh-chat

Chat over SSH

pkgs.ssh-mitm

Tool for SSH security audits

pkgs.sshesame

Easy to set up and use SSH honeypot

pkgs.sshguard

Protects hosts from brute-force attacks

pkgs.sshified

Proxy HTTP requests through SSH

pkgs.sshlatex

Collection of hacks to efficiently run LaTeX via ssh

pkgs.sshocker

Tool for SSH, reverse sshfs and port forwarder

pkgs.sshuttle

Transparent proxy server that works as a poor man's VPN

pkgs.guile-ssh

Bindings to Libssh for GNU Guile

pkgs.ssh-audit

Tool for ssh server auditing

pkgs.ssh-ident

Start and use ssh-agent and load identities as necessary

pkgs.ssh-tools

Making SSH more convenient

pkgs.sshportal

Simple, fun and transparent SSH (and telnet) bastion server

pkgs.tmux-cssh

SSH to multiple hosts at the same time using tmux

pkgs.trzsz-ssh

SSH client designed as a drop-in replacement for the openssh client

pkgs.usbip-ssh

Import usb devices from another linux machine with ssh's connection forwarding mechanism

pkgs.ssh-agents

Spawn and maintain multiple ssh-agents across terminals

pkgs.ssh-to-age

Convert ssh private keys in ed25519 format to age keys

pkgs.ssh-to-pgp

Convert ssh private keys to PGP

pkgs.sshchecker

Dedicated SSH brute-forcing tool

pkgs.sshfs-fuse

FUSE-based filesystem that allows remote filesystems to be mounted over SSH

pkgs.endlessh-go

Implementation of endlessh exporting Prometheus metrics

pkgs.opensshTest

Implementation of the SSH protocol

pkgs.openssh_hpn

Implementation of the SSH protocol with high performance networking patches

pkgs.pritunl-ssh

Pritunl Zero SSH client

pkgs.ssh-copy-id

Tool to copy SSH public keys to a remote machine

pkgs.sshx-server

Fast, collaborative live terminal sharing over the web

pkgs.ssh-import-id

Retrieves an SSH public key and installs it locally

pkgs.ssh-tpm-agent

SSH agent with support for TPM sealed keys for public key authentication

pkgs.openssh_gssapi

Implementation of the SSH protocol with GSSAPI support

pkgs.tkey-ssh-agent

SSH Agent for TKey, the flexible open hardware/software USB security key

pkgs.vault-ssh-plus

Automatically use HashiCorp Vault SSH Client Key Signing with ssh(1)

pkgs.x11_ssh_askpass

Lightweight passphrase dialog for OpenSSH or other open variants of SSH

pkgs.drone-runner-ssh

Experimental Drone runner that executes a pipeline on a remote machine

pkgs.ssh-openpgp-auth

Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts

pkgs.tmate-ssh-server

tmate SSH Server

pkgs.ssh-key-confirmer

Test ssh login key acceptance without having the private key

pkgs.sshd-openpgp-auth

Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys

pkgs.pam_ssh_agent_auth

PAM module for authentication through the SSH agent

pkgs.keepass-keepasshttp

pkgs.opensshWithKerberos

Implementation of the SSH protocol

pkgs.haskellPackages.hssh

SSH protocol implementation

pkgs.php81Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php82Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php83Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php84Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.rubyPackages.net-ssh

pkgs.haskellPackages.libssh

libssh bindings

pkgs.ssh-askpass-fullscreen

Small, fullscreen SSH askpass GUI using GTK+2

pkgs.hareThirdParty.hare-ssh

SSH client & server protocol implementation for Hare

pkgs.haskellPackages.chesshs

Simple library for validating chess moves and parsing PGN files

pkgs.kdePackages.ksshaskpass

ssh-add helper that uses KWallet and KPasswordDialog

pkgs.openssh_hpnWithKerberos

Implementation of the SSH protocol with high performance networking patches

pkgs.python312Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.python313Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.terraform-providers.ssh

pkgs.azure-cli-extensions.ssh

SSH into Azure VMs using RBAC and AAD OpenSSH Certificates

pkgs.python312Packages.webssh

Web based SSH client

pkgs.python313Packages.webssh

Web based SSH client

pkgs.rubyPackages_3_1.net-ssh

pkgs.rubyPackages_3_2.net-ssh

pkgs.rubyPackages_3_3.net-ssh

pkgs.rubyPackages_3_4.net-ssh

pkgs.gnomeExtensions.guake-ssh

Systray menu to connect to SSH hosts configured in ~/.ssh/config or any files in ~/.ssh/config.d/ using Guake.

pkgs.lxqt.lxqt-openssh-askpass

GUI to query passwords on behalf of SSH agents

pkgs.python312Packages.dvc-ssh

SSH plugin for dvc

pkgs.python313Packages.dvc-ssh

SSH plugin for dvc

pkgs.python312Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python313Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python312Packages.sshtunnel

Pure python SSH tunnels

pkgs.python313Packages.sshtunnel

Pure python SSH tunnels

pkgs.python312Packages.ssh-python

Python bindings for libssh C library

pkgs.python312Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python313Packages.ssh-python

Python bindings for libssh C library

pkgs.python313Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python312Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.python313Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.haskellPackages.ssh-known-hosts

Read and interpret the SSH known-hosts file

pkgs.gnomeExtensions.ssh-profile-list

SSH Profile List is a GNOME extension that allows you to show SSH connections from .ssh/config file directly from the GNOME panel systray. This extension is fork of https://github.com/pramalho/guake-ssh-extension that modified to run on any terminal.

pkgs.python312Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python313Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python312Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python313Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.gnomeExtensions.rdp-and-ssh-connect

Connect to hosts in $HOME/.config/rd-ssh-connect/config.json file with Remmina (RDP or VNC) or SSH.

pkgs.vscode-extensions.leonardssh.vscord

Highly customizable Discord Rich Presence extension for Visual Studio Code

pkgs.chickenPackages_5.chickenEggs.minissh

An SSH-2 server and client implementation

pkgs.gnomeExtensions.ssh-search-provider-reborn

Provide SSH search results in overview.

pkgs.python312Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.python313Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.vimPlugins.nvim-treesitter-parsers.ssh_config

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh

Use any remote machine with a SSH server as your development environment

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh-edit

Visual Studio Code extension that complements the Remote SSH extension with syntax colorization, keyword intellisense, and simple snippets when editing SSH configuration files
Package maintainers: 78
CVE-2025-48038 created 1 month, 2 weeks ago
Unverified File Handles can Cause Excessive Use of System Resources

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

ssh
<pkg:otp/ssh@*
*

pkgs.assh

Advanced SSH config - Regex, aliases, gateways, includes and dynamic hosts

pkgs.pssh

Parallel SSH Tools

pkgs.sshs

Terminal user interface for SSH

pkgs.sshx

Fast, collaborative live terminal sharing over the web

pkgs.zssh

SSH and Telnet client with ZMODEM file transfer capability

pkgs.passh

Sshpass alternative for non-interactive ssh auth

pkgs.sshed

ssh config editor and bookmarks manager

pkgs.libssh

SSH client library

pkgs.opkssh

Enables SSH to be used with OpenID Connect

pkgs.smassh

TUI based typing test application inspired by MonkeyType

pkgs.tarssh

Simple SSH tarpit inspired by endlessh

pkgs.webssh

Web based SSH client

pkgs.autossh

Automatically restart SSH sessions and tunnels

pkgs.lazyssh

Terminal-based SSH manager

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

pkgs.openssh

Implementation of the SSH protocol

pkgs.sshoogr

A Groovy-based DSL for working with remote SSH servers

pkgs.sshpass

Non-interactive ssh password auth

pkgs.sshping

Measure character-echo latency and bandwidth for an interactive ssh session

pkgs.tinyssh

Minimalistic SSH server

pkgs.baboossh

Tool to do SSH spreading

pkgs.endlessh

SSH tarpit that slowly sends an endless banner

pkgs.esshader

Offline ShaderToy-compatible GLSL shader viewer using OpenGL ES 2.0

pkgs.fast-ssh

TUI tool to use the SSH config for connections

pkgs.hyperssh

Run SSH over hyperswarm

pkgs.pam_rssh

PAM module for authenticating via ssh-agent, written in Rust

pkgs.pfsshell

PFS (PlayStation File System) shell for POSIX-based systems

pkgs.ssh-chat

Chat over SSH

pkgs.ssh-mitm

Tool for SSH security audits

pkgs.sshesame

Easy to set up and use SSH honeypot

pkgs.sshguard

Protects hosts from brute-force attacks

pkgs.sshified

Proxy HTTP requests through SSH

pkgs.sshlatex

Collection of hacks to efficiently run LaTeX via ssh

pkgs.sshocker

Tool for SSH, reverse sshfs and port forwarder

pkgs.sshuttle

Transparent proxy server that works as a poor man's VPN

pkgs.guile-ssh

Bindings to Libssh for GNU Guile

pkgs.ssh-audit

Tool for ssh server auditing

pkgs.ssh-ident

Start and use ssh-agent and load identities as necessary

pkgs.ssh-tools

Making SSH more convenient

pkgs.sshportal

Simple, fun and transparent SSH (and telnet) bastion server

pkgs.tmux-cssh

SSH to multiple hosts at the same time using tmux

pkgs.trzsz-ssh

SSH client designed as a drop-in replacement for the openssh client

pkgs.usbip-ssh

Import usb devices from another linux machine with ssh's connection forwarding mechanism

pkgs.ssh-agents

Spawn and maintain multiple ssh-agents across terminals

pkgs.ssh-to-age

Convert ssh private keys in ed25519 format to age keys

pkgs.ssh-to-pgp

Convert ssh private keys to PGP

pkgs.sshchecker

Dedicated SSH brute-forcing tool

pkgs.sshfs-fuse

FUSE-based filesystem that allows remote filesystems to be mounted over SSH

pkgs.endlessh-go

Implementation of endlessh exporting Prometheus metrics

pkgs.opensshTest

Implementation of the SSH protocol

pkgs.openssh_hpn

Implementation of the SSH protocol with high performance networking patches

pkgs.pritunl-ssh

Pritunl Zero SSH client

pkgs.ssh-copy-id

Tool to copy SSH public keys to a remote machine

pkgs.sshx-server

Fast, collaborative live terminal sharing over the web

pkgs.ssh-import-id

Retrieves an SSH public key and installs it locally

pkgs.ssh-tpm-agent

SSH agent with support for TPM sealed keys for public key authentication

pkgs.openssh_gssapi

Implementation of the SSH protocol with GSSAPI support

pkgs.tkey-ssh-agent

SSH Agent for TKey, the flexible open hardware/software USB security key

pkgs.vault-ssh-plus

Automatically use HashiCorp Vault SSH Client Key Signing with ssh(1)

pkgs.x11_ssh_askpass

Lightweight passphrase dialog for OpenSSH or other open variants of SSH

pkgs.drone-runner-ssh

Experimental Drone runner that executes a pipeline on a remote machine

pkgs.ssh-openpgp-auth

Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts

pkgs.tmate-ssh-server

tmate SSH Server

pkgs.ssh-key-confirmer

Test ssh login key acceptance without having the private key

pkgs.sshd-openpgp-auth

Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys

pkgs.pam_ssh_agent_auth

PAM module for authentication through the SSH agent

pkgs.keepass-keepasshttp

pkgs.opensshWithKerberos

Implementation of the SSH protocol

pkgs.haskellPackages.hssh

SSH protocol implementation

pkgs.php81Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php82Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php83Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php84Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.rubyPackages.net-ssh

pkgs.haskellPackages.libssh

libssh bindings

pkgs.ssh-askpass-fullscreen

Small, fullscreen SSH askpass GUI using GTK+2

pkgs.hareThirdParty.hare-ssh

SSH client & server protocol implementation for Hare

pkgs.haskellPackages.chesshs

Simple library for validating chess moves and parsing PGN files

pkgs.kdePackages.ksshaskpass

ssh-add helper that uses KWallet and KPasswordDialog

pkgs.openssh_hpnWithKerberos

Implementation of the SSH protocol with high performance networking patches

pkgs.python312Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.python313Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.terraform-providers.ssh

pkgs.azure-cli-extensions.ssh

SSH into Azure VMs using RBAC and AAD OpenSSH Certificates

pkgs.python312Packages.webssh

Web based SSH client

pkgs.python313Packages.webssh

Web based SSH client

pkgs.rubyPackages_3_1.net-ssh

pkgs.rubyPackages_3_2.net-ssh

pkgs.rubyPackages_3_3.net-ssh

pkgs.rubyPackages_3_4.net-ssh

pkgs.gnomeExtensions.guake-ssh

Systray menu to connect to SSH hosts configured in ~/.ssh/config or any files in ~/.ssh/config.d/ using Guake.

pkgs.lxqt.lxqt-openssh-askpass

GUI to query passwords on behalf of SSH agents

pkgs.python312Packages.dvc-ssh

SSH plugin for dvc

pkgs.python313Packages.dvc-ssh

SSH plugin for dvc

pkgs.python312Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python313Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python312Packages.sshtunnel

Pure python SSH tunnels

pkgs.python313Packages.sshtunnel

Pure python SSH tunnels

pkgs.python312Packages.ssh-python

Python bindings for libssh C library

pkgs.python312Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python313Packages.ssh-python

Python bindings for libssh C library

pkgs.python313Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python312Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.python313Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.haskellPackages.ssh-known-hosts

Read and interpret the SSH known-hosts file

pkgs.gnomeExtensions.ssh-profile-list

SSH Profile List is a GNOME extension that allows you to show SSH connections from .ssh/config file directly from the GNOME panel systray. This extension is fork of https://github.com/pramalho/guake-ssh-extension that modified to run on any terminal.

pkgs.python312Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python313Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python312Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python313Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.gnomeExtensions.rdp-and-ssh-connect

Connect to hosts in $HOME/.config/rd-ssh-connect/config.json file with Remmina (RDP or VNC) or SSH.

pkgs.vscode-extensions.leonardssh.vscord

Highly customizable Discord Rich Presence extension for Visual Studio Code

pkgs.chickenPackages_5.chickenEggs.minissh

An SSH-2 server and client implementation

pkgs.gnomeExtensions.ssh-search-provider-reborn

Provide SSH search results in overview.

pkgs.python312Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.python313Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.vimPlugins.nvim-treesitter-parsers.ssh_config

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh

Use any remote machine with a SSH server as your development environment

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh-edit

Visual Studio Code extension that complements the Remote SSH extension with syntax colorization, keyword intellisense, and simple snippets when editing SSH configuration files
Package maintainers: 78
CVE-2025-48039 created 1 month, 2 weeks ago
Unverified Paths can Cause Excessive Use of System Resources

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

ssh
<pkg:otp/ssh@*
*

pkgs.assh

Advanced SSH config - Regex, aliases, gateways, includes and dynamic hosts

pkgs.pssh

Parallel SSH Tools

pkgs.sshs

Terminal user interface for SSH

pkgs.sshx

Fast, collaborative live terminal sharing over the web

pkgs.zssh

SSH and Telnet client with ZMODEM file transfer capability

pkgs.passh

Sshpass alternative for non-interactive ssh auth

pkgs.sshed

ssh config editor and bookmarks manager

pkgs.libssh

SSH client library

pkgs.opkssh

Enables SSH to be used with OpenID Connect

pkgs.smassh

TUI based typing test application inspired by MonkeyType

pkgs.tarssh

Simple SSH tarpit inspired by endlessh

pkgs.webssh

Web based SSH client

pkgs.autossh

Automatically restart SSH sessions and tunnels

pkgs.lazyssh

Terminal-based SSH manager

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

pkgs.openssh

Implementation of the SSH protocol

pkgs.sshoogr

A Groovy-based DSL for working with remote SSH servers

pkgs.sshpass

Non-interactive ssh password auth

pkgs.sshping

Measure character-echo latency and bandwidth for an interactive ssh session

pkgs.tinyssh

Minimalistic SSH server

pkgs.baboossh

Tool to do SSH spreading

pkgs.endlessh

SSH tarpit that slowly sends an endless banner

pkgs.esshader

Offline ShaderToy-compatible GLSL shader viewer using OpenGL ES 2.0

pkgs.fast-ssh

TUI tool to use the SSH config for connections

pkgs.hyperssh

Run SSH over hyperswarm

pkgs.pam_rssh

PAM module for authenticating via ssh-agent, written in Rust

pkgs.pfsshell

PFS (PlayStation File System) shell for POSIX-based systems

pkgs.ssh-chat

Chat over SSH

pkgs.ssh-mitm

Tool for SSH security audits

pkgs.sshesame

Easy to set up and use SSH honeypot

pkgs.sshguard

Protects hosts from brute-force attacks

pkgs.sshified

Proxy HTTP requests through SSH

pkgs.sshlatex

Collection of hacks to efficiently run LaTeX via ssh

pkgs.sshocker

Tool for SSH, reverse sshfs and port forwarder

pkgs.sshuttle

Transparent proxy server that works as a poor man's VPN

pkgs.guile-ssh

Bindings to Libssh for GNU Guile

pkgs.ssh-audit

Tool for ssh server auditing

pkgs.ssh-ident

Start and use ssh-agent and load identities as necessary

pkgs.ssh-tools

Making SSH more convenient

pkgs.sshportal

Simple, fun and transparent SSH (and telnet) bastion server

pkgs.tmux-cssh

SSH to multiple hosts at the same time using tmux

pkgs.trzsz-ssh

SSH client designed as a drop-in replacement for the openssh client

pkgs.usbip-ssh

Import usb devices from another linux machine with ssh's connection forwarding mechanism

pkgs.ssh-agents

Spawn and maintain multiple ssh-agents across terminals

pkgs.ssh-to-age

Convert ssh private keys in ed25519 format to age keys

pkgs.ssh-to-pgp

Convert ssh private keys to PGP

pkgs.sshchecker

Dedicated SSH brute-forcing tool

pkgs.sshfs-fuse

FUSE-based filesystem that allows remote filesystems to be mounted over SSH

pkgs.endlessh-go

Implementation of endlessh exporting Prometheus metrics

pkgs.opensshTest

Implementation of the SSH protocol

pkgs.openssh_hpn

Implementation of the SSH protocol with high performance networking patches

pkgs.pritunl-ssh

Pritunl Zero SSH client

pkgs.ssh-copy-id

Tool to copy SSH public keys to a remote machine

pkgs.sshx-server

Fast, collaborative live terminal sharing over the web

pkgs.ssh-import-id

Retrieves an SSH public key and installs it locally

pkgs.ssh-tpm-agent

SSH agent with support for TPM sealed keys for public key authentication

pkgs.openssh_gssapi

Implementation of the SSH protocol with GSSAPI support

pkgs.tkey-ssh-agent

SSH Agent for TKey, the flexible open hardware/software USB security key

pkgs.vault-ssh-plus

Automatically use HashiCorp Vault SSH Client Key Signing with ssh(1)

pkgs.x11_ssh_askpass

Lightweight passphrase dialog for OpenSSH or other open variants of SSH

pkgs.drone-runner-ssh

Experimental Drone runner that executes a pipeline on a remote machine

pkgs.ssh-openpgp-auth

Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts

pkgs.tmate-ssh-server

tmate SSH Server

pkgs.ssh-key-confirmer

Test ssh login key acceptance without having the private key

pkgs.sshd-openpgp-auth

Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys

pkgs.pam_ssh_agent_auth

PAM module for authentication through the SSH agent

pkgs.keepass-keepasshttp

pkgs.opensshWithKerberos

Implementation of the SSH protocol

pkgs.haskellPackages.hssh

SSH protocol implementation

pkgs.php81Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php82Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php83Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.php84Extensions.ssh2

PHP bindings for the libssh2 library

pkgs.rubyPackages.net-ssh

pkgs.haskellPackages.libssh

libssh bindings

pkgs.ssh-askpass-fullscreen

Small, fullscreen SSH askpass GUI using GTK+2

pkgs.hareThirdParty.hare-ssh

SSH client & server protocol implementation for Hare

pkgs.haskellPackages.chesshs

Simple library for validating chess moves and parsing PGN files

pkgs.kdePackages.ksshaskpass

ssh-add helper that uses KWallet and KPasswordDialog

pkgs.openssh_hpnWithKerberos

Implementation of the SSH protocol with high performance networking patches

pkgs.python312Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.python313Packages.sshfs

SSH/SFTP implementation for fsspec

pkgs.terraform-providers.ssh

pkgs.azure-cli-extensions.ssh

SSH into Azure VMs using RBAC and AAD OpenSSH Certificates

pkgs.python312Packages.webssh

Web based SSH client

pkgs.python313Packages.webssh

Web based SSH client

pkgs.rubyPackages_3_1.net-ssh

pkgs.rubyPackages_3_2.net-ssh

pkgs.rubyPackages_3_3.net-ssh

pkgs.rubyPackages_3_4.net-ssh

pkgs.gnomeExtensions.guake-ssh

Systray menu to connect to SSH hosts configured in ~/.ssh/config or any files in ~/.ssh/config.d/ using Guake.

pkgs.lxqt.lxqt-openssh-askpass

GUI to query passwords on behalf of SSH agents

pkgs.python312Packages.dvc-ssh

SSH plugin for dvc

pkgs.python313Packages.dvc-ssh

SSH plugin for dvc

pkgs.python312Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python313Packages.asyncssh

Asynchronous SSHv2 Python client and server library

pkgs.python312Packages.sshtunnel

Pure python SSH tunnels

pkgs.python313Packages.sshtunnel

Pure python SSH tunnels

pkgs.python312Packages.ssh-python

Python bindings for libssh C library

pkgs.python312Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python313Packages.ssh-python

Python bindings for libssh C library

pkgs.python313Packages.sshpubkeys

OpenSSH Public Key Parser for Python

pkgs.python312Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.python313Packages.parallel-ssh

Asynchronous parallel SSH client library

pkgs.haskellPackages.ssh-known-hosts

Read and interpret the SSH known-hosts file

pkgs.gnomeExtensions.ssh-profile-list

SSH Profile List is a GNOME extension that allows you to show SSH connections from .ssh/config file directly from the GNOME panel systray. This extension is fork of https://github.com/pramalho/guake-ssh-extension that modified to run on any terminal.

pkgs.python312Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python313Packages.swisshydrodata

Python client to get data from the Swiss federal Office for Environment FEON

pkgs.python312Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python313Packages.mock-ssh-server

Python mock SSH server for testing purposes

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.gnomeExtensions.rdp-and-ssh-connect

Connect to hosts in $HOME/.config/rd-ssh-connect/config.json file with Remmina (RDP or VNC) or SSH.

pkgs.vscode-extensions.leonardssh.vscord

Highly customizable Discord Rich Presence extension for Visual Studio Code

pkgs.chickenPackages_5.chickenEggs.minissh

An SSH-2 server and client implementation

pkgs.gnomeExtensions.ssh-search-provider-reborn

Provide SSH search results in overview.

pkgs.python312Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.python313Packages.robotframework-sshlibrary

SSHLibrary is a Robot Framework test library for SSH and SFTP

pkgs.vimPlugins.nvim-treesitter-parsers.ssh_config

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh

Use any remote machine with a SSH server as your development environment

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2

pkgs.vscode-extensions.ms-vscode-remote.remote-ssh-edit

Visual Studio Code extension that complements the Remote SSH extension with syntax colorization, keyword intellisense, and simple snippets when editing SSH configuration files
Package maintainers: 78
CVE-2025-9714
6.2 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 1 month, 2 weeks ago
Stack overflow in libxml2

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted expressions. XPath processing functions `xmlXPathRunEval`, `xmlXPathCtxtCompile`, and `xmlXPathEvalExpr` were resetting recursion depth to zero before making potentially recursive calls. When such functions were called recursively this could allow for uncontrolled recursion and lead to a stack overflow. These functions now preserve recursion depth across recursive calls, allowing recursion depth to be controlled.

libxml2
<2.9.4+dfsg1-6.1ubuntu1.9+esm5
<2.12.7+dfsg+really2.9.14-0.4ubuntu0.3
<2.10.0
<2.9.13+dfsg-1ubuntu0.9
<2.9.3+dfsg1-1ubuntu0.7+esm10
<2.9.14+dfsg-1.3ubuntu3.5
<2.9.10+dfsg-5ubuntu0.20.04.10+esm2
<2.9.1+dfsg1-3ubuntu4.13+esm9

pkgs.libxml2

XML parsing library for C

pkgs.libxml2_13

XML parsing library for C

pkgs.python312Packages.libxml2

XML parsing library for C

pkgs.python313Packages.libxml2

XML parsing library for C

pkgs.tests.pkg-config.defaultPkgConfigPackages."libxml-2.0"

Test whether libxml2-2.14.5 exposes pkg-config modules libxml-2.0
Package maintainers: 7
CVE-2025-8277
3.1 LOW
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
Libssh: memory exhaustion via repeated key exchange in libssh

A flaw was found in libssh's handling of key exchange (KEX) processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory during these rekey operations, which can gradually exhaust system memory. This issue can lead to crashes on the client side, particularly when using libgcrypt, which impacts application stability and availability.

rhcos
libssh
<0.11.3
<0.11.4
libssh2

pkgs.libssh

SSH client library

pkgs.libssh2

Client-side C library implementing the SSH2 protocol

pkgs.haskellPackages.libssh

libssh bindings

pkgs.python312Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.python313Packages.ansible-pylibssh

Python bindings to client functionality of libssh specific to Ansible use case

pkgs.tests.pkg-config.defaultPkgConfigPackages.libssh2

Test whether libssh2-1.11.1 exposes pkg-config modules libssh2
Package maintainers: 3
CVE-2025-10044
4.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
created 1 month, 2 weeks ago
Keycloak: keycloak error_description injection on error pages

A flaw was found in Keycloak. Keycloak’s account console and other pages accept arbitrary text in the error_description query parameter. This text is directly rendered in error pages without validation or sanitization. While HTML encoding prevents XSS, an attacker can craft URLs with misleading messages (e.g., fake support phone numbers or URLs), which are displayed within the trusted Keycloak UI. This creates a phishing vector, potentially tricking users into contacting malicious actors.

keycloak
rhbk/keycloak-rhel9
*
rhbk/keycloak-rhel9-operator
*
rhbk/keycloak-operator-bundle
*

pkgs.keycloak

Identity and access management for modern applications and services

pkgs.terraform-providers.keycloak

pkgs.python312Packages.python-keycloak

Provides access to the Keycloak API

pkgs.python313Packages.python-keycloak

Provides access to the Keycloak API
Package maintainers: 4
CVE-2025-9566
8.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 1 month, 2 weeks ago
Podman: podman kube play command may overwrite host files

There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file. Binary-Affected: podman Upstream-version-introduced: v4.0.0 Upstream-version-fixed: v5.6.1

rhcos
podman
*
devspaces/udi-rhel9
*
container-tools:rhel8
*
devspaces/udi-base-rhel9
*
container-tools:rhel8/podman

pkgs.podman

Program for managing pods, containers and container images

pkgs.podman-tui

Podman Terminal UI

pkgs.podman-bootc

Streamlining podman+bootc interactions

pkgs.podman-compose

Implementation of docker-compose with podman backend

pkgs.podman-desktop

Graphical tool for developing on containers and Kubernetes

pkgs.nomad-driver-podman

Podman task driver for Nomad

pkgs.python312Packages.podman

Python bindings for Podman's RESTful API

pkgs.python313Packages.podman

Python bindings for Podman's RESTful API
Package maintainers: 8
CVE-2025-6017
5.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 1 month, 2 weeks ago
Rhacm: users with clusterreader role can see credentials from managed-clusters

A flaw was found in Red Hat Advanced Cluster Management through versions 2.10, before 2.10.7, 2.11, before 2.11.4, and 2.12, before 2.12.4. This vulnerability allows an unprivileged user to view confidential managed cluster credentials through the UI. This information should only be accessible to authorized users and may result in the loss of confidentiality of administrative information, which could be leaked to unauthorized actors.

ocm
<0.16.0
rhacm2/console-rhel8

pkgs.ocm

CLI for the Red Hat OpenShift Cluster Manager

pkgs.procmail

Mail processing and filtering utility

pkgs.neocmakelsp

CMake lsp based on tower-lsp and treesitter

pkgs.rocmPackages.hsakmt

Platform runtime for ROCm

pkgs.rocmPackages.rocm-smi

System management interface for AMD GPUs supported by ROCm

pkgs.rocmPackages.rocmPath

pkgs.rocmPackages.rocminfo

ROCm Application for Reporting System Info

pkgs.rocmPackages_6.hsakmt

Platform runtime for ROCm

pkgs.rocmPackages.rocm-core

Utility for getting the ROCm release version

pkgs.rocmPackages.rocm-cmake

CMake modules for common build tasks for the ROCm stack

pkgs.rocmPackages.rocm-comgr

APIs for compiling and inspecting AMDGPU code objects

pkgs.rocmPackages.rocm-tests

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages_6.rocm-smi

System management interface for AMD GPUs supported by ROCm

pkgs.rocmPackages_6.rocmPath

pkgs.rocmPackages_6.rocminfo

ROCm Application for Reporting System Info

pkgs.python312Packages.aiocmd

Asyncio-based automatic CLI creation tool using prompt-toolkit
  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.python313Packages.aiocmd

Asyncio-based automatic CLI creation tool using prompt-toolkit
  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages_6.rocm-core

Utility for getting the ROCm release version

pkgs.rocmPackages.llvm.rocmcxx

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages.rocmlir-rock

MLIR-based convolution and GEMM kernel generator

pkgs.rocmPackages_6.rocm-cmake

CMake modules for common build tasks for the ROCm stack

pkgs.rocmPackages_6.rocm-comgr

APIs for compiling and inspecting AMDGPU code objects

pkgs.rocmPackages_6.rocm-tests

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages.rocm-docs-core

ROCm Documentation Python package for ReadTheDocs build standardization

pkgs.rocmPackages_6.llvm.rocmcxx

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages_6.rocm-runtime

Platform runtime for ROCm

pkgs.rocmPackages_6.rocmlir-rock

MLIR-based convolution and GEMM kernel generator

pkgs.rocmPackages.rocm-device-libs

Set of AMD-specific device-side language runtime libraries

pkgs.rocmPackages_6.rocm-docs-core

ROCm Documentation Python package for ReadTheDocs build standardization

pkgs.rocmPackages_6.rocm-device-libs

Set of AMD-specific device-side language runtime libraries

pkgs.rocmPackages_6.rocm-merged-llvm

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.python312Packages.procmon-parser

Parser to process monitor file formats

pkgs.python313Packages.procmon-parser

Parser to process monitor file formats

pkgs.rocmPackages.rocm-bandwidth-test

Bandwidth test for AMD GPUs supported by ROCm

pkgs.python312Packages.djangocms-alias

Lean enterprise content management powered by Django

pkgs.python313Packages.djangocms-alias

Lean enterprise content management powered by Django

pkgs.rocmPackages.llvm.rocm-merged-llvm

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.rocmPackages_6.rocm-bandwidth-test

Bandwidth test for AMD GPUs supported by ROCm

pkgs.rocmPackages_6.llvm.rocm-merged-llvm

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.python312Packages.djangocms-admin-style

Django Theme tailored to the needs of django CMS

pkgs.python313Packages.djangocms-admin-style

Django Theme tailored to the needs of django CMS

pkgs.python312Packages.djangocms-text-ckeditor

Text Plugin for django CMS using CKEditor 4

pkgs.python313Packages.djangocms-text-ckeditor

Text Plugin for django CMS using CKEditor 4
Package maintainers: 13
CVE-2025-9901
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 1 month, 2 weeks ago
Libsoup: improper handling of http vary header in libsoup caching

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be incorrectly reused across different requests, potentially exposing sensitive user information. While the issue is unlikely to affect everyday desktop use, it could result in confidentiality breaches in proxy or multi-user environments.

libsoup
libsoup3

pkgs.libsoup_3

HTTP client/server library for GNOME

pkgs.libsoup_2_4

HTTP client/server library for GNOME

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4
  • nixos-unstable ???
    • nixpkgs-unstable
Package maintainers: 6