Nixpkgs Security Tracker

Login with GitHub

Automatically generated suggestions

to queue a suggestion for refinement.

to remove a suggestion from the queue.

CVE-2024-27132
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 3 months ago
Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe.

Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe. This issue leads to a client-side RCE when running an untrusted recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over template variables.

Affected products

mlflow
  • =<2.9.2

Matching in nixpkgs

pkgs.mlflow-server

Open source platform for the machine learning lifecycle

pkgs.python312Packages.mlflow

Open source platform for the machine learning lifecycle

pkgs.python313Packages.mlflow

Open source platform for the machine learning lifecycle

pkgs.python312Packages.sagemaker-mlflow

MLFlow plugin for SageMaker

pkgs.python313Packages.sagemaker-mlflow

MLFlow plugin for SageMaker

Package maintainers: 2

CVE-2024-27133
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 3 months ago
Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset.

Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset table fields.

Affected products

mlflow
  • =<2.9.2

Matching in nixpkgs

pkgs.mlflow-server

Open source platform for the machine learning lifecycle

pkgs.python312Packages.mlflow

Open source platform for the machine learning lifecycle

pkgs.python313Packages.mlflow

Open source platform for the machine learning lifecycle

pkgs.python312Packages.sagemaker-mlflow

MLFlow plugin for SageMaker

pkgs.python313Packages.sagemaker-mlflow

MLFlow plugin for SageMaker

Package maintainers: 2

CVE-2024-27319
4.4 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 3 months ago
Versions of the package onnx before and including 1.15.0 are …

Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the ONNX_ASSERT and ONNX_ASSERTM functions have an off by one string copy.

Affected products

onnx
  • =<1.15.0

Matching in nixpkgs

pkgs.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.onnx

Open Neural Network Exchange

pkgs.python313Packages.onnx

Open Neural Network Exchange

pkgs.python312Packages.tf2onnx

Convert TensorFlow, Keras, Tensorflow.js and Tflite models to ONNX

pkgs.python312Packages.onnxslim

Toolkit to Help Optimize Onnx Model

pkgs.python312Packages.skl2onnx

Convert scikit-learn models to ONNX

pkgs.python313Packages.onnxslim

Toolkit to Help Optimize Onnx Model

pkgs.python313Packages.skl2onnx

Convert scikit-learn models to ONNX

pkgs.python312Packages.onnxmltools

ONNXMLTools enables conversion of models to ONNX

pkgs.python312Packages.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.paddle2onnx

ONNX Model Exporter for PaddlePaddle

pkgs.python313Packages.onnxmltools

ONNXMLTools enables conversion of models to ONNX

pkgs.python313Packages.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.onnxruntime-tools

Transformers Model Optimization Tool of ONNXRuntime

pkgs.python313Packages.onnxruntime-tools

Transformers Model Optimization Tool of ONNXRuntime

pkgs.python312Packages.onnxconverter-common

ONNX Converter and Optimization Tools

pkgs.python312Packages.rapidocr-onnxruntime

Cross platform OCR Library based on OnnxRuntime

pkgs.python313Packages.onnxconverter-common

ONNX Converter and Optimization Tools

pkgs.python313Packages.rapidocr-onnxruntime

Cross platform OCR Library based on OnnxRuntime

Package maintainers: 6

CVE-2024-27318
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 3 months ago
Versions of the package onnx before and including 1.15.0 are …

Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch added for CVE-2022-25882.

Affected products

onnx
  • =<1.15.0

Matching in nixpkgs

pkgs.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.onnx

Open Neural Network Exchange

pkgs.python313Packages.onnx

Open Neural Network Exchange

pkgs.python312Packages.tf2onnx

Convert TensorFlow, Keras, Tensorflow.js and Tflite models to ONNX

pkgs.python312Packages.onnxslim

Toolkit to Help Optimize Onnx Model

pkgs.python312Packages.skl2onnx

Convert scikit-learn models to ONNX

pkgs.python313Packages.onnxslim

Toolkit to Help Optimize Onnx Model

pkgs.python313Packages.skl2onnx

Convert scikit-learn models to ONNX

pkgs.python312Packages.onnxmltools

ONNXMLTools enables conversion of models to ONNX

pkgs.python312Packages.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.paddle2onnx

ONNX Model Exporter for PaddlePaddle

pkgs.python313Packages.onnxmltools

ONNXMLTools enables conversion of models to ONNX

pkgs.python313Packages.onnxruntime

Cross-platform, high performance scoring engine for ML models

pkgs.python312Packages.onnxruntime-tools

Transformers Model Optimization Tool of ONNXRuntime

pkgs.python313Packages.onnxruntime-tools

Transformers Model Optimization Tool of ONNXRuntime

pkgs.python312Packages.onnxconverter-common

ONNX Converter and Optimization Tools

pkgs.python312Packages.rapidocr-onnxruntime

Cross platform OCR Library based on OnnxRuntime

pkgs.python313Packages.onnxconverter-common

ONNX Converter and Optimization Tools

pkgs.python313Packages.rapidocr-onnxruntime

Cross platform OCR Library based on OnnxRuntime

Package maintainers: 6

CVE-2023-3966
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 3 months ago
Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet

A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.

Affected products

openvswitch
openvswitch3.0
openvswitch3.1
openvswitch3.2
openvswitch2.10
openvswitch2.11
openvswitch2.12
openvswitch2.13
openvswitch2.15
openvswitch2.16
openvswitch2.17
rdo-openvswitch
openvswitch-ovn-kubernetes

Matching in nixpkgs

pkgs.openvswitch

Multilayer virtual switch

pkgs.openvswitch-dpdk

Multilayer virtual switch

Package maintainers: 4

CVE-2024-24798
4.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
created 3 months ago
WordPress Debug Plugin <= 1.10 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) vulnerability in SoniNow Team Debug.This issue affects Debug: from n/a through 1.10.

Affected products

debug
  • =<1.10

Matching in nixpkgs

pkgs.mspds

TI MSP430 FET debug driver

pkgs.udebug

OpenWrt debugging helper library/service

pkgs.mspdebug

Free programmer, debugger, and gdb proxy for MSP430 MCUs

pkgs.debugedit

Provides programs and scripts for creating debuginfo and source file distributions, collect build-ids and rewrite source paths in DWARF data for debugging, tracing and profiling

pkgs.mspds-bin

Unfree binary release of the TI MSP430 FET debug driver

pkgs.c64-debugger

Commodore 64, Atari XL/XE and NES code and memory debugger that works in real time

pkgs.parca-debuginfo

Command line utility for handling debuginfos

pkgs.vscode-js-debug

DAP-compatible JavaScript debugger

pkgs.separateDebugInfo

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.perl-debug-adapter

Debug adapter, invokes perl -d and handles communication with VS Code or other editors

pkgs.setupDebugInfoDirs

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.godot3-debug-server

Free and Open Source 2D and 3D game engine (debug server)

pkgs.nixseparatedebuginfod

Downloads and provides debug symbols and source code for nix derivations to gdb and other debuginfod-capable debuggers as needed

pkgs.react-native-debugger

Standalone app based on official debugger of React Native, and includes React Inspector / Redux DevTools

pkgs.ios-webkit-debug-proxy

DevTools proxy (Chrome Remote Debugging Protocol) for iOS devices (Safari Remote Web Inspector)

pkgs.luaPackages.std-_debug

Debug Hints Library

pkgs.nixseparatedebuginfod2

Downloads and provides debug symbols and source code for nix derivations to gdb and other debuginfod-capable debuggers as needed

pkgs.php81Extensions.xdebug

Provides functions for function traces and profiling

pkgs.php82Extensions.xdebug

Provides functions for function traces and profiling

pkgs.php83Extensions.xdebug

Provides functions for function traces and profiling

pkgs.php84Extensions.xdebug

Provides functions for function traces and profiling

pkgs.ios-safari-remote-debug

Remote debugger for iOS Safari

pkgs.godot3-mono-debug-server

Free and Open Source 2D and 3D game engine (mono debug server)

pkgs.lua51Packages.std-_debug

Debug Hints Library

pkgs.lua52Packages.std-_debug

Debug Hints Library

pkgs.lua53Packages.std-_debug

Debug Hints Library

pkgs.lua54Packages.std-_debug

Debug Hints Library

pkgs.luajitPackages.std-_debug

Debug Hints Library

pkgs.python312Packages.debugpy

Implementation of the Debug Adapter Protocol for Python

pkgs.python313Packages.debugpy

Implementation of the Debug Adapter Protocol for Python

pkgs.haskellPackages.debug-diff

Display a colorized diff between two Haskell values

pkgs.haskellPackages.debug-dump

File-based debug output

pkgs.haskellPackages.debug-time

Debug.Trace equivalent for timing computations

pkgs.haskellPackages.debuggable

Utilities for making your applications more debuggable

pkgs.kdePackages.kdebugsettings

Application to choose which QLoggingCategory are displayed

pkgs.haskellPackages.debug-print

A structured alternative to Show

pkgs.python312Packages.debuglater

Module for post-mortem debugging of Python programs

pkgs.python313Packages.debuglater

Module for post-mortem debugging of Python programs

pkgs.rocmPackages.rocr-debug-agent

Library that provides some debugging functionality for ROCr

pkgs.haskellPackages.crucible-debug

An interactive debugger for Crucible programs

pkgs.haskellPackages.ghc-debug-stub

Functions for instrumenting your application so the heap can be analysed with ghc-debug-common

pkgs.haskellPackages.gogol-debugger

Google Cloud Debugger API (Deprecated) SDK

pkgs.python312Packages.tiered-debug

Python logging helper module that allows for multiple tiers of debug logging

pkgs.python313Packages.tiered-debug

Python logging helper module that allows for multiple tiers of debug logging

pkgs.haskellPackages.debug-trace-var

You do not have to write variable names twice in Debug.Trace

pkgs.haskellPackages.ghc-debug-brick

A simple TUI using ghc-debug

pkgs.rocmPackages_6.rocr-debug-agent

Library that provides some debugging functionality for ROCr

pkgs.haskellPackages.ghc-debug-client

Useful functions for writing heap analysis tools which use ghc-debug

pkgs.haskellPackages.ghc-debug-common

Connect to a socket created by ghc-debug-stub and analyse the heap of the debuggee program

pkgs.gnomeExtensions.enable-debug-logs

Turns on GNOME Shell debug logging.

pkgs.python312Packages.flake8-debugger

ipdb/pdb statement checker plugin for flake8

pkgs.python312Packages.pmdsky-debug-py

Autogenerated and statically check-able pmdsky-debug symbol definitions for Python

pkgs.python313Packages.flake8-debugger

ipdb/pdb statement checker plugin for flake8

pkgs.python313Packages.pmdsky-debug-py

Autogenerated and statically check-able pmdsky-debug symbol definitions for Python

pkgs.vscode-extensions.xdebug.php-debug

PHP Debug Adapter

pkgs.vscode-extensions.ms-python.debugpy

Python debugger (debugpy) extension for VS Code

pkgs.haskellPackages.ghc-debug-convention

Definitions needed by ghc-debug-stub and ghc-debug-common

pkgs.haskellPackages.haskell-debug-adapter

Haskell Debug Adapter

pkgs.python312Packages.smdebug-rulesconfig

These builtin rules are available in Amazon SageMaker

pkgs.python313Packages.smdebug-rulesconfig

These builtin rules are available in Amazon SageMaker

pkgs.home-assistant-component-tests.debugpy

Open source home automation that puts local control and privacy first

pkgs.python312Packages.django-debug-toolbar

Configurable set of panels that display debug information about the current request/response

pkgs.python313Packages.django-debug-toolbar

Configurable set of panels that display debug information about the current request/response

pkgs.vscode-extensions.marus25.cortex-debug

Visual Studio Code extension for enhancing debug capabilities for Cortex-M Microcontrollers

pkgs.python312Packages.skytemple-ssb-debugger

Script Engine Debugger for Pokémon Mystery Dungeon Explorers of Sky

pkgs.python313Packages.skytemple-ssb-debugger

Script Engine Debugger for Pokémon Mystery Dungeon Explorers of Sky

pkgs.chickenPackages_5.chickenEggs.debugger-protocol

Low-level interface to debugger-protocol

pkgs.python312Packages.django-graphiql-debug-toolbar

Django Debug Toolbar for GraphiQL IDE

pkgs.python313Packages.django-graphiql-debug-toolbar

Django Debug Toolbar for GraphiQL IDE

pkgs.vscode-extensions.firefox-devtools.vscode-firefox-debug

Visual Studio Code extension for debugging web applications and browser extensions in Firefox

Package maintainers: 40

CVE-2024-25982
4.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 3 months ago
Msa-24-0005: csrf risk in language import utility

The link to update all installed language packs did not include the necessary token to prevent a CSRF risk.

Affected products

moodle
  • <4.1.9
  • <4.2.6
  • <4.3.3

Matching in nixpkgs

pkgs.moodle

Free and open-source learning management system (LMS) written in PHP

pkgs.moodle-dl

Moodle downloader that downloads course content fast from Moodle

Package maintainers: 2

CVE-2024-1633
2.0 LOW
  • CVSS version: 3.1
  • Attack vector (AV): PHYSICAL
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
created 3 months ago
FIP Header Integer Overflow

During the secure boot, bl2 (the second stage of the bootloader) loops over images defined in the table “bl2_mem_params_descs”. For each image, the bl2 reads the image length and destination from the image’s certificate. Because of the way of reading from the image, which base on 32-bit unsigned integer value, it can result to an integer overflow. An attacker can bypass memory range restriction and write data out of buffer bounds, which could result in bypass of secure boot. Affected git version from c2f286820471ed276c57e603762bd831873e5a17 until (not 

Affected products

arm-trusted-firmware
  • ==v2.5

Matching in nixpkgs

pkgs.armTrustedFirmwareQemu

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareS905

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareTools

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3328

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3399

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3568

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3588

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareAllwinner

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareAllwinnerH6

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareAllwinnerH616

Reference implementation of secure world software for ARMv8-A

Package maintainers: 1

CVE-2024-25983
3.5 LOW
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
created 3 months ago
Msa-24-0006: idor on dashboard comments block

Insufficient checks in a web service made it possible to add comments to the comments block on another user's dashboard when it was not otherwise available (e.g., on their profile page).

Affected products

moodle
  • <4.1.9
  • <4.2.6
  • <4.3.3

Matching in nixpkgs

pkgs.moodle

Free and open-source learning management system (LMS) written in PHP

pkgs.moodle-dl

Moodle downloader that downloads course content fast from Moodle

Package maintainers: 2

CVE-2024-25979
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 3 months ago
Msa-24-0002: forum search accepted random parameters in its url

The URL parameters accepted by forum search were not limited to the allowed parameters.

Affected products

moodle
  • <4.1.9
  • <4.2.6
  • <4.3.3

Matching in nixpkgs

pkgs.moodle

Free and open-source learning management system (LMS) written in PHP

pkgs.moodle-dl

Moodle downloader that downloads course content fast from Moodle

Package maintainers: 2