Nixpkgs Security Tracker

CVE-2025-3359

6.2 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 1 month, 2 weeks ago

Gnuplot: segmentation fault via io_str_init_static_internal function

A flaw was found in GNUPlot. A segmentation fault via IO_str_init_static_internal may jeopardize the environment.

gnuplot

pkgs.gnuplot

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable 6.0.1
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.gnuplot_qt

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable 6.0.1
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.feedgnuplot

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixpkgs-24.05-darwin 1.61
- nixos-24.05-small 1.61
nixos-24.11 1.61
- nixpkgs-24.11-darwin 1.61
- nixos-24.11-small 1.61
nixos-unstable 1.61
- nixos-unstable-small 1.61
- nixpkgs-unstable 1.61

pkgs.gnuplot_aquaterm

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable 6.0.1
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.emacsPackages.gnuplot

nixos-24.05 20230323.1400
- nixpkgs-24.05-darwin 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixpkgs-24.11-darwin 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable 20240914.1522
- nixos-unstable-small 20240914.1522
- nixpkgs-unstable 20240914.1522

pkgs.haskellPackages.gnuplot

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixpkgs-24.05-darwin 0.5.7
- nixos-24.05-small 0.5.7
nixos-24.11 0.5.7
- nixpkgs-24.11-darwin 0.5.7
- nixos-24.11-small 0.5.7
nixos-unstable 0.5.7
- nixos-unstable-small 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.emacsPackages.gnuplot-mode

nixos-24.05 20171013.1616
- nixpkgs-24.05-darwin 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixpkgs-24.11-darwin 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable 20171013.1616
- nixos-unstable-small 20171013.1616
- nixpkgs-unstable 20171013.1616

pkgs.texlivePackages.gnuplottex

Embed Gnuplot commands in LaTeX documents

nixos-24.05 0.9.5
- nixpkgs-24.05-darwin 0.9.5
- nixos-24.05-small 0.9.5

pkgs.texlivePackages.context-gnuplot

Inclusion of Gnuplot graphs in ConTeXt

nixos-24.05 47085
- nixpkgs-24.05-darwin 47085
- nixos-24.05-small 47085

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixpkgs-24.05-darwin 0.4.2
- nixos-24.05-small 0.4.2
nixos-24.11 0.4.2
- nixpkgs-24.11-darwin 0.4.2
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixos-unstable-small 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot

nixos-24.05 ???
- nixpkgs-24.05-darwin
- nixos-24.05-small
nixos-24.11 ???
- nixpkgs-24.11-darwin
- nixos-24.11-small
nixos-unstable ???
- nixos-unstable-small
- nixpkgs-unstable

CVE-2025-3360

3.7 LOW

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 1 month, 2 weeks ago

Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the g_date_time_new_from_iso8601() function.

bootc

glib2

librsvg2

mingw-glib2

pkgs.bootc

Boot and upgrade via container images

nixos-24.11 1.1.2
- nixpkgs-24.11-darwin 1.1.2
- nixos-24.11-small 1.1.2
nixos-unstable 1.1.2
- nixos-unstable-small 1.1.2
- nixpkgs-unstable 1.1.2

pkgs.mlxbf-bootctl

Control BlueField boot partitions

nixos-24.05 1.1-6
- nixpkgs-24.05-darwin 1.1-6
- nixos-24.05-small 1.1-6
nixos-24.11 1.1-6
- nixpkgs-24.11-darwin 1.1-6
- nixos-24.11-small 1.1-6
nixos-unstable 1.1-6
- nixos-unstable-small 1.1-6
- nixpkgs-unstable 1.1-6

pkgs.rubyPackages.glib2

nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1

pkgs.rubyPackages_3_1.glib2

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_2.glib2

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_3.glib2

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_4.glib2

nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

CVE-2025-30195

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 1 month, 2 weeks ago

A crafted zone can lead to an illegal memory access in the PowerDNS Recursor

An attacker can publish a zone containing specific Resource Record Sets. Processing and caching results for these sets can lead to an illegal memory accesses and crash of the Recursor, causing a denial of service. The remedy is: upgrade to the patched 5.2.1 version. We would like to thank Volodymyr Ilyin for bringing this issue to our attention.

pdns-recursor

==5.2.0

pkgs.pdns-recursor

Recursive DNS server

nixos-24.05 5.0.9
- nixpkgs-24.05-darwin 5.0.9
- nixos-24.05-small 5.0.9
nixos-24.11 5.1.2
- nixpkgs-24.11-darwin 5.1.2
- nixos-24.11-small 5.1.2
nixos-unstable 5.1.2
- nixos-unstable-small 5.1.2
- nixpkgs-unstable 5.1.2

CVE-2025-2784

7.0 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): HIGH

created 1 month, 2 weeks ago

Libsoup: heap buffer over-read in `skip_insignificant_space` when sniffing content

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP server.

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-32050

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 1 month, 2 weeks ago

Libsoup: integer overflow in append_param_quoted

A flaw was found in libsoup. The libsoup append_param_quoted() function may contain an overflow bug resulting in a buffer under-read.

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-32049

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 1 month, 2 weeks ago

Libsoup: denial of service attack to websocket server

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-32052

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): LOW

created 1 month, 2 weeks ago

Libsoup: heap buffer overflow in sniff_unknown()

A flaw was found in libsoup. A vulnerability in the sniff_unknown() function may lead to heap buffer over-read.

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-32051

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 1 month, 2 weeks ago

Libsoup: segmentation fault when parsing malformed data uri

A flaw was found in libsoup. The libsoup soup_uri_decode_data_uri() function may crash when processing malformed data URI. This flaw allows an attacker to cause a denial of service (DoS).

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-32053

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): LOW

created 1 month, 2 weeks ago

Libsoup: heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space()

A flaw was found in libsoup. A vulnerability in sniff_feed_or_html() and skip_insignificant_space() functions may lead to a heap buffer over-read.

libsoup

pkgs.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.libsoup_3

HTTP client/server library for GNOME

nixos-24.05 3.4.4
- nixpkgs-24.05-darwin 3.4.4
- nixos-24.05-small 3.4.4
nixos-24.11 3.6.0
- nixpkgs-24.11-darwin 3.6.0
- nixos-24.11-small 3.6.0
nixos-unstable 3.6.0
- nixos-unstable-small 3.6.0
- nixpkgs-unstable 3.6.0

pkgs.libsoup_2_4

HTTP client/server library for GNOME

nixos-unstable 2.74.3
- nixos-unstable-small 2.74.3
- nixpkgs-unstable 2.74.3

pkgs.gnome.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3

pkgs.gnome2.libsoup

HTTP client/server library for GNOME

nixos-24.05 2.74.3
- nixpkgs-24.05-darwin 2.74.3
- nixos-24.05-small 2.74.3
nixos-24.11 2.74.3
- nixpkgs-24.11-darwin 2.74.3
- nixos-24.11-small 2.74.3

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

Test whether libsoup-2.74.3 exposes pkg-config modules libsoup-gnome-2.4

nixos-24.05 2.4
- nixpkgs-24.05-darwin 2.4
- nixos-24.05-small 2.4
nixos-24.11 2.4
- nixpkgs-24.11-darwin 2.4
- nixos-24.11-small 2.4
nixos-unstable 2.4
- nixos-unstable-small 2.4
- nixpkgs-unstable 2.4

CVE-2025-31746

6.4 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): NONE
Integrity impact (I): LOW
Availability impact (A): LOW

created 1 month, 2 weeks ago

WordPress Clients plugin <= 1.1.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Think201 Clients allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Clients: from n/a through 1.1.4.

clients

=<1.1.4

pkgs.argus-clients

Clients for ARGUS

nixos-24.05 3.0.8.3
- nixpkgs-24.05-darwin 3.0.8.3
- nixos-24.05-small 3.0.8.3
nixos-24.11 3.0.8.3
- nixpkgs-24.11-darwin 3.0.8.3
- nixos-24.11-small 3.0.8.3
nixos-unstable 3.0.8.3
- nixos-unstable-small 3.0.8.3
- nixpkgs-unstable 3.0.8.3

pkgs.xorg.xlsclients

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.haskellPackages.clientsession

Securely store session data in a client-side cookie

nixos-24.05 0.9.2.0
- nixpkgs-24.05-darwin 0.9.2.0
- nixos-24.05-small 0.9.2.0
nixos-24.11 0.9.2.0
- nixpkgs-24.11-darwin 0.9.2.0
- nixos-24.11-small 0.9.2.0
nixos-unstable 0.9.2.0
- nixos-unstable-small 0.9.2.0
- nixpkgs-unstable 0.9.2.0

pkgs.haskellPackages.wai-session-clientsession

Session store based on clientsession

nixos-24.05 0.1
- nixpkgs-24.05-darwin 0.1
- nixos-24.05-small 0.1
nixos-24.11 0.1
- nixpkgs-24.11-darwin 0.1
- nixos-24.11-small 0.1
nixos-unstable 0.1
- nixos-unstable-small 0.1
- nixpkgs-unstable 0.1

Automatically generated suggestions

pkgs.gnuplot

pkgs.gnuplot_qt

pkgs.feedgnuplot

pkgs.gnuplot_aquaterm

pkgs.emacsPackages.gnuplot

pkgs.haskellPackages.gnuplot

pkgs.emacsPackages.gnuplot-mode

pkgs.texlivePackages.gnuplottex

pkgs.texlivePackages.context-gnuplot

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot

pkgs.bootc

pkgs.mlxbf-bootctl

pkgs.rubyPackages.glib2

pkgs.rubyPackages_3_1.glib2

pkgs.rubyPackages_3_2.glib2

pkgs.rubyPackages_3_3.glib2

pkgs.rubyPackages_3_4.glib2

pkgs.pdns-recursor

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.libsoup

pkgs.libsoup_3

pkgs.libsoup_2_4

pkgs.gnome.libsoup

pkgs.gnome2.libsoup

pkgs.tests.pkg-config.defaultPkgConfigPackages."libsoup-gnome-2.4"

pkgs.argus-clients

pkgs.xorg.xlsclients

pkgs.haskellPackages.clientsession

pkgs.haskellPackages.wai-session-clientsession