Dismissed suggestions Untriaged suggestions Draft issues Published issues Automatically generated suggestions Create Draft to queue a suggestion for refinement. Dismiss to remove a suggestion from the queue. CVE-2025-27274 4.9 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): HIGH User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 2 months, 2 weeks ago WordPress GPX Viewer plugin <= 2.2.11 - Path Traversal vulnerability Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. This issue affects GPX Viewer: from n/a through 2.2.11. gpx-viewer =<2.2.11 pkgs.gpx-viewer Simple tool to visualize tracks and waypoints stored in a gpx file nixos-24.05 0.5.0 nixpkgs-24.05-darwin 0.5.0 nixos-24.05-small 0.5.0 nixos-24.11 0.5.0 nixpkgs-24.11-darwin 0.5.0 nixos-24.11-small 0.5.0 nixos-unstable 0.5.0 nixos-unstable-small 0.5.0 nixpkgs-unstable 0.5.0 CVE-2023-3899 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the com.redhat.RHSM1.Config.SetAll() method, a low-privileged local user could tamper with the state of the registration, by unregistering the system or by changing the current entitlements. This flaw allows an attacker to set arbitrary configuration directives for /etc/rhsm/rhsm.conf, which can be abused to cause a local privilege escalation to an unconfined root. subscription-manager * pkgs.python311Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python312Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 CVE-2025-26595 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: buffer overflow in xkbvmodmasktext() A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0 CVE-2025-26597 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: buffer overflow in xkbchangetypesofkey() A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a 0 group, it will resize the key symbols table to 0 but leave the key actions unchanged. If the same function is later called with a non-zero value of groups, this will cause a buffer overflow because the key actions are of the wrong size. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0 CVE-2025-26594 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago X.org: xwayland: use-after-free of the root cursor A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0 CVE-2025-26599 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: use of uninitialized pointer in compredirectwindow() An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow() will return a BadAlloc error without validating the window tree marked just before, which leaves the validated data partly initialized and the use of an uninitialized pointer later. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0 CVE-2025-26932 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): HIGH Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago WordPress WPBot plugin <= 6.3.5 - Local File Inclusion vulnerability Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in QuantumCloud ChatBot allows PHP Local File Inclusion. This issue affects ChatBot: from n/a through 6.3.5. chatbot =<6.3.5 pkgs.gnomeExtensions.penguin-ai-chatbot A GNOME Shell extension that uses openrouter.ai services - a platform/marketplace that offers APIs to talk to LLMs. Some of these APIs are free to use, including the one used by default in the extension: Llama 3.1 8B. nixos-24.11 11 nixpkgs-24.11-darwin 11 nixos-24.11-small 11 nixos-unstable 11 nixos-unstable-small 11 nixpkgs-unstable 11 CVE-2025-26596 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: heap overflow in xkbwritekeysyms() A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in XkbSizeKeySyms() differs from what is written in XkbWriteKeySyms(), which may lead to a heap-based buffer overflow. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0 CVE-2025-26915 8.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): CHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): LOW created 2 months, 3 weeks ago WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PickPlugins Wishlist allows SQL Injection. This issue affects Wishlist: from n/a through 1.0.41. wishlist =<1.0.41 pkgs.wishlist A single entrypoint for multiple SSH endpoints nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.15.0 nixpkgs-24.11-darwin 0.15.0 nixos-24.11-small 0.15.0 nixos-unstable 0.15.0 nixos-unstable-small 0.15.0 nixpkgs-unstable 0.15.0 CVE-2025-26600 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: use-after-free in playreleasedevents() A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen, the events queued for that device remain while the device is freed. Replaying the events will cause a use-after-free. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-27274 4.9 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): HIGH User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 2 months, 2 weeks ago WordPress GPX Viewer plugin <= 2.2.11 - Path Traversal vulnerability Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. This issue affects GPX Viewer: from n/a through 2.2.11. gpx-viewer =<2.2.11 pkgs.gpx-viewer Simple tool to visualize tracks and waypoints stored in a gpx file nixos-24.05 0.5.0 nixpkgs-24.05-darwin 0.5.0 nixos-24.05-small 0.5.0 nixos-24.11 0.5.0 nixpkgs-24.11-darwin 0.5.0 nixos-24.11-small 0.5.0 nixos-unstable 0.5.0 nixos-unstable-small 0.5.0 nixpkgs-unstable 0.5.0
pkgs.gpx-viewer Simple tool to visualize tracks and waypoints stored in a gpx file nixos-24.05 0.5.0 nixpkgs-24.05-darwin 0.5.0 nixos-24.05-small 0.5.0 nixos-24.11 0.5.0 nixpkgs-24.11-darwin 0.5.0 nixos-24.11-small 0.5.0 nixos-unstable 0.5.0 nixos-unstable-small 0.5.0 nixpkgs-unstable 0.5.0
CVE-2023-3899 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the com.redhat.RHSM1.Config.SetAll() method, a low-privileged local user could tamper with the state of the registration, by unregistering the system or by changing the current entitlements. This flaw allows an attacker to set arbitrary configuration directives for /etc/rhsm/rhsm.conf, which can be abused to cause a local privilege escalation to an unconfined root. subscription-manager * pkgs.python311Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python312Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python311Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python312Packages.graphql-subscription-manager Python3 library for graphql subscription manager nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
CVE-2025-26595 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: buffer overflow in xkbvmodmasktext() A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-26597 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: buffer overflow in xkbchangetypesofkey() A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a 0 group, it will resize the key symbols table to 0 but leave the key actions unchanged. If the same function is later called with a non-zero value of groups, this will cause a buffer overflow because the key actions are of the wrong size. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-26594 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago X.org: xwayland: use-after-free of the root cursor A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-26599 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: use of uninitialized pointer in compredirectwindow() An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow() will return a BadAlloc error without validating the window tree marked just before, which leaves the validated data partly initialized and the use of an uninitialized pointer later. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-26932 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): HIGH Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago WordPress WPBot plugin <= 6.3.5 - Local File Inclusion vulnerability Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in QuantumCloud ChatBot allows PHP Local File Inclusion. This issue affects ChatBot: from n/a through 6.3.5. chatbot =<6.3.5 pkgs.gnomeExtensions.penguin-ai-chatbot A GNOME Shell extension that uses openrouter.ai services - a platform/marketplace that offers APIs to talk to LLMs. Some of these APIs are free to use, including the one used by default in the extension: Llama 3.1 8B. nixos-24.11 11 nixpkgs-24.11-darwin 11 nixos-24.11-small 11 nixos-unstable 11 nixos-unstable-small 11 nixpkgs-unstable 11
pkgs.gnomeExtensions.penguin-ai-chatbot A GNOME Shell extension that uses openrouter.ai services - a platform/marketplace that offers APIs to talk to LLMs. Some of these APIs are free to use, including the one used by default in the extension: Llama 3.1 8B. nixos-24.11 11 nixpkgs-24.11-darwin 11 nixos-24.11-small 11 nixos-unstable 11 nixos-unstable-small 11 nixpkgs-unstable 11
CVE-2025-26596 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: heap overflow in xkbwritekeysyms() A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in XkbSizeKeySyms() differs from what is written in XkbWriteKeySyms(), which may lead to a heap-based buffer overflow. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
CVE-2025-26915 8.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): CHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): LOW created 2 months, 3 weeks ago WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PickPlugins Wishlist allows SQL Injection. This issue affects Wishlist: from n/a through 1.0.41. wishlist =<1.0.41 pkgs.wishlist A single entrypoint for multiple SSH endpoints nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.15.0 nixpkgs-24.11-darwin 0.15.0 nixos-24.11-small 0.15.0 nixos-unstable 0.15.0 nixos-unstable-small 0.15.0 nixpkgs-unstable 0.15.0
pkgs.wishlist A single entrypoint for multiple SSH endpoints nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.15.0 nixpkgs-24.11-darwin 0.15.0 nixos-24.11-small 0.15.0 nixos-unstable 0.15.0 nixos-unstable-small 0.15.0 nixpkgs-unstable 0.15.0
CVE-2025-26600 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 2 months, 3 weeks ago Xorg: xwayland: use-after-free in playreleasedevents() A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen, the events queued for that device remain while the device is freed. Replaying the events will cause a use-after-free. tigervnc xorg-x11-server xorg-x11-server-Xwayland pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0
pkgs.tigervnc Fork of tightVNC, made in cooperation with VirtualGL nixos-24.05 1.13.1 nixpkgs-24.05-darwin 1.13.1 nixos-24.05-small 1.13.1 nixos-24.11 1.14.0 nixpkgs-24.11-darwin 1.14.0 nixos-24.11-small 1.14.0 nixos-unstable 1.14.0 nixos-unstable-small 1.14.0 nixpkgs-unstable 1.14.0