Dismissed suggestions Untriaged suggestions Draft issues Published issues Automatically generated suggestions Create Draft to queue a suggestion for refinement. Dismiss to remove a suggestion from the queue. CVE-2024-4629 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 3 days, 21 hours ago Keycloak: potential bypass of brute force protection A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. This timing loophole enables attackers to make more guesses at passwords than intended, potentially compromising account security on affected systems. keycloak ==24.0.3 rh-sso7-keycloak * rhbk/keycloak-rhel9 * org.keycloak-keycloak-parent rhbk/keycloak-rhel9-operator * rhbk/keycloak-operator-bundle * rh-sso-7/sso76-openshift-rhel8 * pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com> @talyz Kim Lindberger <kim.lindberger@gmail.com> CVE-2024-2199 5.7 MEDIUM CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 3 days, 21 hours ago 389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input. 389-ds:1.4 * 389-ds-base <3.1.1 * redhat-ds:11 * redhat-ds:12 * 389-ds:1.4/389-ds-base redhat-ds:11/389-ds-base redhat-ds:12/389-ds-base pkgs._389-ds-base Enterprise-class Open Source LDAP server for Linux nixos-24.05 2.4.6 nixpkgs-24.05-darwin 2.4.6 nixos-24.05-small 2.4.6 nixos-24.11 3.1.1 nixpkgs-24.11-darwin 3.1.1 nixos-24.11-small 3.1.1 nixos-unstable 3.1.1 nixos-unstable-small 3.1.1 nixpkgs-unstable 3.1.1 Notify package maintainers: 1 @ners ners <ners@gmx.ch> CVE-2024-9427 5.4 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 3 days, 21 hours ago Koji: escape html tag characters in the query string A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code koji <1.35.1 pkgs.koji Interactive CLI for creating conventional commits nixos-24.05 2.2.0 nixpkgs-24.05-darwin 2.2.0 nixos-24.05-small 2.2.0 nixos-24.11 2.2.0 nixpkgs-24.11-darwin 2.2.0 nixos-24.11-small 2.2.0 nixos-unstable 2.2.0 nixos-unstable-small 2.2.0 nixpkgs-unstable 2.2.0 pkgs.haskellPackages.koji Koji buildsystem XML-RPC API bindings nixos-24.05 0.0.2 nixpkgs-24.05-darwin 0.0.2 nixos-24.05-small 0.0.2 nixos-24.11 0.0.2 nixpkgs-24.11-darwin 0.0.2 nixos-24.11-small 0.0.2 nixos-unstable 0.0.2 nixos-unstable-small 0.0.2 nixpkgs-unstable 0.0.2 Notify package maintainers: 1 @bytesudoer ByteSudoer <bytesudoer@gmail.com> CVE-2024-1132 8.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): NONE created 1 week ago Keycloak: path transversal in redirection validation A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL. keycloak <22.0.10 <24.0.3 rh-sso7-keycloak * rhbk/keycloak-rhel9 * mtr/mtr-rhel8-operator * mtr/mtr-operator-bundle * mta/mta-windup-addon-rhel9 * org.keycloak/keycloak-core mtr/mtr-web-container-rhel8 * org.keycloak-keycloak-parent rhbk/keycloak-rhel9-operator * rhbk/keycloak-operator-bundle * rh-sso-7/sso76-openshift-rhel8 * mtr/mtr-web-executor-container-rhel8 * org.wildfly.security-wildfly-elytron-parent pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com> @talyz Kim Lindberger <kim.lindberger@gmail.com> CVE-2024-37962 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 1 week, 1 day ago WordPress Fusion Page Builder plugin <= 1.6.1 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Agency Dominion Fusion allows Stored XSS.This issue affects Fusion: from n/a through 1.6.1. fusion =<1.6.1 pkgs.datafusion-cli cli for Apache Arrow DataFusion nixos-24.05 33.0.0 nixpkgs-24.05-darwin 33.0.0 nixos-24.05-small 33.0.0 nixos-24.11 42.0.0 nixpkgs-24.11-darwin 42.0.0 nixos-24.11-small 42.0.0 nixos-unstable 43.0.0 nixos-unstable-small 43.0.0 nixpkgs-unstable 43.0.0 pkgs.lxgw-fusionkai Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One nixos-24.11 24.134 nixpkgs-24.11-darwin 24.134 nixos-24.11-small 24.134 nixos-unstable 24.134 nixos-unstable-small 24.134 nixpkgs-unstable 24.134 pkgs.finalfusion-utils Utility for converting, quantizing, and querying word embeddings nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.14.1 nixpkgs-24.11-darwin 0.14.1 nixos-24.11-small 0.14.1 nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python311Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.python312Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.haskellPackages.fusion-plugin GHC plugin to make stream fusion more predictable nixos-24.05 0.2.7 nixpkgs-24.05-darwin 0.2.7 nixos-24.05-small 0.2.7 nixos-24.11 0.2.7 nixpkgs-24.11-darwin 0.2.7 nixos-24.11-small 0.2.7 nixos-unstable 0.2.7 nixos-unstable-small 0.2.7 nixpkgs-unstable 0.2.7 pkgs.python311Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python311Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.05 0.1.1.post1 nixpkgs-24.05-darwin 0.1.1.post1 nixos-24.05-small 0.1.1.post1 nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.python312Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python312Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.haskellPackages.fusion-plugin-types Types for the fusion-plugin package nixos-24.05 0.1.0 nixpkgs-24.05-darwin 0.1.0 nixos-24.05-small 0.1.0 nixos-24.11 0.1.0 nixpkgs-24.11-darwin 0.1.0 nixos-24.11-small 0.1.0 nixos-unstable 0.1.0 nixos-unstable-small 0.1.0 nixpkgs-unstable 0.1.0 pkgs.vimPlugins.nvim-treesitter-parsers.fusion nixos-24.05 ??? nixpkgs-24.05-darwin nixos-24.05-small nixos-24.11 ??? nixpkgs-24.11-darwin nixos-24.11-small nixos-unstable ??? nixos-unstable-small nixpkgs-unstable Notify package maintainers: 4 @happysalada Raphael Megzari <raphael@megzari.com> @hellodword hellodword @cpcloud Phillip Cloud @Mic92 Jörg Thalheim <joerg@thalheim.io> CVE-2023-52355 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 1 week, 2 days ago Libtiff: tiffrasterscanlinesize64 produce too-big size and could cause oom An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB. iv tkimg libtiff <4.6.0 mingw-libtiff compat-libtiff3 pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0 pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t Notify package maintainers: 7 @nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com> @nh2 Niklas Hambüchen <mail@nh2.me> @imincik Ivan Mincik <ivan.mincik@gmail.com> @l0b0 Victor Engmark <victor@engmark.name> @willcohen Will Cohen @sikmir Nikolay Korotkiy <sikmir@disroot.org> @Yarny0 Yarny CVE-2023-6228 3.3 LOW CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): LOW created 1 week, 2 days ago Libtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. tkimg libtiff * mingw-libtiff compat-libtiff3 pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0 pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t Notify package maintainers: 7 @nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com> @nh2 Niklas Hambüchen <mail@nh2.me> @imincik Ivan Mincik <ivan.mincik@gmail.com> @l0b0 Victor Engmark <victor@engmark.name> @willcohen Will Cohen @sikmir Nikolay Korotkiy <sikmir@disroot.org> @Yarny0 Yarny CVE-2024-54350 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 1 week, 2 days ago WordPress hmd theme <= 2.0 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HJYL hmd allows Stored XSS.This issue affects hmd: from n/a through 2.0. hmd =<2.0 pkgs.openhmd Library API and drivers immersive technology nixos-24.05 0.3.0 nixpkgs-24.05-darwin 0.3.0 nixos-24.05-small 0.3.0 nixos-24.11 0.3.0 nixpkgs-24.11-darwin 0.3.0 nixos-24.11-small 0.3.0 nixos-unstable 0.3.0 nixos-unstable-small 0.3.0 nixpkgs-unstable 0.3.0 Notify package maintainers: 1 @oxij Jan Malakhovski <oxij@oxij.org> CVE-2024-10973 5.7 MEDIUM CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 1 week, 3 days ago Keycloak: cli option for encrypted jgroups ignored A vulnerability was found in Keycloak. The environment option `KC_CACHE_EMBEDDED_MTLS_ENABLED` does not work and the JGroups replication configuration is always used in plain text which can allow an attacker that has access to adjacent networks related to JGroups to read sensitive information. keycloak <25.0 * <23.0 org.keycloak/keycloak-quarkus-server pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @talyz Kim Lindberger <kim.lindberger@gmail.com> @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com> CVE-2024-0874 5.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): NONE created 1 week, 4 days ago Coredns: cd bit response is cached and served later A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching. coredns <1.11.2 openshift4/ose-coredns * openshift4/ose-coredns-rhel9 * rhacm2/lighthouse-agent-rhel8 openshift-logging/logging-loki-rhel8 openshift-logging/logging-loki-rhel9 rhacm2-tech-preview/lighthouse-agent-rhel8 pkgs.coredns DNS server that runs middleware nixos-24.05 1.11.3 nixpkgs-24.05-darwin 1.11.3 nixos-24.05-small 1.11.3 nixos-24.11 1.11.3 nixpkgs-24.11-darwin 1.11.3 nixos-24.11-small 1.11.3 nixos-unstable 1.11.3 nixos-unstable-small 1.11.3 nixpkgs-unstable 1.11.3 Notify package maintainers: 3 @rushmorem Rushmore Mushambi <rushmore@webenchanter.com> @DeltaEvo Duarte David <deltaduartedavid@gmail.com> @rtreffer Rene Treffer <treffer+nixos@measite.de>
CVE-2024-4629 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 3 days, 21 hours ago Keycloak: potential bypass of brute force protection A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. This timing loophole enables attackers to make more guesses at passwords than intended, potentially compromising account security on affected systems. keycloak ==24.0.3 rh-sso7-keycloak * rhbk/keycloak-rhel9 * org.keycloak-keycloak-parent rhbk/keycloak-rhel9-operator * rhbk/keycloak-operator-bundle * rh-sso-7/sso76-openshift-rhel8 * pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com> @talyz Kim Lindberger <kim.lindberger@gmail.com>
pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6
pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0
pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
CVE-2024-2199 5.7 MEDIUM CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 3 days, 21 hours ago 389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input. 389-ds:1.4 * 389-ds-base <3.1.1 * redhat-ds:11 * redhat-ds:12 * 389-ds:1.4/389-ds-base redhat-ds:11/389-ds-base redhat-ds:12/389-ds-base pkgs._389-ds-base Enterprise-class Open Source LDAP server for Linux nixos-24.05 2.4.6 nixpkgs-24.05-darwin 2.4.6 nixos-24.05-small 2.4.6 nixos-24.11 3.1.1 nixpkgs-24.11-darwin 3.1.1 nixos-24.11-small 3.1.1 nixos-unstable 3.1.1 nixos-unstable-small 3.1.1 nixpkgs-unstable 3.1.1 Notify package maintainers: 1 @ners ners <ners@gmx.ch>
pkgs._389-ds-base Enterprise-class Open Source LDAP server for Linux nixos-24.05 2.4.6 nixpkgs-24.05-darwin 2.4.6 nixos-24.05-small 2.4.6 nixos-24.11 3.1.1 nixpkgs-24.11-darwin 3.1.1 nixos-24.11-small 3.1.1 nixos-unstable 3.1.1 nixos-unstable-small 3.1.1 nixpkgs-unstable 3.1.1
CVE-2024-9427 5.4 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): NONE created 3 days, 21 hours ago Koji: escape html tag characters in the query string A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code koji <1.35.1 pkgs.koji Interactive CLI for creating conventional commits nixos-24.05 2.2.0 nixpkgs-24.05-darwin 2.2.0 nixos-24.05-small 2.2.0 nixos-24.11 2.2.0 nixpkgs-24.11-darwin 2.2.0 nixos-24.11-small 2.2.0 nixos-unstable 2.2.0 nixos-unstable-small 2.2.0 nixpkgs-unstable 2.2.0 pkgs.haskellPackages.koji Koji buildsystem XML-RPC API bindings nixos-24.05 0.0.2 nixpkgs-24.05-darwin 0.0.2 nixos-24.05-small 0.0.2 nixos-24.11 0.0.2 nixpkgs-24.11-darwin 0.0.2 nixos-24.11-small 0.0.2 nixos-unstable 0.0.2 nixos-unstable-small 0.0.2 nixpkgs-unstable 0.0.2 Notify package maintainers: 1 @bytesudoer ByteSudoer <bytesudoer@gmail.com>
pkgs.koji Interactive CLI for creating conventional commits nixos-24.05 2.2.0 nixpkgs-24.05-darwin 2.2.0 nixos-24.05-small 2.2.0 nixos-24.11 2.2.0 nixpkgs-24.11-darwin 2.2.0 nixos-24.11-small 2.2.0 nixos-unstable 2.2.0 nixos-unstable-small 2.2.0 nixpkgs-unstable 2.2.0
pkgs.haskellPackages.koji Koji buildsystem XML-RPC API bindings nixos-24.05 0.0.2 nixpkgs-24.05-darwin 0.0.2 nixos-24.05-small 0.0.2 nixos-24.11 0.0.2 nixpkgs-24.11-darwin 0.0.2 nixos-24.11-small 0.0.2 nixos-unstable 0.0.2 nixos-unstable-small 0.0.2 nixpkgs-unstable 0.0.2
CVE-2024-1132 8.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): NONE created 1 week ago Keycloak: path transversal in redirection validation A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL. keycloak <22.0.10 <24.0.3 rh-sso7-keycloak * rhbk/keycloak-rhel9 * mtr/mtr-rhel8-operator * mtr/mtr-operator-bundle * mta/mta-windup-addon-rhel9 * org.keycloak/keycloak-core mtr/mtr-web-container-rhel8 * org.keycloak-keycloak-parent rhbk/keycloak-rhel9-operator * rhbk/keycloak-operator-bundle * rh-sso-7/sso76-openshift-rhel8 * mtr/mtr-web-executor-container-rhel8 * org.wildfly.security-wildfly-elytron-parent pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com> @talyz Kim Lindberger <kim.lindberger@gmail.com>
pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6
pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0
pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
CVE-2024-37962 6.5 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 1 week, 1 day ago WordPress Fusion Page Builder plugin <= 1.6.1 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Agency Dominion Fusion allows Stored XSS.This issue affects Fusion: from n/a through 1.6.1. fusion =<1.6.1 pkgs.datafusion-cli cli for Apache Arrow DataFusion nixos-24.05 33.0.0 nixpkgs-24.05-darwin 33.0.0 nixos-24.05-small 33.0.0 nixos-24.11 42.0.0 nixpkgs-24.11-darwin 42.0.0 nixos-24.11-small 42.0.0 nixos-unstable 43.0.0 nixos-unstable-small 43.0.0 nixpkgs-unstable 43.0.0 pkgs.lxgw-fusionkai Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One nixos-24.11 24.134 nixpkgs-24.11-darwin 24.134 nixos-24.11-small 24.134 nixos-unstable 24.134 nixos-unstable-small 24.134 nixpkgs-unstable 24.134 pkgs.finalfusion-utils Utility for converting, quantizing, and querying word embeddings nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.14.1 nixpkgs-24.11-darwin 0.14.1 nixos-24.11-small 0.14.1 nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python311Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.python312Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0 pkgs.haskellPackages.fusion-plugin GHC plugin to make stream fusion more predictable nixos-24.05 0.2.7 nixpkgs-24.05-darwin 0.2.7 nixos-24.05-small 0.2.7 nixos-24.11 0.2.7 nixpkgs-24.11-darwin 0.2.7 nixos-24.11-small 0.2.7 nixos-unstable 0.2.7 nixos-unstable-small 0.2.7 nixpkgs-unstable 0.2.7 pkgs.python311Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python311Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.05 0.1.1.post1 nixpkgs-24.05-darwin 0.1.1.post1 nixos-24.05-small 0.1.1.post1 nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.python312Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1 pkgs.python312Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1 pkgs.haskellPackages.fusion-plugin-types Types for the fusion-plugin package nixos-24.05 0.1.0 nixpkgs-24.05-darwin 0.1.0 nixos-24.05-small 0.1.0 nixos-24.11 0.1.0 nixpkgs-24.11-darwin 0.1.0 nixos-24.11-small 0.1.0 nixos-unstable 0.1.0 nixos-unstable-small 0.1.0 nixpkgs-unstable 0.1.0 pkgs.vimPlugins.nvim-treesitter-parsers.fusion nixos-24.05 ??? nixpkgs-24.05-darwin nixos-24.05-small nixos-24.11 ??? nixpkgs-24.11-darwin nixos-24.11-small nixos-unstable ??? nixos-unstable-small nixpkgs-unstable Notify package maintainers: 4 @happysalada Raphael Megzari <raphael@megzari.com> @hellodword hellodword @cpcloud Phillip Cloud @Mic92 Jörg Thalheim <joerg@thalheim.io>
pkgs.datafusion-cli cli for Apache Arrow DataFusion nixos-24.05 33.0.0 nixpkgs-24.05-darwin 33.0.0 nixos-24.05-small 33.0.0 nixos-24.11 42.0.0 nixpkgs-24.11-darwin 42.0.0 nixos-24.11-small 42.0.0 nixos-unstable 43.0.0 nixos-unstable-small 43.0.0 nixpkgs-unstable 43.0.0
pkgs.lxgw-fusionkai Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One nixos-24.11 24.134 nixpkgs-24.11-darwin 24.134 nixos-24.11-small 24.134 nixos-unstable 24.134 nixos-unstable-small 24.134 nixpkgs-unstable 24.134
pkgs.finalfusion-utils Utility for converting, quantizing, and querying word embeddings nixos-24.05 0.14.1 nixpkgs-24.05-darwin 0.14.1 nixos-24.05-small 0.14.1 nixos-24.11 0.14.1 nixpkgs-24.11-darwin 0.14.1 nixos-24.11-small 0.14.1 nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1
pkgs.python311Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0
pkgs.python312Packages.datafusion Extensible query execution framework nixos-24.05 35.0.0 nixpkgs-24.05-darwin 35.0.0 nixos-24.05-small 35.0.0 nixos-24.11 40.1.0 nixpkgs-24.11-darwin 40.1.0 nixos-24.11-small 40.1.0 nixos-unstable 40.1.0 nixos-unstable-small 40.1.0 nixpkgs-unstable 40.1.0
pkgs.haskellPackages.fusion-plugin GHC plugin to make stream fusion more predictable nixos-24.05 0.2.7 nixpkgs-24.05-darwin 0.2.7 nixos-24.05-small 0.2.7 nixos-24.11 0.2.7 nixpkgs-24.11-darwin 0.2.7 nixos-24.11-small 0.2.7 nixos-unstable 0.2.7 nixos-unstable-small 0.2.7 nixpkgs-unstable 0.2.7
pkgs.python311Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python311Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.05 0.1.1.post1 nixpkgs-24.05-darwin 0.1.1.post1 nixos-24.05-small 0.1.1.post1 nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1
pkgs.python312Packages.finalfusion Python module for using finalfusion, word2vec, and fastText word embeddings nixos-24.05 0.7.1 nixpkgs-24.05-darwin 0.7.1 nixos-24.05-small 0.7.1 nixos-24.11 0.7.1 nixpkgs-24.11-darwin 0.7.1 nixos-24.11-small 0.7.1 nixos-unstable 0.7.1 nixos-unstable-small 0.7.1 nixpkgs-unstable 0.7.1
pkgs.python312Packages.k-diffusion Karras et al. (2022) diffusion models for PyTorch nixos-24.11 0.1.1.post1 nixpkgs-24.11-darwin 0.1.1.post1 nixos-24.11-small 0.1.1.post1 nixos-unstable 0.1.1.post1 nixos-unstable-small 0.1.1.post1 nixpkgs-unstable 0.1.1.post1
pkgs.haskellPackages.fusion-plugin-types Types for the fusion-plugin package nixos-24.05 0.1.0 nixpkgs-24.05-darwin 0.1.0 nixos-24.05-small 0.1.0 nixos-24.11 0.1.0 nixpkgs-24.11-darwin 0.1.0 nixos-24.11-small 0.1.0 nixos-unstable 0.1.0 nixos-unstable-small 0.1.0 nixpkgs-unstable 0.1.0
pkgs.vimPlugins.nvim-treesitter-parsers.fusion nixos-24.05 ??? nixpkgs-24.05-darwin nixos-24.05-small nixos-24.11 ??? nixpkgs-24.11-darwin nixos-24.11-small nixos-unstable ??? nixos-unstable-small nixpkgs-unstable
CVE-2023-52355 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 1 week, 2 days ago Libtiff: tiffrasterscanlinesize64 produce too-big size and could cause oom An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB. iv tkimg libtiff <4.6.0 mingw-libtiff compat-libtiff3 pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0 pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t Notify package maintainers: 7 @nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com> @nh2 Niklas Hambüchen <mail@nh2.me> @imincik Ivan Mincik <ivan.mincik@gmail.com> @l0b0 Victor Engmark <victor@engmark.name> @willcohen Will Cohen @sikmir Nikolay Korotkiy <sikmir@disroot.org> @Yarny0 Yarny
pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0
pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t
CVE-2023-6228 3.3 LOW CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): LOW created 1 week, 2 days ago Libtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. tkimg libtiff * mingw-libtiff compat-libtiff3 pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0 pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t Notify package maintainers: 7 @nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com> @nh2 Niklas Hambüchen <mail@nh2.me> @imincik Ivan Mincik <ivan.mincik@gmail.com> @l0b0 Victor Engmark <victor@engmark.name> @willcohen Will Cohen @sikmir Nikolay Korotkiy <sikmir@disroot.org> @Yarny0 Yarny
pkgs.libtiff Library and utilities for working with the TIFF image file format nixos-24.05 4.6.0 nixpkgs-24.05-darwin 4.6.0 nixos-24.05-small 4.6.0 nixos-24.11 4.7.0 nixpkgs-24.11-darwin 4.7.0 nixos-24.11-small 4.7.0 nixos-unstable 4.7.0 nixos-unstable-small 4.7.0 nixpkgs-unstable 4.7.0
pkgs.libtiff_t Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version) nixos-24.05 4.6.0t nixpkgs-24.05-darwin 4.6.0t nixos-24.05-small 4.6.0t
CVE-2024-54350 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 1 week, 2 days ago WordPress hmd theme <= 2.0 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HJYL hmd allows Stored XSS.This issue affects hmd: from n/a through 2.0. hmd =<2.0 pkgs.openhmd Library API and drivers immersive technology nixos-24.05 0.3.0 nixpkgs-24.05-darwin 0.3.0 nixos-24.05-small 0.3.0 nixos-24.11 0.3.0 nixpkgs-24.11-darwin 0.3.0 nixos-24.11-small 0.3.0 nixos-unstable 0.3.0 nixos-unstable-small 0.3.0 nixpkgs-unstable 0.3.0 Notify package maintainers: 1 @oxij Jan Malakhovski <oxij@oxij.org>
pkgs.openhmd Library API and drivers immersive technology nixos-24.05 0.3.0 nixpkgs-24.05-darwin 0.3.0 nixos-24.05-small 0.3.0 nixos-24.11 0.3.0 nixpkgs-24.11-darwin 0.3.0 nixos-24.11-small 0.3.0 nixos-unstable 0.3.0 nixos-unstable-small 0.3.0 nixpkgs-unstable 0.3.0
CVE-2024-10973 5.7 MEDIUM CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 1 week, 3 days ago Keycloak: cli option for encrypted jgroups ignored A vulnerability was found in Keycloak. The environment option `KC_CACHE_EMBEDDED_MTLS_ENABLED` does not work and the JGroups replication configuration is always used in plain text which can allow an attacker that has access to adjacent networks related to JGroups to read sensitive information. keycloak <25.0 * <23.0 org.keycloak/keycloak-quarkus-server pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6 pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0 pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0 Notify package maintainers: 3 @talyz Kim Lindberger <kim.lindberger@gmail.com> @NickCao Nick Cao <nickcao@nichi.co> @ngerstle Nicholas Gerstle <ngerstle@gmail.com>
pkgs.keycloak Identity and access management for modern applications and services nixos-24.05 25.0.6 nixpkgs-24.05-darwin 25.0.6 nixos-24.05-small 25.0.6 nixos-24.11 26.0.6 nixpkgs-24.11-darwin 26.0.7 nixos-24.11-small 26.0.7 nixos-unstable 26.0.6 nixos-unstable-small 26.0.7 nixpkgs-unstable 26.0.6
pkgs.terraform-providers.keycloak nixos-24.05 4.4.0 nixpkgs-24.05-darwin 4.4.0 nixos-24.05-small 4.4.0 nixos-24.11 4.4.0 nixpkgs-24.11-darwin 4.4.0 nixos-24.11-small 4.4.0 nixos-unstable 4.4.0 nixos-unstable-small 4.4.0 nixpkgs-unstable 4.4.0
pkgs.python311Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
pkgs.python312Packages.python-keycloak Provides access to the Keycloak API nixos-24.05 4.0.0 nixpkgs-24.05-darwin 4.0.0 nixos-24.05-small 4.0.0 nixos-24.11 4.0.0 nixpkgs-24.11-darwin 4.0.0 nixos-24.11-small 4.0.0 nixos-unstable 4.0.0 nixos-unstable-small 4.0.0 nixpkgs-unstable 4.0.0
CVE-2024-0874 5.3 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): NONE created 1 week, 4 days ago Coredns: cd bit response is cached and served later A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching. coredns <1.11.2 openshift4/ose-coredns * openshift4/ose-coredns-rhel9 * rhacm2/lighthouse-agent-rhel8 openshift-logging/logging-loki-rhel8 openshift-logging/logging-loki-rhel9 rhacm2-tech-preview/lighthouse-agent-rhel8 pkgs.coredns DNS server that runs middleware nixos-24.05 1.11.3 nixpkgs-24.05-darwin 1.11.3 nixos-24.05-small 1.11.3 nixos-24.11 1.11.3 nixpkgs-24.11-darwin 1.11.3 nixos-24.11-small 1.11.3 nixos-unstable 1.11.3 nixos-unstable-small 1.11.3 nixpkgs-unstable 1.11.3 Notify package maintainers: 3 @rushmorem Rushmore Mushambi <rushmore@webenchanter.com> @DeltaEvo Duarte David <deltaduartedavid@gmail.com> @rtreffer Rene Treffer <treffer+nixos@measite.de>
pkgs.coredns DNS server that runs middleware nixos-24.05 1.11.3 nixpkgs-24.05-darwin 1.11.3 nixos-24.05-small 1.11.3 nixos-24.11 1.11.3 nixpkgs-24.11-darwin 1.11.3 nixos-24.11-small 1.11.3 nixos-unstable 1.11.3 nixos-unstable-small 1.11.3 nixpkgs-unstable 1.11.3