Automatically generated suggestions

Create Draft to queue a suggestion for refinement.

Dismiss to remove a suggestion from the queue.

CVE-2024-4982
7.6 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 months, 2 weeks ago
Pagure: path traversal in view_issue_raw_file()

A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server.

pagure
<5.14.1

pkgs.haskellPackages.pagure

Pagure REST client library

pkgs.haskellPackages.pagure-cli

A Pagure gitforge query tool
CVE-2025-4432
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 2 months, 2 weeks ago
Ring: some aes functions may panic when overflow checking is enabled in ring

A flaw was found in Rust's Ring package. A panic may be triggered when overflow checking is enabled. In the QUIC protocol, this flaw allows an attacker to induce this panic by sending a specially crafted packet. It will likely occur unintentionally in 1 out of every 2**32 packets sent or received.

gjs
ring
<0.17.12
rust
polkit
firefox
snpguest
rpm-ostree
thunderbird
python-maturin
kata-containers
python3.12-maturin
rhtas/tuffer-rhel9
rhtas/tuftool-rhel9
firefox:flatpak/firefox
trustee-guest-components
thunderbird:flatpak/thunderbird
rhtpa/rhtpa-trustification-service-rhel9

pkgs.gjs

JavaScript bindings for GNOME

pkgs.irust

Cross Platform Rust Repl

pkgs.mrustc

Mutabah's Rust Compiler

pkgs.polkit

Toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes

pkgs.rustup

Rust toolchain installer

pkgs.rustus

TUS protocol implementation in Rust

pkgs.rustcat

Port listener and reverse shell

pkgs.rustfmt

Tool for formatting Rust code according to style guidelines

pkgs.rustdesk

Virtual / remote desktop infrastructure for everyone! Open source TeamViewer / Citrix alternative

pkgs.rustical

Yet another calendar server aiming to be simple, fast and passwordless

pkgs.rustscan

Faster Nmap Scanning with Rust

pkgs.rustycli

Access the rust playground right in terminal

pkgs.snpguest

CLI tool for interacting with SEV-SNP guest environment

pkgs.svd2rust

Generate Rust register maps (`struct`s) from SVD files

pkgs.hath-rust

Unofficial Hentai@Home client written in Rust

pkgs.rust-motd

Beautiful, useful MOTD generation with zero runtime dependencies

pkgs.rustdress

Self-hosted Lightning Address Server

pkgs.rusti-cal

Minimal command line calendar, similar to cal

pkgs.rustic-rs

Fast, encrypted, deduplicated backups powered by pure Rust

pkgs.rustlings

Explore the Rust programming language and learn more about it while doing exercises

pkgs.rusty-man

Command-line viewer for documentation generated by rustdoc

pkgs.rusty-psn

Simple tool to grab updates for PS3 games, directly from Sony's servers using their updates API

pkgs.rustywind

CLI for organizing Tailwind CSS classes

pkgs.xulrunner

Web browser built from Firefox source tree

pkgs.cmd-polkit

Easily create polkit authentication agents by using commands

pkgs.firefoxpwa

Tool to install, manage and use Progressive Web Apps (PWAs) in Mozilla Firefox (native component)

pkgs.rpm-ostree

Hybrid image/package system. It uses OSTree as an image format, and uses RPM as a component model

pkgs.rustfinity

CLI for Rustfinity challenges solving

pkgs.rustls-ffi

C-to-rustls bindings

pkgs.rustpython

Python 3 interpreter in written Rust

pkgs.rusty-bash

Bash written with Rust, a.k.a. sushi shell

pkgs.rustypaste

Minimal file upload/pastebin service

pkgs.slowlorust

Lightweight slowloris (HTTP DoS) tool

pkgs.trustymail

Tool to scan domains and return data based on trustworthy email best practices

pkgs.uncrustify

Source code beautifier for C, C++, C#, ObjectiveC, D, Java, Pawn and VALA

pkgs.ff2mpv-rust

Native messaging host for ff2mpv written in Rust

pkgs.rust-script

Run Rust files and expressions as scripts without any setup or compilation step

pkgs.rustmission

TUI for the Transmission daemon

pkgs.buildcatrust

Build SSL/TLS trust stores

pkgs.polkit_gnome

Dbus session bus service that is used to bring up authentication dialogs

pkgs.rust-bindgen

Automatically generates Rust FFI bindings to C (and some C++) libraries

pkgs.rust-petname

Generate human readable random names

pkgs.rustc-wasm32

Safe, concurrent, practical language (wrapper script)

pkgs.faust2firefox

The faust2firefox script, part of faust functional programming language for realtime audio signal processing

pkgs.i3status-rust

Very resource-friendly and feature-rich replacement for i3status

pkgs.rust-analyzer

Modular compiler frontend for the Rust language

pkgs.rust-cbindgen

Project for generating C bindings from Rust code

pkgs.rust-parallel

Rust shell tool to run commands in parallel with a similar interface to GNU parallel

pkgs.rust-traverse

Terminal based file explorer

pkgs.rustls-libssl

Partial reimplementation of the OpenSSL 3 libssl ABI using rustls

pkgs.rusty-psn-gui

Simple tool to grab updates for PS3 games, directly from Sony's servers using their updates API

pkgs.starlark-rust

Rust implementation of the Starlark language

pkgs.svd2rust-form

Library for splitting apart a large file with multiple modules into the idiomatic rust directory structure

pkgs.aw-server-rust

High-performance implementation of the ActivityWatch server, written in Rust

pkgs.capnproto-rust

Cap'n Proto codegen plugin for Rust

pkgs.doh-proxy-rust

Fast, mature, secure DoH server proxy written in Rust

pkgs.faust2jackrust

The faust2jackrust script, part of faust functional programming language for realtime audio signal processing

pkgs.rustc-demangle

Rust symbol demangling

pkgs.rusty-diceware

Commandline diceware, with or without dice, written in Rustlang

pkgs.rustypaste-cli

CLI tool for rustypaste

pkgs.scx.rustscheds

Sched-ext Rust userspace schedulers

pkgs.firefox_decrypt

Tool to extract passwords from profiles of Mozilla Firefox and derivates

pkgs.hyprpolkitagent

Polkit authentication agent written in QT/QML

pkgs.protoc-gen-rust

Protobuf plugin for generating Rust code

pkgs.rust-audit-info

Command-line tool to extract the dependency trees embedded in binaries by cargo-auditable

pkgs.rust-streamdeck

ibusb based driver for Elgato StreamDeck devices

pkgs.rustc-unwrapped

Safe, concurrent, practical language

pkgs.rustdesk-server

RustDesk Server Program

pkgs.mate.mate-polkit

Integrates polkit authentication for MATE desktop

pkgs.mrustc-minicargo

Minimalist builder for Rust

pkgs.rust-stakeholder

Generate impressive-looking terminal output to look busy when stakeholders walk by

pkgs.rustdesk-flutter

Virtual / remote desktop infrastructure for everyone! Open source TeamViewer / Citrix alternative

pkgs.shadowsocks-rust

Rust port of Shadowsocks

pkgs.firefox-unwrapped

Web browser built from Firefox source tree

pkgs.languagetool-rust

LanguageTool API in Rust

pkgs.cargo-bisect-rustc

Bisects rustc, either nightlies or CI artifacts

pkgs.lomiri.trust-store

Common implementation of a trust store to be used by trusted helpers

pkgs.pcscliteWithPolkit

Middleware to access a smart card using SCard API (PC/SC)

pkgs.piping-server-rust

Infinitely transfer between every device over pure HTTP with pipes or browsers

pkgs.rust-code-analysis

Analyze and collect metrics on source code

pkgs.firefox-sync-client

Commandline-utility to list/view/edit/delete entries in a firefox-sync account

pkgs.parinfer-rust-emacs

Emacs centric fork of parinfer-rust

pkgs.jetbrains.rust-rover

Rust IDE from JetBrains

pkgs.libsForQt5.polkit-qt

Qt wrapper around PolKit

pkgs.protoc-gen-rust-grpc

Protobuf plugin for generating Rust code for gRPC

pkgs.firefox-esr-unwrapped

Web browser built from Firefox source tree

pkgs.armTrustedFirmwareQemu

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareS905

Reference implementation of secure world software for ARMv8-A

pkgs.firefox-beta-unwrapped

Web browser built from Firefox Beta Release source tree

pkgs.rocmPackages.rocthrust

ROCm parallel algorithm library

pkgs.rust-bindgen-unwrapped

Automatically generates Rust FFI bindings to C (and some C++) libraries

pkgs.tests.writers.bin.rust

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.armTrustedFirmwareTools

Reference implementation of secure world software for ARMv8-A

pkgs.gnomeExtensions.gjs-osk

A new Onscreen Keyboard built using GNOME JS

pkgs.kdePackages.polkit-qt-1

Qt wrapper around Polkit-1 client libraries

pkgs.rust-analyzer-unwrapped

Modular compiler frontend for the Rust language

pkgs.armTrustedFirmwareRK3328

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3399

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3568

Reference implementation of secure world software for ARMv8-A

pkgs.armTrustedFirmwareRK3588

Reference implementation of secure world software for ARMv8-A

pkgs.luaPackages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.rocmPackages_6.rocthrust

ROCm parallel algorithm library

pkgs.plasma5Packages.polkit-qt

Qt wrapper around PolKit

pkgs.python312Packages.pypugjs

PugJS syntax template adapter for Django, Jinja2, Mako and Tornado templates

pkgs.python312Packages.trustme

High quality TLS certs while you wait, for the discerning tester

pkgs.python313Packages.pypugjs

PugJS syntax template adapter for Django, Jinja2, Mako and Tornado templates

pkgs.python313Packages.trustme

High quality TLS certs while you wait, for the discerning tester

pkgs.lomiri.lomiri-polkit-agent

Policy kit agent for the Lomiri desktop

pkgs.lua51Packages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.lua52Packages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.lua53Packages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.lua54Packages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.armTrustedFirmwareAllwinner

Reference implementation of secure world software for ARMv8-A

pkgs.flutter_rust_bridge_codegen

Flutter/Dart <-> Rust binding generator, feature-rich, but seamless and simple

pkgs.luajitPackages.rustaceanvim

🦀 Supercharge your Rust experience in Neovim! A heavily modified fork of rust-tools.nvim

pkgs.python312Packages.rustworkx

High performance Python graph library implemented in Rust

pkgs.python313Packages.rustworkx

High performance Python graph library implemented in Rust

pkgs.rust-synapse-state-compress

Tool to compress some state in a Synapse instance's database

pkgs.tests.writers.wrapping.rust

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.firefox-devedition-unwrapped

Web browser built from Firefox Developer Edition source tree

pkgs.python312Packages.truststore

Verify certificates using native system trust stores

pkgs.python313Packages.truststore

Verify certificates using native system trust stores

pkgs.vimPlugins.coc-rust-analyzer

rust-analyzer for Vim/Neovim, works as an extension with coc.nvim

pkgs.armTrustedFirmwareAllwinnerH6

Reference implementation of secure world software for ARMv8-A

pkgs.buildkite-test-collector-rust

Rust adapter for Buildkite Test Analytics

pkgs.kdePackages.polkit-kde-agent-1

Daemon providing a Polkit authentication UI for Plasma

pkgs.nodePackages.coc-rust-analyzer

rust-analyzer for Vim/Neovim, works as an extension with coc.nvim

pkgs.pantheon.pantheon-agent-polkit

Polkit Agent for the Pantheon Desktop

pkgs.python312Packages.buildcatrust

Build SSL/TLS trust stores

pkgs.python313Packages.buildcatrust

Build SSL/TLS trust stores

pkgs.typstPackages.qec-thrust_0_1_0

A package for drawing quantum error correction codes with Typst

pkgs.armTrustedFirmwareAllwinnerH616

Reference implementation of secure world software for ARMv8-A

pkgs.rustup-toolchain-install-master

Install a rustc master toolchain usable from rustup

pkgs.gnomeExtensions.firefox-profiles

Easily launch Firefox with your favorite profile right from the indicator menu!

pkgs.haskellPackages.tree-sitter-rust

Tree-sitter grammar/parser for Rust

pkgs.perlPackages.PodCoverageTrustPod

Allow a module's pod to contain Pod::Coverage hints

pkgs.python312Packages.skytemple-rust

Binary Rust extensions for SkyTemple

pkgs.python313Packages.skytemple-rust

Binary Rust extensions for SkyTemple

pkgs.haskellPackages.lambdabot-trusted

Lambdabot trusted code

pkgs.python312Packages.setuptools-rust

Setuptools plugin for Rust support

pkgs.python313Packages.setuptools-rust

Setuptools plugin for Rust support

pkgs.python312Packages.py-rust-stemmers

High-performance Python wrapper around the rust-stemmers library, utilizing the Snowball stemming algorithm

pkgs.python312Packages.tree-sitter-rust

Rust grammar for tree-sitter

pkgs.python313Packages.py-rust-stemmers

High-performance Python wrapper around the rust-stemmers library, utilizing the Snowball stemming algorithm

pkgs.python313Packages.tree-sitter-rust

Rust grammar for tree-sitter

pkgs.azure-cli-extensions.trustedsigning

Microsoft Azure Command-Line Tools Trustedsigning Extension

pkgs.perl538Packages.PodCoverageTrustPod

Allow a module's pod to contain Pod::Coverage hints

pkgs.perl540Packages.PodCoverageTrustPod

Allow a module's pod to contain Pod::Coverage hints

pkgs.python312Packages.ipv8-rust-tunnels

A set of performance enhancements to the TunnelCommunity, the anonymization layer used in IPv8 and Tribler

pkgs.python313Packages.ipv8-rust-tunnels

A set of performance enhancements to the TunnelCommunity, the anonymization layer used in IPv8 and Tribler

pkgs.roundcubePlugins.thunderbird_labels

pkgs.thunderbirdPackages.thunderbird-128

Full-featured e-mail client

pkgs.thunderbirdPackages.thunderbird-esr

Full-featured e-mail client

pkgs.luaPackages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.linuxPackages.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.nodePackages_latest.coc-rust-analyzer

rust-analyzer for Vim/Neovim, works as an extension with coc.nvim

pkgs.tree-sitter-grammars.tree-sitter-rust

pkgs.lua51Packages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.lua52Packages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.lua53Packages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.lua54Packages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.thunderbirdPackages.thunderbird-latest

Full-featured e-mail client

pkgs.luajitPackages.luarocks-build-rust-mlua

A LuaRocks build backend for Lua modules written in Rust using mlua

pkgs.vimPlugins.nvim-treesitter-parsers.rust

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.python312Packages.betterproto-rust-codec

Converter between betterproto messages and the Protobuf wire format

pkgs.python313Packages.betterproto-rust-codec

Converter between betterproto messages and the Protobuf wire format

pkgs.linuxPackages_lqx.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxPackages_zen.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.python312Packages.setuptoolsRustBuildHook

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.python313Packages.setuptoolsRustBuildHook

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.vscode-extensions.rust-lang.rust-analyzer

Alternative rust language server to the RLS

pkgs.vscode-extensions.techtheawesome.rust-yew

VSCode extension that provides some language features for Yew's html macro syntax

pkgs.linuxPackages-libre.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxPackages_latest.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxPackages_xanmod.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxPackages_latest-libre.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxPackages_xanmod_stable.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_lqx.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_zen.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_6_12.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_6_16.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.python312Packages.tree-sitter-grammars.tree-sitter-rust

Python bindings for tree-sitter-rust

pkgs.python313Packages.tree-sitter-grammars.tree-sitter-rust

Python bindings for tree-sitter-rust

pkgs.vscode-extensions.firefox-devtools.vscode-firefox-debug

Visual Studio Code extension for debugging web applications and browser extensions in Firefox

pkgs.linuxKernel.packages.linux_libre.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_xanmod.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_hardened.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_latest_libre.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_6_12_hardened.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust

pkgs.linuxKernel.packages.linux_xanmod_stable.rust-out-of-tree-module

Basic template for an out-of-tree Linux kernel module written in Rust
Package maintainers: 126
CVE-2025-4382
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): PHYSICAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): NONE
created 2 months, 2 weeks ago
Grub2: grub allow access to encrypted device through cli once root device is unlocked via tpm

A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is set to automatically decrypt disks using keys stored in the TPM, it reads the decryption key into system memory. If an attacker with physical access can corrupt the underlying filesystem superblock, GRUB will fail to locate a valid filesystem and enter rescue mode. At this point, the disk is already decrypted, and the decryption key remains loaded in system memory. This scenario may allow an attacker with physical access to access the unencrypted data without any further authentication, thereby compromising data confidentiality. Furthermore, the ability to force this state through filesystem corruption also presents a data integrity concern.

grub2
=<2.12
rhcos

pkgs.grub2_pvgrub_image

PvGrub2 image for booting PV Xen guests
  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.grub2_pvhgrub_image

PvGrub2 image for booting PVH Xen guests
  • nixos-unstable ???
    • nixpkgs-unstable
Package maintainers: 4
CVE-2025-1399
3.1 LOW
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 2 months, 2 weeks ago
Out-of-bounds Read in libplctag library

Out-of-bounds Read vulnerability in unpack_response (session.c) in libplctag from 2.0 through 2.6.3 allows Overread Buffers via network.

libplctag
=<2.6.3

pkgs.libplctag

Library that uses EtherNet/IP or Modbus TCP to read and write tags in PLCs
Package maintainers: 1
CVE-2025-1400
3.1 LOW
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 2 months, 2 weeks ago
Out-of-bounds Read in libplctag library

Out-of-bounds Read vulnerability in unpack_response (conn.c) in libplctag from 2.0 through 2.6.3 allows Overread Buffers via network.

libplctag
=<2.6.3

pkgs.libplctag

Library that uses EtherNet/IP or Modbus TCP to read and write tags in PLCs
Package maintainers: 1
CVE-2025-31177
6.2 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 2 months, 2 weeks ago
Gnuplot: gnuplot heap-buffer overflow on utf8_copy_one

gnuplot is affected by a heap buffer overflow at function utf8_copy_one.

gnuplot
<6.0

pkgs.gnuplot

Portable command-line driven graphing utility for many platforms

pkgs.gnuplot_qt

Portable command-line driven graphing utility for many platforms

pkgs.feedgnuplot

General purpose pipe-oriented plotting tool

pkgs.gnuplot_aquaterm

Portable command-line driven graphing utility for many platforms

pkgs.haskellPackages.gnuplot

2D and 3D plots using gnuplot

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe

A simple interface to Gnuplot

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot

  • nixos-unstable ???
    • nixpkgs-unstable
Package maintainers: 3
CVE-2025-47509
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 months, 2 weeks ago
WordPress Top 10 <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ajay Top 10 allows Stored XSS. This issue affects Top 10: from n/a through 4.1.0.

top-10
=<4.1.0

pkgs.budgie-desktop

Feature-rich, modern desktop designed to keep out the way of the user

pkgs.gnomeExtensions.serenity-desktop

A Per-Monitor-Workspace window manager designed for productive use. It offers two main features:
Package maintainers: 3
CVE-2025-47441
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 months, 2 weeks ago
WordPress Progress Bar <= 2.2.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chris Reynolds Progress Bar allows Stored XSS. This issue affects Progress Bar: from n/a through 2.2.3.

progress-bar
=<2.2.3

pkgs.haskellPackages.terminal-progress-bar

A progress bar in the terminal
CVE-2024-12225
9.1 CRITICAL
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): NONE
created 2 months, 2 weeks ago
Io.quarkus:quarkus-security-webauthn: quarkus webauthn unexpected authentication bypass

A vulnerability was found in Quarkus in the quarkus-security-webauthn module. The Quarkus WebAuthn module publishes default REST endpoints for registering and logging users in while allowing developers to provide custom REST endpoints. When developers provide custom REST endpoints, the default endpoints remain accessible, potentially allowing attackers to obtain a login cookie that has no corresponding user in the Quarkus application or, depending on how the application is written, could correspond to an existing user that has no relation with the current attacker, allowing anyone to log in as an existing user by just knowing that user's user name.

quarkus
<3.15.3.1
io.quarkus:quarkus-security-webauthn

pkgs.quarkus

Kubernetes-native Java framework tailored for GraalVM and HotSpot, crafted from best-of-breed Java libraries and standards
Package maintainers: 1
CVE-2025-4373
4.8 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 2 months, 2 weeks ago
Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar

A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

glib
<2.84.2
bootc
glib2
*
loupe
librsvg2
mingw-glib2
glycin-loaders
rhosdt/jaeger-agent-rhel8
*
rhosdt/jaeger-query-rhel8
*
rhosdt/jaeger-ingester-rhel8
*
rhosdt/jaeger-rhel8-operator
*
rhosdt/jaeger-collector-rhel8
*
rhosdt/jaeger-operator-bundle
*
rhosdt/jaeger-all-in-one-rhel8
*
rhosdt/jaeger-es-rollover-rhel8
*
rhosdt/jaeger-es-index-cleaner-rhel8
*
registry.redhat.io/rhosdt/jaeger-agent-rhel8
*
registry.redhat.io/rhosdt/jaeger-query-rhel8
*
insights-proxy/insights-proxy-container-rhel9
*
registry.redhat.io/rhosdt/jaeger-ingester-rhel8
*
registry.redhat.io/rhosdt/jaeger-rhel8-operator
*
registry.redhat.io/rhosdt/jaeger-collector-rhel8
*
registry.redhat.io/rhosdt/jaeger-operator-bundle
*
registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8
*
registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8
*
registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8
*
registry.redhat.io/insights-proxy/insights-proxy-container-rhel9
*

pkgs.bootc

Boot and upgrade via container images

pkgs.podman-bootc

Streamlining podman+bootc interactions

pkgs.mlxbf-bootctl

Control BlueField boot partitions

pkgs.systemd-bootchart

Boot performance graphing tool from systemd
Package maintainers: 5