CVE-2020-11936 created 4 months ago gdbus setgid privilege escalation gdbus setgid privilege escalation Affected products apport <2.20.11-0ubuntu27.6 Matching in nixpkgs pkgs.haskellPackages.apportionment Round a set of numbers while maintaining its sum nixos-unstable - nixpkgs-unstable 0.0.0.4 Package maintainers: 1 @thielema Henning Thielemann <nix@henning-thielemann.de>
pkgs.haskellPackages.apportionment Round a set of numbers while maintaining its sum nixos-unstable - nixpkgs-unstable 0.0.0.4
CVE-2023-0092 created 4 months ago An authenticated user who has read access to the juju … An authenticated user who has read access to the juju controller model, may construct a remote request to download an arbitrary file from the controller's filesystem. Affected products juju <2.9.38 <3.0.3 Matching in nixpkgs pkgs.juju Open source modelling tool for operating software in the cloud nixos-unstable - nixpkgs-unstable 3.6.9 pkgs.jujutsu Git-compatible DVCS that is both simple and powerful nixos-unstable - nixpkgs-unstable 0.33.0 pkgs.jujuutils Utilities around FireWire devices connected to a Linux computer nixos-unstable - nixpkgs-unstable 0.2 Package maintainers: 5 @RealityAnomaly Alex Zero <alex@arctarus.co.uk> @emilazy Emily <nixpkgs@emily.moe> @thoughtpolice Austin Seipp <aseipp@pobox.com> @0x4A6F Joachim Ernst <mail-maintainer@0x4A6F.dev> @bbigras Bruno Bigras <bigras.bruno@gmail.com>
pkgs.juju Open source modelling tool for operating software in the cloud nixos-unstable - nixpkgs-unstable 3.6.9
pkgs.jujutsu Git-compatible DVCS that is both simple and powerful nixos-unstable - nixpkgs-unstable 0.33.0
pkgs.jujuutils Utilities around FireWire devices connected to a Linux computer nixos-unstable - nixpkgs-unstable 0.2
CVE-2022-28653 created 4 months ago Users can consume unlimited disk space in /var/crash Users can consume unlimited disk space in /var/crash Affected products apport <2.21.0 Matching in nixpkgs pkgs.haskellPackages.apportionment Round a set of numbers while maintaining its sum nixos-unstable - nixpkgs-unstable 0.0.0.4 Package maintainers: 1 @thielema Henning Thielemann <nix@henning-thielemann.de>
pkgs.haskellPackages.apportionment Round a set of numbers while maintaining its sum nixos-unstable - nixpkgs-unstable 0.0.0.4
CVE-2025-0750 created 4 months ago Cri-o: cri-o path traversal in log handling functions allows arbitrary unmounting A vulnerability was found in CRI-O. A path traversal issue in the log management functions (UnMountPodLogs and LinkContainerLogs) may allow an attacker with permissions to create and delete Pods to unmount arbitrary host paths, leading to node-level denial of service by unmounting critical system directories. Affected products cri-o <1.33.1 * rhcos Matching in nixpkgs pkgs.cri-o Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface nixos-unstable - nixpkgs-unstable 1.34.0 pkgs.cri-o-unwrapped Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface nixos-unstable - nixpkgs-unstable 1.34.0 Package maintainers: 2 @vdemeester Vincent Demeester <vincent@sbr.pm> @saschagrunert Sascha Grunert <mail@saschagrunert.de>
pkgs.cri-o Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface nixos-unstable - nixpkgs-unstable 1.34.0
pkgs.cri-o-unwrapped Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface nixos-unstable - nixpkgs-unstable 1.34.0
CVE-2025-23684 created 4 months ago WordPress Debug Tool plugin <= 2.2 - Broken Access Control vulnerability Missing Authorization vulnerability in Eugen Bobrowski Debug Tool allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Debug Tool: from n/a through 2.2. Affected products debug-tool =<2.2 Matching in nixpkgs pkgs.python312Packages.django-debug-toolbar Configurable set of panels that display debug information about the current request/response nixos-unstable - nixpkgs-unstable 6.0.0 pkgs.python313Packages.django-debug-toolbar Configurable set of panels that display debug information about the current request/response nixos-unstable - nixpkgs-unstable 6.0.0 pkgs.python312Packages.django-graphiql-debug-toolbar Django Debug Toolbar for GraphiQL IDE nixos-unstable - nixpkgs-unstable 0.2.0 pkgs.python313Packages.django-graphiql-debug-toolbar Django Debug Toolbar for GraphiQL IDE nixos-unstable - nixpkgs-unstable 0.2.0 Package maintainers: 2 @yuuyins Yuu Yin <yuunix@grrlz.net> @mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
pkgs.python312Packages.django-debug-toolbar Configurable set of panels that display debug information about the current request/response nixos-unstable - nixpkgs-unstable 6.0.0
pkgs.python313Packages.django-debug-toolbar Configurable set of panels that display debug information about the current request/response nixos-unstable - nixpkgs-unstable 6.0.0
pkgs.python312Packages.django-graphiql-debug-toolbar Django Debug Toolbar for GraphiQL IDE nixos-unstable - nixpkgs-unstable 0.2.0
pkgs.python313Packages.django-graphiql-debug-toolbar Django Debug Toolbar for GraphiQL IDE nixos-unstable - nixpkgs-unstable 0.2.0
CVE-2025-23592 created 4 months ago WordPress dForms plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound dForms allows Reflected XSS. This issue affects dForms: from n/a through 1.0. Affected products dforms =<1.0 Matching in nixpkgs pkgs.python312Packages.permissionedforms Django extension for creating forms that vary according to user permissions nixos-unstable - nixpkgs-unstable 0.1 pkgs.python313Packages.permissionedforms Django extension for creating forms that vary according to user permissions nixos-unstable - nixpkgs-unstable 0.1 Package maintainers: 1 @sephii Sylvain Fankhauser <sephi@fhtagn.top>
pkgs.python312Packages.permissionedforms Django extension for creating forms that vary according to user permissions nixos-unstable - nixpkgs-unstable 0.1
pkgs.python313Packages.permissionedforms Django extension for creating forms that vary according to user permissions nixos-unstable - nixpkgs-unstable 0.1
CVE-2024-11218 created 4 months ago Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host. Affected products rhcos * podman * buildah <1.35.5 <1.37.6 <1.38.1 * <1.33.12 container-tools:rhel8 * container-tools:rhel8/podman container-tools:rhel8/buildah Matching in nixpkgs pkgs.podman Program for managing pods, containers and container images nixos-unstable - nixpkgs-unstable 5.6.1 pkgs.buildah Tool which facilitates building OCI images nixos-unstable - nixpkgs-unstable 1.41.4 pkgs.podman-tui Podman Terminal UI nixos-unstable - nixpkgs-unstable 1.8.0 pkgs.podman-bootc Streamlining podman+bootc interactions nixos-unstable - nixpkgs-unstable 0.1.2 pkgs.podman-compose Implementation of docker-compose with podman backend nixos-unstable - nixpkgs-unstable 1.5.0 pkgs.podman-desktop Graphical tool for developing on containers and Kubernetes nixos-unstable - nixpkgs-unstable 1.21.0 pkgs.buildah-unwrapped Tool which facilitates building OCI images nixos-unstable - nixpkgs-unstable 1.41.4 pkgs.nomad-driver-podman Podman task driver for Nomad nixos-unstable - nixpkgs-unstable 0.6.3 pkgs.python312Packages.podman Python bindings for Podman's RESTful API nixos-unstable - nixpkgs-unstable 5.6.0 pkgs.python313Packages.podman Python bindings for Podman's RESTful API nixos-unstable - nixpkgs-unstable 5.6.0 Package maintainers: 8 @vdemeester Vincent Demeester <vincent@sbr.pm> @saschagrunert Sascha Grunert <mail@saschagrunert.de> @cpcloud Phillip Cloud @evan-goode Evan Goode <mail@evangoo.de> @sikmir Nikolay Korotkiy <sikmir@disroot.org> @booxter Ihar Hrachyshka <ihar.hrachyshka@gmail.com> @aaronjheng Aaron Jheng <wentworth@outlook.com> @fabaff Fabian Affolter <mail@fabian-affolter.ch>
pkgs.podman Program for managing pods, containers and container images nixos-unstable - nixpkgs-unstable 5.6.1
pkgs.podman-compose Implementation of docker-compose with podman backend nixos-unstable - nixpkgs-unstable 1.5.0
pkgs.podman-desktop Graphical tool for developing on containers and Kubernetes nixos-unstable - nixpkgs-unstable 1.21.0
pkgs.buildah-unwrapped Tool which facilitates building OCI images nixos-unstable - nixpkgs-unstable 1.41.4
pkgs.python312Packages.podman Python bindings for Podman's RESTful API nixos-unstable - nixpkgs-unstable 5.6.0
pkgs.python313Packages.podman Python bindings for Podman's RESTful API nixos-unstable - nixpkgs-unstable 5.6.0
CVE-2025-23892 created 4 months ago WordPress Progress Tracker plugin <= 0.9.3 - Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Furr and Simon Ward Progress Tracker allows DOM-Based XSS.This issue affects Progress Tracker: from n/a through 0.9.3. Affected products progress-tracker =<0.9.3 Matching in nixpkgs pkgs.progress-tracker Simple kanban-style task organiser nixos-unstable - nixpkgs-unstable 1.6 Package maintainers: 1 @Guanran928 Guanran Wang <guanran928@outlook.com>
CVE-2025-23884 created 4 months ago WordPress Annie plugin <= 2.1.1 - CSRF to Stored XSS vulnerability Cross-Site Request Forgery (CSRF) vulnerability in Chris Roberts Annie allows Cross Site Request Forgery.This issue affects Annie: from n/a through 2.1.1. Affected products annie =<2.1.1 Matching in nixpkgs pkgs.wannier90 Calculation of maximally localised Wannier functions nixos-unstable - nixpkgs-unstable 3.1.0 Package maintainers: 1 @sheepforce Phillip Seeber <phillip.seeber@googlemail.com>
pkgs.wannier90 Calculation of maximally localised Wannier functions nixos-unstable - nixpkgs-unstable 3.1.0
CVE-2025-23919 created 4 months ago WordPress Slides & Presentations Plugin <= 0.0.39 - Content Injection vulnerability Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Ella van Durpe Slides & Presentations allows Code Injection.This issue affects Slides & Presentations: from n/a through 0.0.39. Affected products slide =<0.0.39 Matching in nixpkgs pkgs.slides Terminal based presentation tool nixos-unstable - nixpkgs-unstable 0.9.0 pkgs.mdslides nixos-unstable - nixpkgs-unstable 0-unstable-2022-12-15 pkgs.openslide C library that provides a simple interface to read whole-slide images nixos-unstable - nixpkgs-unstable 4.0.0 pkgs.manim-slides Tool for live presentations using manim nixos-unstable - nixpkgs-unstable 5.5.2 pkgs.dvd-slideshow Suite of command line programs that creates a slideshow-style video from groups of pictures nixos-unstable - nixpkgs-unstable 0.8.4-2 pkgs.gnomeExtensions.backslide Automatic background-image (wallpaper) slideshow for Gnome Shell nixos-unstable - nixpkgs-unstable 33 pkgs.python312Packages.openslide Python bindings to the OpenSlide library for reading whole-slide microscopy images nixos-unstable - nixpkgs-unstable 1.4.2 pkgs.python313Packages.openslide Python bindings to the OpenSlide library for reading whole-slide microscopy images nixos-unstable - nixpkgs-unstable 1.4.2 pkgs.haskellPackages.gogol-slides Google Slides SDK nixos-unstable - nixpkgs-unstable 1.0.0 pkgs.python312Packages.goslide-api Python API to utilise the Slide Open Cloud and Local API nixos-unstable - nixpkgs-unstable 0.7.4 pkgs.python313Packages.goslide-api Python API to utilise the Slide Open Cloud and Local API nixos-unstable - nixpkgs-unstable 0.7.4 pkgs.typstPackages.gradslide_0_1_0 Simple component to show a value between 0 and 1 on a nice gradient slider nixos-unstable - nixpkgs-unstable 0.1.0 pkgs.typstPackages.typslides_1_1_1 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.1.1 pkgs.typstPackages.typslides_1_2_0 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.0 pkgs.typstPackages.typslides_1_2_1 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.1 pkgs.typstPackages.typslides_1_2_3 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.3 pkgs.typstPackages.typslides_1_2_4 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.4 pkgs.typstPackages.typslides_1_2_5 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.5 pkgs.typstPackages.typslides_1_2_6 Minimalistic Typst slides nixos-unstable - nixpkgs-unstable 1.2.6 pkgs.python312Packages.manim-slides Tool for live presentations using manim nixos-unstable - nixpkgs-unstable 5.5.2 pkgs.python313Packages.manim-slides Tool for live presentations using manim nixos-unstable - nixpkgs-unstable 5.5.2 pkgs.vscode-extensions.antfu.slidev nixos-unstable - nixpkgs-unstable 51.4.0 pkgs.python312Packages.textual-slider Textual widget for a simple slider nixos-unstable - nixpkgs-unstable 0.2.0 pkgs.python313Packages.textual-slider Textual widget for a simple slider nixos-unstable - nixpkgs-unstable 0.2.0 pkgs.typstPackages.parcio-slides_0_1_0 A simple polylux slide templated based on the ParCIO working group at OvGU Magdeburg nixos-unstable - nixpkgs-unstable 0.1.0 pkgs.typstPackages.parcio-slides_0_1_1 A simple polylux slide templated based on the ParCIO working group at OvGU Magdeburg nixos-unstable - nixpkgs-unstable 0.1.1 pkgs.gnomeExtensions.night-light-slider Add a slider for Night Light temperature to the Quick Settings menu. nixos-unstable - nixpkgs-unstable 1 pkgs.gnomeExtensions.wallpaper-slideshow Wallpaper slideshow extension. Optionally downloads BING wallpaper of the day. nixos-unstable - nixpkgs-unstable 13 pkgs.typstPackages.silky-slides-insa_0_1_0 A template made for presentations of INSA, a French engineering school nixos-unstable - nixpkgs-unstable 0.1.0 pkgs.typstPackages.silky-slides-insa_0_1_1 A template made for presentations of INSA, a French engineering school nixos-unstable - nixpkgs-unstable 0.1.1 pkgs.gnomeExtensions.keyboard-backlight-slider Allow setting the keyboard backlight brightness with a slider in the main menu nixos-unstable - nixpkgs-unstable 6 pkgs.gnomeExtensions.night-light-slider-updated Kiyui's Night Light Slider updated for GNOME 45. Provides a slider in the quick settings menu to control the night light temperature. Some nice options can be set in the extension preferences menu. Original implementation: https://codeberg.org/kiyui/gnome-shell-night-light-slider-extension/ nixos-unstable - nixpkgs-unstable 13 pkgs.home-assistant-component-tests.slide_local Open source home automation that puts local control and privacy first nixos-unstable - nixpkgs-unstable 2025.9.3 pkgs.typstPackages.tud-corporate-design-slides_0_1_0 Presentation template for TU Dresden (Technische Universität Dresden nixos-unstable - nixpkgs-unstable 0.1.0 pkgs.typstPackages.upb-corporate-design-slides_0_1_0 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.0 pkgs.typstPackages.upb-corporate-design-slides_0_1_1 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.1 pkgs.typstPackages.upb-corporate-design-slides_0_1_2 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.2 pkgs.typstPackages.upb-corporate-design-slides_0_1_3 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.3 pkgs.vscode-extensions.ms-toolsai.vscode-jupyter-slideshow nixos-unstable - nixpkgs-unstable 0.1.6 Package maintainers: 13 @robbinch Robbin C. <robbinch33@gmail.com> @honnip Jung seungwoo <me@honnip.page> @fabaff Fabian Affolter <mail@fabian-affolter.ch> @dotlambda Robert Schütz <rschuetz17@gmail.com> @mweinelt Martin Weinelt <hexa@darmstadt.ccc.de> @bpeetz Benedikt Peetz <benedikt.peetz@b-peetz.de> @qjoly Quentin JOLY <github@une-pause-cafe.fr> @lromor Leonardo Romor <leonardo.romor@gmail.com> @bcdarwin Ben Darwin <bcdarwin@gmail.com> @lukegb Luke Granger-Brown <nix@lukegb.com> @maaslalani Maas Lalani <maaslalani0@gmail.com> @penguwin Nicolas Martin <penguwin@penguwin.eu> @cherrypiejam Gongqi Huang
pkgs.openslide C library that provides a simple interface to read whole-slide images nixos-unstable - nixpkgs-unstable 4.0.0
pkgs.dvd-slideshow Suite of command line programs that creates a slideshow-style video from groups of pictures nixos-unstable - nixpkgs-unstable 0.8.4-2
pkgs.gnomeExtensions.backslide Automatic background-image (wallpaper) slideshow for Gnome Shell nixos-unstable - nixpkgs-unstable 33
pkgs.python312Packages.openslide Python bindings to the OpenSlide library for reading whole-slide microscopy images nixos-unstable - nixpkgs-unstable 1.4.2
pkgs.python313Packages.openslide Python bindings to the OpenSlide library for reading whole-slide microscopy images nixos-unstable - nixpkgs-unstable 1.4.2
pkgs.python312Packages.goslide-api Python API to utilise the Slide Open Cloud and Local API nixos-unstable - nixpkgs-unstable 0.7.4
pkgs.python313Packages.goslide-api Python API to utilise the Slide Open Cloud and Local API nixos-unstable - nixpkgs-unstable 0.7.4
pkgs.typstPackages.gradslide_0_1_0 Simple component to show a value between 0 and 1 on a nice gradient slider nixos-unstable - nixpkgs-unstable 0.1.0
pkgs.python312Packages.manim-slides Tool for live presentations using manim nixos-unstable - nixpkgs-unstable 5.5.2
pkgs.python313Packages.manim-slides Tool for live presentations using manim nixos-unstable - nixpkgs-unstable 5.5.2
pkgs.python312Packages.textual-slider Textual widget for a simple slider nixos-unstable - nixpkgs-unstable 0.2.0
pkgs.python313Packages.textual-slider Textual widget for a simple slider nixos-unstable - nixpkgs-unstable 0.2.0
pkgs.typstPackages.parcio-slides_0_1_0 A simple polylux slide templated based on the ParCIO working group at OvGU Magdeburg nixos-unstable - nixpkgs-unstable 0.1.0
pkgs.typstPackages.parcio-slides_0_1_1 A simple polylux slide templated based on the ParCIO working group at OvGU Magdeburg nixos-unstable - nixpkgs-unstable 0.1.1
pkgs.gnomeExtensions.night-light-slider Add a slider for Night Light temperature to the Quick Settings menu. nixos-unstable - nixpkgs-unstable 1
pkgs.gnomeExtensions.wallpaper-slideshow Wallpaper slideshow extension. Optionally downloads BING wallpaper of the day. nixos-unstable - nixpkgs-unstable 13
pkgs.typstPackages.silky-slides-insa_0_1_0 A template made for presentations of INSA, a French engineering school nixos-unstable - nixpkgs-unstable 0.1.0
pkgs.typstPackages.silky-slides-insa_0_1_1 A template made for presentations of INSA, a French engineering school nixos-unstable - nixpkgs-unstable 0.1.1
pkgs.gnomeExtensions.keyboard-backlight-slider Allow setting the keyboard backlight brightness with a slider in the main menu nixos-unstable - nixpkgs-unstable 6
pkgs.gnomeExtensions.night-light-slider-updated Kiyui's Night Light Slider updated for GNOME 45. Provides a slider in the quick settings menu to control the night light temperature. Some nice options can be set in the extension preferences menu. Original implementation: https://codeberg.org/kiyui/gnome-shell-night-light-slider-extension/ nixos-unstable - nixpkgs-unstable 13
pkgs.home-assistant-component-tests.slide_local Open source home automation that puts local control and privacy first nixos-unstable - nixpkgs-unstable 2025.9.3
pkgs.typstPackages.tud-corporate-design-slides_0_1_0 Presentation template for TU Dresden (Technische Universität Dresden nixos-unstable - nixpkgs-unstable 0.1.0
pkgs.typstPackages.upb-corporate-design-slides_0_1_0 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.0
pkgs.typstPackages.upb-corporate-design-slides_0_1_1 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.1
pkgs.typstPackages.upb-corporate-design-slides_0_1_2 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.2
pkgs.typstPackages.upb-corporate-design-slides_0_1_3 Presentation template for Paderborn University (UPB nixos-unstable - nixpkgs-unstable 0.1.3