Automatically generated suggestions

Create Draft to queue a suggestion for refinement.

Dismiss to remove a suggestion from the queue.

CVE-2025-31177

6.2 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 2 weeks ago

Gnuplot: gnuplot heap-buffer overflow on utf8_copy_one

gnuplot is affected by a heap buffer overflow at function utf8_copy_one.

gnuplot

<6.0

pkgs.gnuplot

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable ???
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.gnuplot_qt

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable ???
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.feedgnuplot

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixos-24.05-small 1.61
nixos-24.11 1.61
- nixpkgs-24.11-darwin 1.61
- nixos-24.11-small 1.61
nixos-unstable 1.61
- nixos-unstable-small 1.61
- nixpkgs-unstable 1.61

pkgs.gnuplot_aquaterm

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixos-24.05-small 6.0.0
nixos-24.11 6.0.1
- nixos-24.11-small 6.0.1
nixos-unstable ???
- nixos-unstable-small 6.0.1
- nixpkgs-unstable 6.0.1

pkgs.gnuplot.x86_64-linux

A portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.emacsPackages.gnuplot

nixos-24.05 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixpkgs-24.11-darwin 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable 20240914.1522
- nixos-unstable-small 20240914.1522

pkgs.gnuplot.aarch64-linux

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot.x86_64-darwin

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot.aarch64-darwin

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot_qt.x86_64-linux

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.haskellPackages.gnuplot

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixos-24.05-small 0.5.7
nixos-24.11 0.5.7
- nixpkgs-24.11-darwin 0.5.7
- nixos-24.11-small 0.5.7
nixos-unstable ???
- nixos-unstable-small 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.feedgnuplot.x86_64-linux

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixpkgs-24.05-darwin 1.61
nixos-unstable 1.61

pkgs.gnuplot_qt.aarch64-linux

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot_qt.x86_64-darwin

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.feedgnuplot.aarch64-linux

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixpkgs-24.05-darwin 1.61
nixos-unstable 1.61

pkgs.feedgnuplot.x86_64-darwin

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixpkgs-24.05-darwin 1.61
nixos-unstable 1.61

pkgs.gnuplot_qt.aarch64-darwin

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.emacsPackages.gnuplot-mode

nixos-24.05 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixpkgs-24.11-darwin 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable 20171013.1616
- nixos-unstable-small 20171013.1616

pkgs.feedgnuplot.aarch64-darwin

General purpose pipe-oriented plotting tool

nixos-24.05 1.61
- nixpkgs-24.05-darwin 1.61
nixos-unstable 1.61

pkgs.texlivePackages.gnuplottex

Embed Gnuplot commands in LaTeX documents

nixos-24.05 0.9.5
- nixpkgs-24.05-darwin 0.9.5

pkgs.gnuplot_aquaterm.x86_64-linux

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot_aquaterm.aarch64-linux

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot_aquaterm.x86_64-darwin

Portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.gnuplot_aquaterm.aarch64-darwin

A portable command-line driven graphing utility for many platforms

nixos-24.05 6.0.0
- nixpkgs-24.05-darwin 6.0.0
nixos-24.11 6.0.1
- nixpkgs-24.11-darwin 6.0.1
nixos-unstable 6.0.1

pkgs.texlivePackages.context-gnuplot

Inclusion of Gnuplot graphs in ConTeXt

nixos-24.05 47085
- nixpkgs-24.05-darwin 47085

pkgs.emacsPackages.gnuplot.x86_64-linux

nixos-24.05 20230323.1400
- nixpkgs-24.05-darwin 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable ???
- nixpkgs-unstable 20240914.1522

pkgs.emacsPackages.gnuplot.aarch64-linux

nixos-24.05 20230323.1400
- nixpkgs-24.05-darwin 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable ???
- nixpkgs-unstable 20240914.1522

pkgs.emacsPackages.gnuplot.x86_64-darwin

nixos-24.05 20230323.1400
- nixpkgs-24.05-darwin 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable ???
- nixpkgs-unstable 20240914.1522

pkgs.emacsPackages.gnuplot.aarch64-darwin

nixos-24.05 20230323.1400
- nixpkgs-24.05-darwin 20230323.1400
- nixos-24.05-small 20230323.1400
nixos-24.11 20240914.1522
- nixos-24.11-small 20240914.1522
nixos-unstable ???
- nixpkgs-unstable 20240914.1522

pkgs.haskellPackages.gnuplot.x86_64-linux

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixpkgs-24.05-darwin 0.5.7
- nixos-24.05-small 0.5.7
nixos-unstable 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.haskellPackages.gnuplot.aarch64-linux

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixpkgs-24.05-darwin 0.5.7
- nixos-24.05-small 0.5.7
nixos-unstable 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.haskellPackages.gnuplot.x86_64-darwin

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixpkgs-24.05-darwin 0.5.7
- nixos-24.05-small 0.5.7
nixos-unstable 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.haskellPackages.gnuplot.aarch64-darwin

2D and 3D plots using gnuplot

nixos-24.05 0.5.7
- nixpkgs-24.05-darwin 0.5.7
- nixos-24.05-small 0.5.7
nixos-unstable 0.5.7
- nixpkgs-unstable 0.5.7

pkgs.emacsPackages.gnuplot-mode.x86_64-linux

nixos-24.05 20171013.1616
- nixpkgs-24.05-darwin 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable ???
- nixpkgs-unstable 20171013.1616

pkgs.texlivePackages.gnuplottex.x86_64-linux

Embed Gnuplot commands in LaTeX documents

nixos-24.05 0.9.5
- nixos-24.05-small 0.9.5

pkgs.emacsPackages.gnuplot-mode.aarch64-linux

nixos-24.05 20171013.1616
- nixpkgs-24.05-darwin 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable ???
- nixpkgs-unstable 20171013.1616

pkgs.emacsPackages.gnuplot-mode.x86_64-darwin

nixos-24.05 20171013.1616
- nixpkgs-24.05-darwin 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable ???
- nixpkgs-unstable 20171013.1616

pkgs.emacsPackages.gnuplot-mode.aarch64-darwin

nixos-24.05 20171013.1616
- nixpkgs-24.05-darwin 20171013.1616
- nixos-24.05-small 20171013.1616
nixos-24.11 20171013.1616
- nixos-24.11-small 20171013.1616
nixos-unstable ???
- nixpkgs-unstable 20171013.1616

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixos-24.05-small 0.4.2
nixos-24.11 0.4.2
- nixpkgs-24.11-darwin 0.4.2
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixos-unstable-small 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot

nixos-24.05 ???
- nixpkgs-24.05-darwin
nixos-24.11 ???
- nixpkgs-24.11-darwin
nixos-unstable ???
- nixos-unstable-small
- nixpkgs-unstable

pkgs.texlivePackages.context-gnuplot.x86_64-linux

Inclusion of Gnuplot graphs in ConTeXt

nixos-24.05 47085
- nixos-24.05-small 47085

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe.x86_64-linux

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixpkgs-24.05-darwin 0.4.2
nixos-24.11 ???
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot.x86_64-linux

nixos-24.05 ???
- nixos-24.05-small
nixos-24.11 ???
- nixos-24.11-small
nixos-unstable ???

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe.aarch64-linux

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixpkgs-24.05-darwin 0.4.2
nixos-24.11 ???
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe.x86_64-darwin

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixpkgs-24.05-darwin 0.4.2
nixos-24.11 ???
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot.aarch64-linux

nixos-24.05 ???
- nixos-24.05-small
nixos-24.11 ???
- nixos-24.11-small
nixos-unstable ???

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot.x86_64-darwin

nixos-24.05 ???
- nixos-24.05-small
nixos-24.11 ???
- nixos-24.11-small
nixos-unstable ???

pkgs.chickenPackages_5.chickenEggs.gnuplot-pipe.aarch64-darwin

A simple interface to Gnuplot

nixos-24.05 0.4.2
- nixpkgs-24.05-darwin 0.4.2
nixos-24.11 ???
- nixos-24.11-small 0.4.2
nixos-unstable 0.4.2
- nixpkgs-unstable 0.4.2

pkgs.vimPlugins.nvim-treesitter-parsers.gnuplot.aarch64-darwin

nixos-24.05 ???
- nixos-24.05-small
nixos-24.11 ???
- nixos-24.11-small
nixos-unstable ???

CVE-2022-47599

5.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 2 weeks, 1 day ago

WordPress File Manager Plugin <= 5.2.7 is vulnerable to PHP Object Injection

Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a through 5.2.7.

file-manager

=<5.2.7

pkgs.expidus.file-manager.x86_64-linux

ExpidusOS File Manager

nixos-24.05 0.2.1
- nixpkgs-24.05-darwin 0.2.1
- nixos-24.05-small 0.2.1
nixos-24.11 0.2.1
- nixpkgs-24.11-darwin 0.2.1
- nixos-24.11-small 0.2.1
nixos-unstable 0.2.1
- nixos-unstable-small 0.2.1
- nixpkgs-unstable 0.2.1

pkgs.expidus.file-manager.aarch64-linux

ExpidusOS File Manager

nixos-24.05 0.2.1
- nixpkgs-24.05-darwin 0.2.1
- nixos-24.05-small 0.2.1
nixos-24.11 0.2.1
- nixpkgs-24.11-darwin 0.2.1
- nixos-24.11-small 0.2.1
nixos-unstable 0.2.1
- nixos-unstable-small 0.2.1
- nixpkgs-unstable 0.2.1

pkgs.deepin.dde-file-manager.x86_64-linux

File manager for deepin desktop environment

nixos-24.05 6.0.40
- nixpkgs-24.05-darwin 6.0.40
- nixos-24.05-small 6.0.40
nixos-24.11 6.0.57
- nixpkgs-24.11-darwin 6.0.57
- nixos-24.11-small 6.0.57
nixos-unstable 6.0.57
- nixos-unstable-small 6.0.57
- nixpkgs-unstable 6.0.57

pkgs.deepin.dde-file-manager.aarch64-linux

File manager for deepin desktop environment

nixos-24.05 6.0.40
- nixpkgs-24.05-darwin 6.0.40
- nixos-24.05-small 6.0.40
nixos-24.11 6.0.57
- nixpkgs-24.11-darwin 6.0.57
- nixos-24.11-small 6.0.57
nixos-unstable 6.0.57
- nixos-unstable-small 6.0.57
- nixpkgs-unstable 6.0.57

pkgs.python311Packages.show-in-file-manager.x86_64-linux

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python312Packages.show-in-file-manager.x86_64-linux

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python311Packages.show-in-file-manager.aarch64-linux

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python311Packages.show-in-file-manager.x86_64-darwin

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python312Packages.show-in-file-manager.aarch64-linux

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python312Packages.show-in-file-manager.x86_64-darwin

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python311Packages.show-in-file-manager.aarch64-darwin

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

pkgs.python312Packages.show-in-file-manager.aarch64-darwin

Open the system file manager and select files in it

nixos-24.05 1.1.5
- nixpkgs-24.05-darwin 1.1.5
- nixos-24.05-small 1.1.5
nixos-24.11 1.1.5
- nixpkgs-24.11-darwin 1.1.5
- nixos-24.11-small 1.1.5
nixos-unstable 1.1.5
- nixos-unstable-small 1.1.5
- nixpkgs-unstable 1.1.5

CVE-2024-12225

9.1 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): NONE

created 2 weeks, 1 day ago

Io.quarkus:quarkus-security-webauthn: quarkus webauthn unexpected authentication bypass

A vulnerability was found in Quarkus in the quarkus-security-webauthn module. The Quarkus WebAuthn module publishes default REST endpoints for registering and logging users in while allowing developers to provide custom REST endpoints. When developers provide custom REST endpoints, the default endpoints remain accessible, potentially allowing attackers to obtain a login cookie that has no corresponding user in the Quarkus application or, depending on how the application is written, could correspond to an existing user that has no relation with the current attacker, allowing anyone to log in as an existing user by just knowing that user's user name.

quarkus

<3.15.3.1

io.quarkus:quarkus-security-webauthn

pkgs.quarkus.x86_64-linux

Quarkus is a Kubernetes-native Java framework tailored for GraalVM and HotSpot, crafted from best-of-breed Java libraries and standards

nixos-24.05 3.10.1
- nixpkgs-24.05-darwin 3.10.1
- nixos-24.05-small 3.10.1
nixos-24.11 3.15.1
- nixpkgs-24.11-darwin 3.15.1
- nixos-24.11-small 3.15.1
nixos-unstable 3.17.3
- nixos-unstable-small 3.17.3
- nixpkgs-unstable 3.17.3

pkgs.quarkus.aarch64-linux

Quarkus is a Kubernetes-native Java framework tailored for GraalVM and HotSpot, crafted from best-of-breed Java libraries and standards

nixos-24.05 3.10.1
- nixpkgs-24.05-darwin 3.10.1
- nixos-24.05-small 3.10.1
nixos-24.11 3.15.1
- nixpkgs-24.11-darwin 3.15.1
- nixos-24.11-small 3.15.1
nixos-unstable 3.17.3
- nixos-unstable-small 3.17.3
- nixpkgs-unstable 3.17.3

pkgs.quarkus.x86_64-darwin

Quarkus is a Kubernetes-native Java framework tailored for GraalVM and HotSpot, crafted from best-of-breed Java libraries and standards

nixos-24.05 3.10.1
- nixpkgs-24.05-darwin 3.10.1
- nixos-24.05-small 3.10.1
nixos-24.11 3.15.1
- nixpkgs-24.11-darwin 3.15.1
- nixos-24.11-small 3.15.1
nixos-unstable 3.17.3
- nixos-unstable-small 3.17.3
- nixpkgs-unstable 3.17.3

pkgs.quarkus.aarch64-darwin

Quarkus is a Kubernetes-native Java framework tailored for GraalVM and HotSpot, crafted from best-of-breed Java libraries and standards

nixos-24.05 3.10.1
- nixpkgs-24.05-darwin 3.10.1
- nixos-24.05-small 3.10.1
nixos-24.11 3.15.1
- nixpkgs-24.11-darwin 3.15.1
- nixos-24.11-small 3.15.1
nixos-unstable 3.17.3
- nixos-unstable-small 3.17.3
- nixpkgs-unstable 3.17.3

CVE-2025-4373

4.8 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): LOW
Availability impact (A): LOW

created 2 weeks, 1 day ago

Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar

A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

bootc

glib2

librsvg2

mingw-glib2

pkgs.bootc.x86_64-linux

Boot and upgrade via container images

nixos-24.11 1.1.2
- nixpkgs-24.11-darwin 1.1.2
- nixos-24.11-small 1.1.2
nixos-unstable 1.1.2
- nixos-unstable-small 1.1.2
- nixpkgs-unstable 1.1.2

pkgs.bootc.aarch64-linux

Boot and upgrade via container images

nixos-24.11 1.1.2
- nixpkgs-24.11-darwin 1.1.2
- nixos-24.11-small 1.1.2
nixos-unstable 1.1.2
- nixos-unstable-small 1.1.2
- nixpkgs-unstable 1.1.2

pkgs.mlxbf-bootctl.aarch64-linux

Control BlueField boot partitions

nixos-24.05 1.1-6
- nixpkgs-24.05-darwin 1.1-6
- nixos-24.05-small 1.1-6
nixos-24.11 1.1-6
- nixpkgs-24.11-darwin 1.1-6
- nixos-24.11-small 1.1-6
nixos-unstable 1.1-6
- nixos-unstable-small 1.1-6
- nixpkgs-unstable 1.1-6

pkgs.rubyPackages.glib2.x86_64-linux

nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1

pkgs.rubyPackages.glib2.aarch64-linux

nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1

pkgs.rubyPackages.glib2.x86_64-darwin

nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1

pkgs.rubyPackages.glib2.aarch64-darwin

nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1

pkgs.rubyPackages_3_1.glib2.x86_64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_2.glib2.x86_64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_3.glib2.x86_64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_4.glib2.x86_64-linux

nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_1.glib2.aarch64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_1.glib2.x86_64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_2.glib2.aarch64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_2.glib2.x86_64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_3.glib2.aarch64-linux

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_3.glib2.x86_64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_4.glib2.aarch64-linux

nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_4.glib2.x86_64-darwin

nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_1.glib2.aarch64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_2.glib2.aarch64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_3.glib2.aarch64-darwin

nixos-24.05 glib2-4.2.1
- nixpkgs-24.05-darwin glib2-4.2.1
- nixos-24.05-small glib2-4.2.1
nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

pkgs.rubyPackages_3_4.glib2.aarch64-darwin

nixos-24.11 glib2-4.2.1
- nixpkgs-24.11-darwin glib2-4.2.1
- nixos-24.11-small glib2-4.2.1
nixos-unstable glib2-4.2.1
- nixos-unstable-small glib2-4.2.1
- nixpkgs-unstable glib2-4.2.1

CVE-2023-40745

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 2 weeks, 6 days ago

Libtiff: integer overflow in tiffcp.c

LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.

libtiff

<4.6.0

mingw-libtiff

compact-libtiff

compat-libtiff3

pkgs.libtiff

Library and utilities for working with the TIFF image file format

nixos-24.05 4.6.0
- nixpkgs-24.05-darwin 4.6.0
- nixos-24.05-small 4.6.0
nixos-24.11 4.7.0
- nixpkgs-24.11-darwin 4.7.0
- nixos-24.11-small 4.7.0
nixos-unstable 4.7.0
- nixos-unstable-small 4.7.0
- nixpkgs-unstable 4.7.0

pkgs.libtiff_t

Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version)

nixos-24.05 4.6.0t
- nixpkgs-24.05-darwin 4.6.0t
- nixos-24.05-small 4.6.0t

CVE-2023-3576

5.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 2 weeks, 6 days ago

Libtiff: memory leak in tiffcrop.c

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.

libtiff

mingw-libtiff

compat-libtiff3

pkgs.libtiff

Library and utilities for working with the TIFF image file format

nixos-24.05 4.6.0
- nixpkgs-24.05-darwin 4.6.0
- nixos-24.05-small 4.6.0
nixos-24.11 4.7.0
- nixpkgs-24.11-darwin 4.7.0
- nixos-24.11-small 4.7.0
nixos-unstable 4.7.0
- nixos-unstable-small 4.7.0
- nixpkgs-unstable 4.7.0

pkgs.libtiff_t

Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version)

nixos-24.05 4.6.0t
- nixpkgs-24.05-darwin 4.6.0t
- nixos-24.05-small 4.6.0t

CVE-2023-41175

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 2 weeks, 6 days ago

Libtiff: potential integer overflow in raw2tiff.c

A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.

libtiff

<4.6.0

mingw-libtiff

compact-libtiff

compat-libtiff3

pkgs.libtiff

Library and utilities for working with the TIFF image file format

nixos-24.05 4.6.0
- nixpkgs-24.05-darwin 4.6.0
- nixos-24.05-small 4.6.0
nixos-24.11 4.7.0
- nixpkgs-24.11-darwin 4.7.0
- nixos-24.11-small 4.7.0
nixos-unstable 4.7.0
- nixos-unstable-small 4.7.0
- nixpkgs-unstable 4.7.0

pkgs.libtiff_t

Library and utilities for working with the TIFF image file format (fork containing tools dropped in original libtiff version)

nixos-24.05 4.6.0t
- nixpkgs-24.05-darwin 4.6.0t
- nixos-24.05-small 4.6.0t

CVE-2023-4813

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 3 weeks ago

Glibc: potential use-after-free in gaih_inet()

A flaw was found in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with SUCCESS=continue or SUCCESS=merge.

glibc

compat-glibc

pkgs.glibc

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.iconv

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.getent

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.locale

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.getconf

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.libiconv

nixos-24.05 2.39
- nixpkgs-24.05-darwin 2.39
- nixos-24.05-small 2.39
nixos-24.11 2.40
- nixpkgs-24.11-darwin 2.40
- nixos-24.11-small 2.40
nixos-unstable 2.40
- nixos-unstable-small 2.40
- nixpkgs-unstable 2.40

pkgs.glibcInfo

GNU Info manual of the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibc_multi

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibcLocales

Locale information for the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibc_memusage

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibcLocalesUtf8

Locale information for the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.getent

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.locale

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.getconf

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

CVE-2023-4806

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 3 weeks ago

Glibc: potential use-after-free in getaddrinfo()

A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

glibc

compat-glibc

pkgs.glibc

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.iconv

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.getent

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.locale

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.getconf

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.libiconv

nixos-24.05 2.39
- nixpkgs-24.05-darwin 2.39
- nixos-24.05-small 2.39
nixos-24.11 2.40
- nixpkgs-24.11-darwin 2.40
- nixos-24.11-small 2.40
nixos-unstable 2.40
- nixos-unstable-small 2.40
- nixpkgs-unstable 2.40

pkgs.glibcInfo

GNU Info manual of the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibc_multi

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibcLocales

Locale information for the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibc_memusage

GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.glibcLocalesUtf8

Locale information for the GNU C Library

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.getent

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.locale

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

pkgs.unixtools.getconf

nixos-24.05 2.39-52
- nixpkgs-24.05-darwin 2.39-52
- nixos-24.05-small 2.39-52
nixos-24.11 2.40-36
- nixpkgs-24.11-darwin 2.40-36
- nixos-24.11-small 2.40-36
nixos-unstable 2.40-36
- nixos-unstable-small 2.40-36
- nixpkgs-unstable 2.40-36

CVE-2023-40204

9.1 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 3 weeks, 1 day ago

WordPress Folders Plugin <= 2.9.2 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in Premio Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager.This issue affects Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager: from n/a through 2.9.2.

folders

=<2.9.2

pkgs.sweet-folders

Folders icons for Sweet GTK theme

nixos-24.05 2023-03-18
- nixpkgs-24.05-darwin 2023-03-18
- nixos-24.05-small 2023-03-18
nixos-24.11 2023-03-18
- nixpkgs-24.11-darwin 2023-03-18
- nixos-24.11-small 2023-03-18
nixos-unstable 2023-03-18
- nixos-unstable-small 2023-03-18
- nixpkgs-unstable 2023-03-18

pkgs.papirus-folders

A tool to change papirus icon theme color

nixos-24.05 1.13.1
- nixpkgs-24.05-darwin 1.13.1
- nixos-24.05-small 1.13.1
nixos-24.11 1.13.1
- nixpkgs-24.11-darwin 1.13.1
- nixos-24.11-small 1.13.1
nixos-unstable 1.13.1
- nixos-unstable-small 1.13.1
- nixpkgs-unstable 1.13.1

pkgs.platform-folders

A C++ library to look for standard platform directories so that you do not need to write platform-specific code

nixos-24.05 4.2.0
- nixpkgs-24.05-darwin 4.2.0
- nixos-24.05-small 4.2.0
nixos-24.11 4.2.0
- nixpkgs-24.11-darwin 4.2.0
- nixos-24.11-small 4.2.0
nixos-unstable 4.2.0
- nixos-unstable-small 4.2.0
- nixpkgs-unstable 4.2.0

pkgs.catppuccin-papirus-folders

Soothing pastel theme for Papirus Icon Theme folders

nixos-24.05 2023-08-02
- nixpkgs-24.05-darwin 2023-08-02
- nixos-24.05-small 2023-08-02
nixos-24.11 2023-08-02
- nixpkgs-24.11-darwin 2023-08-02
- nixos-24.11-small 2023-08-02
nixos-unstable 2023-08-02
- nixos-unstable-small 2023-08-02
- nixpkgs-unstable 2023-08-02

pkgs.vscode-extensions.moshfeu.compare-folders

Extension allows you to compare folders, show the diffs in a list and present diff in a splitted view side by side

nixos-24.05 0.24.2
- nixpkgs-24.05-darwin 0.24.2
- nixos-24.05-small 0.24.2
nixos-24.11 0.24.3
- nixpkgs-24.11-darwin 0.24.3
- nixos-24.11-small 0.24.3
nixos-unstable 0.24.3
- nixos-unstable-small 0.24.3
- nixpkgs-unstable 0.24.3