Dismissed suggestions Untriaged suggestions Draft issues Published issues Automatically generated suggestions Create Draft to queue a suggestion for refinement. Dismiss to remove a suggestion from the queue. CVE-2023-3758 7.1 HIGH CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): HIGH Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 6 months, 3 weeks ago Sssd: race condition during authorization leads to gpo policies functioning inconsistently A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately. sssd <2.9.5 * pkgs.sssd System Security Services Daemon nixos-unstable 2.9.5 nixos-unstable-small 2.9.5 nixpkgs-unstable 2.9.5 Package maintainers: 1 @illustris Harikrishnan R <me@illustris.tech> CVE-2022-2084 5.5 MEDIUM CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago sensitive data exposure in cloud-init logs Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords. cloud-init <23.0 pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2 Package maintainers: 2 @illustris Harikrishnan R <me@illustris.tech> @jfroche Jean-François Roche <jfroche@pyxel.be> CVE-2023-30797 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago Insecure Random Generation in Netflix Lemur Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur. lemur <<1.3.2 pkgs.lemurs Customizable TUI display/login manager written in Rust nixos-unstable 0.3.2 nixos-unstable-small 0.3.2 nixpkgs-unstable 0.3.2 Package maintainers: 1 @JeremiahSecrist Jeremiah Secrist <jeremiah@secrist.xyz> CVE-2021-3429 5.5 MEDIUM CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago sensitive data exposure in cloud-init logs When instructing cloud-init to set a random password for a new user account, versions before 21.2 would write that password to the world-readable log file /var/log/cloud-init-output.log. This could allow a local user to log in as another user. cloud-init <21.2 pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2 Package maintainers: 2 @illustris Harikrishnan R <me@illustris.tech> @jfroche Jean-François Roche <jfroche@pyxel.be> CVE-2023-30798 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 6 months, 3 weeks ago MultipartParser DOS with too many fields or files in Starlette Framework There MultipartParser usage in Encode's Starlette python framework before versions 0.25.0 allows an unauthenticated and remote attacker to specify any number of form fields or files which can cause excessive memory usage resulting in denial of service of the HTTP service. starlette <0.25.0 pkgs.python311Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0 pkgs.python312Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0 pkgs.python311Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3 pkgs.python311Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5 pkgs.python312Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3 pkgs.python312Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5 pkgs.python311Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python312Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python311Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6 pkgs.python312Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6 pkgs.python312Packages.starlette.x86_64-linux Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.aarch64-linux Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.x86_64-darwin Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.aarch64-darwin Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.sse-starlette.x86_64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-wtf.x86_64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.sse-starlette.aarch64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.sse-starlette.x86_64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-wtf.aarch64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.starlette-wtf.x86_64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.sse-starlette.aarch64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-admin.x86_64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-wtf.aarch64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.starlette-admin.aarch64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-admin.x86_64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-admin.aarch64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-context.x86_64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.aarch64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.x86_64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.aarch64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 Package maintainers: 7 @wd15 Daniel Wheeler <daniel.wheeler2@gmail.com> @pbsds Peder Bergebakken Sundt <pbsds@hotmail.com> @fabaff Fabian Affolter <mail@fabian-affolter.ch> @n0emis Ember Keske <nixpkgs@n0emis.network> @yu-re-ka Yureka <yuka@yuka.dev> @johannwagner Johann Wagner <nix@wagner.digital> @vidister Fiona Weber <v@vidister.de> CVE-2025-22696 5.4 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Document Block – Upload & Embed Docs, PDF, PPT, XLS or Any Documents plugin <= 1.1.0 - Broken Access Control vulnerability Missing Authorization vulnerability in EmbedPress Document Block – Upload & Embed Docs. This issue affects Document Block – Upload & Embed Docs: from n/a through 1.1.0. document =<1.1.0 pkgs.phpdocumentor PHP documentation generator nixos-unstable 3.5.3 nixos-unstable-small 3.5.3 nixpkgs-unstable 3.5.3 pkgs.documentation-highlighter Highlight.js sources for the Nix Ecosystem's documentation nixos-unstable ??? nixos-unstable-small nixpkgs-unstable pkgs.onlyoffice-documentserver ONLYOFFICE Document Server is an online office suite comprising viewers and editors nixos-unstable 8.1.3 nixos-unstable-small 8.1.3 nixpkgs-unstable 8.1.3 pkgs.phpdocumentor.x86_64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.phpdocumentor.aarch64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.phpdocumentor.x86_64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.libsForQt5.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0 pkgs.phpdocumentor.aarch64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.kdePackages.libkeduvocdocument Library to parse, convert, and manipulate KVTML files nixos-unstable 24.08.3 nixos-unstable-small 24.08.3 nixpkgs-unstable 24.08.3 pkgs.python311Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5 pkgs.python312Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5 pkgs.cudaPackages.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 12.4.99 nixos-unstable-small 12.4.99 nixpkgs-unstable 12.4.99 pkgs.sbclPackages.documentation-utils nixos-unstable 20231021-git nixos-unstable-small 20231021-git nixpkgs-unstable 20231021-git pkgs.haskellPackages.symantic-document Symantics combinators for generating documents nixos-unstable 1.5.3.20200320 nixos-unstable-small 1.5.3.20200320 nixpkgs-unstable 1.5.3.20200320 pkgs.plasma5Packages.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0 pkgs.cudaPackages_11.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 11.8.86 nixos-unstable-small 11.8.86 nixpkgs-unstable 11.8.86 pkgs.python311Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0 pkgs.python312Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0 pkgs.tests.haskell.documentationTarball nixos-unstable ??? nixos-unstable-small nixpkgs-unstable pkgs.haskellPackages.pdf-toolbox-document A collection of tools for processing PDF files nixos-unstable 0.1.4 nixos-unstable-small 0.1.4 nixpkgs-unstable 0.1.4 pkgs.python311Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11 pkgs.python312Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11 pkgs.vimPlugins.cmp-nvim-lsp-document-symbol nixos-unstable 2024-05-29 nixos-unstable-small 2024-05-29 nixpkgs-unstable 2024-05-29 pkgs.python311Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0 pkgs.python312Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0 pkgs.libsForQt5.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0 pkgs.libsForQt5.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0 pkgs.python312Packages.pydocumentdb.x86_64-linux Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.aarch64-linux Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.x86_64-darwin Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.aarch64-darwin Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.sbclPackages.documentation-utils.x86_64-linux nixos-unstable 20231021-git pkgs.plasma5Packages.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0 pkgs.sbclPackages.documentation-utils.aarch64-linux nixos-unstable 20231021-git pkgs.sbclPackages.documentation-utils.x86_64-darwin nixos-unstable 20231021-git pkgs.plasma5Packages.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0 pkgs.python312Packages.netbox-documents.x86_64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.sbclPackages.documentation-utils.aarch64-darwin nixos-unstable 20231021-git pkgs.python312Packages.netbox-documents.aarch64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.netbox-documents.x86_64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.netbox-documents.aarch64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.tableaudocumentapi.x86_64-linux Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.aarch64-linux Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.x86_64-darwin Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.aarch64-darwin Python module for working with Tableau files nixos-unstable 0.11 Package maintainers: 20 @natsukium Tomoya Otabi <nixpkgs@natsukium.com> @grahamc Graham Christensen <graham@grahamc.com> @felbinger Nico Felbinger <nico@felbinger.eu> @7c6f434c Michael Raskin <7c6f434c@mail.ru> @nagy Daniel Nagy <danielnagy@posteo.de> @lukego Luke Gorrie <luke@snabb.co> @Uthar Kasper Gałkowski <galkowskikasper@gmail.com> @hraban Hraban Luyat <hraban@0brg.net> @dotlambda Robert Schütz <rschuetz17@gmail.com> @K900 Ilya K. <me@0upti.me> @ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru> @SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com> @LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev> @NickCao Nick Cao <nickcao@nichi.co> @ttuegel Thomas Tuegel <ttuegel@mailbox.org> @mjm Matt Moriarity <matt@mattmoriarity.com> @drupol Pol Dellaiera <pol.dellaiera@protonmail.com> @samuela Samuel Ainsworth <skainsworth@gmail.com> @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @SomeoneSerge Else Someone <else+nixpkgs@someonex.net> CVE-2025-24684 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Media Downloader Plugin <= 0.4.7.5 - Reflected Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ederson Peka Media Downloader allows Reflected XSS. This issue affects Media Downloader: from n/a through 0.4.7.5. media-downloader =<0.4.7.5 pkgs.media-downloader Qt/C++ GUI front end for yt-dlp and others nixos-unstable 5.2.0 nixos-unstable-small 5.2.0 nixpkgs-unstable 5.2.0 Package maintainers: 2 @zendo zendo <linzway@qq.com> @Aleksanaa Aleksana QwQ <me@aleksana.moe> CVE-2025-22703 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Forge – Front-End Page Builder plugin <= 1.4.6 - CSRF to Stored Cross Site Scripting (XSS) vulnerability Cross-Site Request Forgery (CSRF) vulnerability in manuelvicedo Forge – Front-End Page Builder allows Stored XSS. This issue affects Forge – Front-End Page Builder: from n/a through 1.4.6. forge =<1.4.6 pkgs.forge OpenGL interop library that can be used with ArrayFire or any other application using CUDA or OpenCL compute backend nixos-unstable 1.0.8 nixos-unstable-small 1.0.8 nixpkgs-unstable 1.0.8 pkgs.forgejo Self-hosted lightweight software forge nixos-unstable 9.0.2 nixos-unstable-small 9.0.2 nixpkgs-unstable 9.0.2 pkgs.forge-mtg Magic: the Gathering card game with rules enforcement nixos-unstable 1.6.65 nixos-unstable-small 1.6.65 nixpkgs-unstable 1.6.65 pkgs.mindforger Thinking Notebook & Markdown IDE nixos-unstable 1.52.0 nixos-unstable-small 1.52.0 nixpkgs-unstable 1.52.0 pkgs.forgejo-cli CLI application for interacting with Forgejo nixos-unstable 0.1.1 nixos-unstable-small 0.1.1 nixpkgs-unstable 0.1.1 pkgs.forgejo-lts Self-hosted lightweight software forge nixos-unstable 7.0.11 nixos-unstable-small 7.0.11 nixpkgs-unstable 7.0.11 pkgs.mcdreforged Rewritten version of MCDaemon, a python tool to control your Minecraft server nixos-unstable 2.13.2 nixos-unstable-small 2.13.2 nixpkgs-unstable 2.13.2 pkgs.forge-sparks Get Git forges notifications nixos-unstable 0.4.0 nixos-unstable-small 0.4.0 nixpkgs-unstable 0.4.0 pkgs.fontforge-gtk Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.forgejo-runner Runner for Forgejo based on act nixos-unstable 5.0.3 nixos-unstable-small 5.0.3 nixpkgs-unstable 5.0.3 pkgs.emacsPackages.forge nixos-unstable 20241014.1340 nixos-unstable-small 20241014.1340 nixpkgs-unstable 20241014.1340 pkgs.fontforge-fonttools Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.gnomeExtensions.forge Tiling and window manager for GNOME nixos-unstable 84 nixos-unstable-small 84 nixpkgs-unstable 84 pkgs.emacsPackages.orgit-forge nixos-unstable 20240808.1947 nixos-unstable-small 20240808.1947 nixpkgs-unstable 20240808.1947 pkgs.python311Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.python312Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.emacsPackages.consult-gh-forge nixos-unstable 20240927.1004 nixos-unstable-small 20240927.1004 nixpkgs-unstable 20240927.1004 pkgs.python312Packages.fontforge.x86_64-linux Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.aarch64-linux Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.x86_64-darwin Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.aarch64-darwin Font editor nixos-unstable 20230101 Package maintainers: 16 @Moraxyc Moraxyc Xu <i@qaq.li> @erictapen Kerstin Humm <kerstin@erictapen.name> @Kranzes Ilan Joselevich <personal@ilanjoselevich.com> @emilylange Emily Lange <nix@emilylange.de> @christoph-heiss Christoph Heiss <christoph@c8h4.io> @honnip Jung seungwoo <me@honnip.page> @chessai Daniel Cartwright <chessai1996@gmail.com> @twesterhout Tom Westerhout @eigengrau Sebastian Reuße <seb@schattenkopie.de> @michaelgrahamevans Michael Evans <michaelgrahamevans@gmail.com> @nycodeghg Marie Ramlow <tabmeier12+nix@gmail.com> @adamcstephens Adam C. Stephens <happy.plan4249@valkor.net> @urandom2 Colin Arnott <colin@urandom.co.uk> @bendlas Herwig Hochleitner <herwig@bendlas.net> @isabelroses Isabel Roses <isabel@isabelroses.com> @cyplo Cyryl Płotnicki <nixos@cyplo.dev> CVE-2023-4911 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 7 months ago Glibc: buffer overflow in ld.so leading to privilege escalation A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges. glibc * <2.39 compat-glibc redhat-virtualization-host * redhat-release-virtualization-host * pkgs.glibc GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.iconv GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.getent nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.locale nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.mtrace Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3) nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.getconf nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.libiconv nixos-unstable 2.40 nixos-unstable-small 2.40 nixpkgs-unstable 2.40 pkgs.glibcInfo GNU Info manual of the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibc_multi nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibcLocales Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibcLocalesUtf8 Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.getent nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.locale nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.getconf nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.locale.x86_64-linux nixos-unstable ??? nixos-unstable-small 2.40-36 pkgs.locale.aarch64-linux nixos-unstable ??? nixos-unstable-small 2.40-36 pkgs.libiconv.x86_64-linux nixos-unstable ??? nixos-unstable-small 2.40 pkgs.libiconv.aarch64-linux nixos-unstable ??? nixos-unstable-small 2.40 Package maintainers: 2 @Ma27 Maximilian Bosch <maximilian@mbosch.me> @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> CVE-2024-22029 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 7 months ago tomcat packaging allows for escalation to root from tomcat user Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root tomcat <9.0.85-150200.57.1 <9.0.85-3.1 pkgs.tomcat9 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 9.0.97 nixos-unstable-small 9.0.97 nixpkgs-unstable 9.0.97 pkgs.tomcat10 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 10.1.33 nixos-unstable-small 10.1.33 nixpkgs-unstable 10.1.33 pkgs.tomcat11 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 11.0.0 nixos-unstable-small 11.0.0 nixpkgs-unstable 11.0.0 pkgs.tomcat-native Optional component for use with Apache Tomcat that allows Tomcat to use certain native resources for performance, compatibility, etc nixos-unstable 2.0.8 nixos-unstable-small 2.0.8 nixpkgs-unstable 2.0.8 pkgs.tomcat_mysql_jdbc nixos-unstable 9.1.0 nixos-unstable-small 9.1.0 nixpkgs-unstable 9.1.0 Package maintainers: 2 @anthonyroussel Anthony Roussel <anthony@roussel.dev> @aanderse Aaron Andersen <aaron@fosslib.net>
CVE-2023-3758 7.1 HIGH CVSS version: 3.1 Attack vector (AV): ADJACENT_NETWORK Attack complexity (AC): HIGH Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 6 months, 3 weeks ago Sssd: race condition during authorization leads to gpo policies functioning inconsistently A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately. sssd <2.9.5 * pkgs.sssd System Security Services Daemon nixos-unstable 2.9.5 nixos-unstable-small 2.9.5 nixpkgs-unstable 2.9.5 Package maintainers: 1 @illustris Harikrishnan R <me@illustris.tech>
pkgs.sssd System Security Services Daemon nixos-unstable 2.9.5 nixos-unstable-small 2.9.5 nixpkgs-unstable 2.9.5
CVE-2022-2084 5.5 MEDIUM CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago sensitive data exposure in cloud-init logs Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords. cloud-init <23.0 pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2 Package maintainers: 2 @illustris Harikrishnan R <me@illustris.tech> @jfroche Jean-François Roche <jfroche@pyxel.be>
pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2
CVE-2023-30797 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago Insecure Random Generation in Netflix Lemur Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur. lemur <<1.3.2 pkgs.lemurs Customizable TUI display/login manager written in Rust nixos-unstable 0.3.2 nixos-unstable-small 0.3.2 nixpkgs-unstable 0.3.2 Package maintainers: 1 @JeremiahSecrist Jeremiah Secrist <jeremiah@secrist.xyz>
pkgs.lemurs Customizable TUI display/login manager written in Rust nixos-unstable 0.3.2 nixos-unstable-small 0.3.2 nixpkgs-unstable 0.3.2
CVE-2021-3429 5.5 MEDIUM CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): NONE Availability impact (A): NONE created 6 months, 3 weeks ago sensitive data exposure in cloud-init logs When instructing cloud-init to set a random password for a new user account, versions before 21.2 would write that password to the world-readable log file /var/log/cloud-init-output.log. This could allow a local user to log in as another user. cloud-init <21.2 pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2 Package maintainers: 2 @illustris Harikrishnan R <me@illustris.tech> @jfroche Jean-François Roche <jfroche@pyxel.be>
pkgs.cloud-init Provides configuration and customization of cloud instance nixos-unstable 24.2 nixos-unstable-small 24.2 nixpkgs-unstable 24.2
CVE-2023-30798 7.5 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): NONE Availability impact (A): HIGH created 6 months, 3 weeks ago MultipartParser DOS with too many fields or files in Starlette Framework There MultipartParser usage in Encode's Starlette python framework before versions 0.25.0 allows an unauthenticated and remote attacker to specify any number of form fields or files which can cause excessive memory usage resulting in denial of service of the HTTP service. starlette <0.25.0 pkgs.python311Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0 pkgs.python312Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0 pkgs.python311Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3 pkgs.python311Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5 pkgs.python312Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3 pkgs.python312Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5 pkgs.python311Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python312Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1 pkgs.python311Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6 pkgs.python312Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6 pkgs.python312Packages.starlette.x86_64-linux Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.aarch64-linux Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.x86_64-darwin Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.starlette.aarch64-darwin Little ASGI framework that shines nixos-unstable 0.40.0 pkgs.python312Packages.sse-starlette.x86_64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-wtf.x86_64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.sse-starlette.aarch64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.sse-starlette.x86_64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-wtf.aarch64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.starlette-wtf.x86_64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.sse-starlette.aarch64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 pkgs.python312Packages.starlette-admin.x86_64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-wtf.aarch64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 pkgs.python312Packages.starlette-admin.aarch64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-admin.x86_64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-admin.aarch64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 pkgs.python312Packages.starlette-context.x86_64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.aarch64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.x86_64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 pkgs.python312Packages.starlette-context.aarch64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 Package maintainers: 7 @wd15 Daniel Wheeler <daniel.wheeler2@gmail.com> @pbsds Peder Bergebakken Sundt <pbsds@hotmail.com> @fabaff Fabian Affolter <mail@fabian-affolter.ch> @n0emis Ember Keske <nixpkgs@n0emis.network> @yu-re-ka Yureka <yuka@yuka.dev> @johannwagner Johann Wagner <nix@wagner.digital> @vidister Fiona Weber <v@vidister.de>
pkgs.python311Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0
pkgs.python312Packages.starlette Little ASGI framework that shines nixos-unstable 0.40.0 nixos-unstable-small 0.40.0 nixpkgs-unstable 0.40.0
pkgs.python311Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3
pkgs.python311Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5
pkgs.python312Packages.sse-starlette Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3 nixos-unstable-small 2.1.3 nixpkgs-unstable 2.1.3
pkgs.python312Packages.starlette-wtf Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5 nixos-unstable-small 0.4.5 nixpkgs-unstable 0.4.5
pkgs.python311Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1
pkgs.python312Packages.starlette-admin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1 nixos-unstable-small 0.14.1 nixpkgs-unstable 0.14.1
pkgs.python311Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6
pkgs.python312Packages.starlette-context Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6 nixos-unstable-small 0.3.6 nixpkgs-unstable 0.3.6
pkgs.python312Packages.starlette.x86_64-linux Little ASGI framework that shines nixos-unstable 0.40.0
pkgs.python312Packages.starlette.aarch64-linux Little ASGI framework that shines nixos-unstable 0.40.0
pkgs.python312Packages.starlette.x86_64-darwin Little ASGI framework that shines nixos-unstable 0.40.0
pkgs.python312Packages.starlette.aarch64-darwin Little ASGI framework that shines nixos-unstable 0.40.0
pkgs.python312Packages.sse-starlette.x86_64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3
pkgs.python312Packages.starlette-wtf.x86_64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5
pkgs.python312Packages.sse-starlette.aarch64-linux Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3
pkgs.python312Packages.sse-starlette.x86_64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3
pkgs.python312Packages.starlette-wtf.aarch64-linux Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5
pkgs.python312Packages.starlette-wtf.x86_64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5
pkgs.python312Packages.sse-starlette.aarch64-darwin Server Sent Events for Starlette and FastAPI nixos-unstable 2.1.3
pkgs.python312Packages.starlette-admin.x86_64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1
pkgs.python312Packages.starlette-wtf.aarch64-darwin Simple tool for integrating Starlette and WTForms nixos-unstable 0.4.5
pkgs.python312Packages.starlette-admin.aarch64-linux Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1
pkgs.python312Packages.starlette-admin.x86_64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1
pkgs.python312Packages.starlette-admin.aarch64-darwin Fast, beautiful and extensible administrative interface framework for Starlette & FastApi applications nixos-unstable 0.14.1
pkgs.python312Packages.starlette-context.x86_64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6
pkgs.python312Packages.starlette-context.aarch64-linux Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6
pkgs.python312Packages.starlette-context.x86_64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6
pkgs.python312Packages.starlette-context.aarch64-darwin Middleware for Starlette that allows you to store and access the context data of a request nixos-unstable 0.3.6
CVE-2025-22696 5.4 MEDIUM CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): NONE Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Document Block – Upload & Embed Docs, PDF, PPT, XLS or Any Documents plugin <= 1.1.0 - Broken Access Control vulnerability Missing Authorization vulnerability in EmbedPress Document Block – Upload & Embed Docs. This issue affects Document Block – Upload & Embed Docs: from n/a through 1.1.0. document =<1.1.0 pkgs.phpdocumentor PHP documentation generator nixos-unstable 3.5.3 nixos-unstable-small 3.5.3 nixpkgs-unstable 3.5.3 pkgs.documentation-highlighter Highlight.js sources for the Nix Ecosystem's documentation nixos-unstable ??? nixos-unstable-small nixpkgs-unstable pkgs.onlyoffice-documentserver ONLYOFFICE Document Server is an online office suite comprising viewers and editors nixos-unstable 8.1.3 nixos-unstable-small 8.1.3 nixpkgs-unstable 8.1.3 pkgs.phpdocumentor.x86_64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.phpdocumentor.aarch64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.phpdocumentor.x86_64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.libsForQt5.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0 pkgs.phpdocumentor.aarch64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3 pkgs.kdePackages.libkeduvocdocument Library to parse, convert, and manipulate KVTML files nixos-unstable 24.08.3 nixos-unstable-small 24.08.3 nixpkgs-unstable 24.08.3 pkgs.python311Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5 pkgs.python312Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5 pkgs.cudaPackages.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 12.4.99 nixos-unstable-small 12.4.99 nixpkgs-unstable 12.4.99 pkgs.sbclPackages.documentation-utils nixos-unstable 20231021-git nixos-unstable-small 20231021-git nixpkgs-unstable 20231021-git pkgs.haskellPackages.symantic-document Symantics combinators for generating documents nixos-unstable 1.5.3.20200320 nixos-unstable-small 1.5.3.20200320 nixpkgs-unstable 1.5.3.20200320 pkgs.plasma5Packages.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0 pkgs.cudaPackages_11.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 11.8.86 nixos-unstable-small 11.8.86 nixpkgs-unstable 11.8.86 pkgs.python311Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0 pkgs.python312Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0 pkgs.tests.haskell.documentationTarball nixos-unstable ??? nixos-unstable-small nixpkgs-unstable pkgs.haskellPackages.pdf-toolbox-document A collection of tools for processing PDF files nixos-unstable 0.1.4 nixos-unstable-small 0.1.4 nixpkgs-unstable 0.1.4 pkgs.python311Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11 pkgs.python312Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11 pkgs.vimPlugins.cmp-nvim-lsp-document-symbol nixos-unstable 2024-05-29 nixos-unstable-small 2024-05-29 nixpkgs-unstable 2024-05-29 pkgs.python311Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0 pkgs.python312Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0 pkgs.libsForQt5.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0 pkgs.libsForQt5.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0 pkgs.python312Packages.pydocumentdb.x86_64-linux Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.aarch64-linux Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.x86_64-darwin Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.python312Packages.pydocumentdb.aarch64-darwin Azure Cosmos DB API nixos-unstable 2.3.5 pkgs.sbclPackages.documentation-utils.x86_64-linux nixos-unstable 20231021-git pkgs.plasma5Packages.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0 pkgs.sbclPackages.documentation-utils.aarch64-linux nixos-unstable 20231021-git pkgs.sbclPackages.documentation-utils.x86_64-darwin nixos-unstable 20231021-git pkgs.plasma5Packages.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0 pkgs.python312Packages.netbox-documents.x86_64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.sbclPackages.documentation-utils.aarch64-darwin nixos-unstable 20231021-git pkgs.python312Packages.netbox-documents.aarch64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.netbox-documents.x86_64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.netbox-documents.aarch64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 pkgs.python312Packages.tableaudocumentapi.x86_64-linux Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.aarch64-linux Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.x86_64-darwin Python module for working with Tableau files nixos-unstable 0.11 pkgs.python312Packages.tableaudocumentapi.aarch64-darwin Python module for working with Tableau files nixos-unstable 0.11 Package maintainers: 20 @natsukium Tomoya Otabi <nixpkgs@natsukium.com> @grahamc Graham Christensen <graham@grahamc.com> @felbinger Nico Felbinger <nico@felbinger.eu> @7c6f434c Michael Raskin <7c6f434c@mail.ru> @nagy Daniel Nagy <danielnagy@posteo.de> @lukego Luke Gorrie <luke@snabb.co> @Uthar Kasper Gałkowski <galkowskikasper@gmail.com> @hraban Hraban Luyat <hraban@0brg.net> @dotlambda Robert Schütz <rschuetz17@gmail.com> @K900 Ilya K. <me@0upti.me> @ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru> @SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com> @LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev> @NickCao Nick Cao <nickcao@nichi.co> @ttuegel Thomas Tuegel <ttuegel@mailbox.org> @mjm Matt Moriarity <matt@mattmoriarity.com> @drupol Pol Dellaiera <pol.dellaiera@protonmail.com> @samuela Samuel Ainsworth <skainsworth@gmail.com> @ConnorBaker Connor Baker <ConnorBaker01@gmail.com> @SomeoneSerge Else Someone <else+nixpkgs@someonex.net>
pkgs.phpdocumentor PHP documentation generator nixos-unstable 3.5.3 nixos-unstable-small 3.5.3 nixpkgs-unstable 3.5.3
pkgs.documentation-highlighter Highlight.js sources for the Nix Ecosystem's documentation nixos-unstable ??? nixos-unstable-small nixpkgs-unstable
pkgs.onlyoffice-documentserver ONLYOFFICE Document Server is an online office suite comprising viewers and editors nixos-unstable 8.1.3 nixos-unstable-small 8.1.3 nixpkgs-unstable 8.1.3
pkgs.phpdocumentor.x86_64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3
pkgs.phpdocumentor.aarch64-linux PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3
pkgs.phpdocumentor.x86_64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3
pkgs.libsForQt5.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0
pkgs.phpdocumentor.aarch64-darwin PHP documentation generator nixos-unstable ??? nixpkgs-unstable 3.5.3
pkgs.kdePackages.libkeduvocdocument Library to parse, convert, and manipulate KVTML files nixos-unstable 24.08.3 nixos-unstable-small 24.08.3 nixpkgs-unstable 24.08.3
pkgs.python311Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5
pkgs.python312Packages.pydocumentdb Azure Cosmos DB API nixos-unstable 2.3.5 nixos-unstable-small 2.3.5 nixpkgs-unstable 2.3.5
pkgs.cudaPackages.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 12.4.99 nixos-unstable-small 12.4.99 nixpkgs-unstable 12.4.99
pkgs.sbclPackages.documentation-utils nixos-unstable 20231021-git nixos-unstable-small 20231021-git nixpkgs-unstable 20231021-git
pkgs.haskellPackages.symantic-document Symantics combinators for generating documents nixos-unstable 1.5.3.20200320 nixos-unstable-small 1.5.3.20200320 nixpkgs-unstable 1.5.3.20200320
pkgs.plasma5Packages.mauikit-documents MauiKit QtQuick plugins for text editing nixos-unstable 3.1.0 nixos-unstable-small 3.1.0 nixpkgs-unstable 3.1.0
pkgs.cudaPackages_11.cuda_documentation CUDA Documentation. By downloading and using the packages you accept the terms and conditions of the CUDA EULA nixos-unstable 11.8.86 nixos-unstable-small 11.8.86 nixpkgs-unstable 11.8.86
pkgs.python311Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0
pkgs.python312Packages.netbox-documents Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0 nixos-unstable-small 0.7.0 nixpkgs-unstable 0.7.0
pkgs.haskellPackages.pdf-toolbox-document A collection of tools for processing PDF files nixos-unstable 0.1.4 nixos-unstable-small 0.1.4 nixpkgs-unstable 0.1.4
pkgs.python311Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11
pkgs.python312Packages.tableaudocumentapi Python module for working with Tableau files nixos-unstable 0.11 nixos-unstable-small 0.11 nixpkgs-unstable 0.11
pkgs.vimPlugins.cmp-nvim-lsp-document-symbol nixos-unstable 2024-05-29 nixos-unstable-small 2024-05-29 nixpkgs-unstable 2024-05-29
pkgs.python311Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0
pkgs.python312Packages.azure-search-documents Microsoft Azure Cognitive Search Client Library for Python nixos-unstable 11.4.0 nixos-unstable-small 11.4.0 nixpkgs-unstable 11.4.0
pkgs.libsForQt5.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0
pkgs.libsForQt5.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixos-unstable-small 3.1.0
pkgs.plasma5Packages.mauikit-documents.x86_64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0
pkgs.plasma5Packages.mauikit-documents.aarch64-linux MauiKit QtQuick plugins for text editing nixos-unstable ??? nixpkgs-unstable 3.1.0
pkgs.python312Packages.netbox-documents.x86_64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0
pkgs.python312Packages.netbox-documents.aarch64-linux Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0
pkgs.python312Packages.netbox-documents.x86_64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0
pkgs.python312Packages.netbox-documents.aarch64-darwin Plugin designed to faciliate the storage of site, circuit, device type and device specific documents within NetBox nixos-unstable 0.7.0
pkgs.python312Packages.tableaudocumentapi.x86_64-linux Python module for working with Tableau files nixos-unstable 0.11
pkgs.python312Packages.tableaudocumentapi.aarch64-linux Python module for working with Tableau files nixos-unstable 0.11
pkgs.python312Packages.tableaudocumentapi.x86_64-darwin Python module for working with Tableau files nixos-unstable 0.11
pkgs.python312Packages.tableaudocumentapi.aarch64-darwin Python module for working with Tableau files nixos-unstable 0.11
CVE-2025-24684 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Media Downloader Plugin <= 0.4.7.5 - Reflected Cross Site Scripting (XSS) vulnerability Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ederson Peka Media Downloader allows Reflected XSS. This issue affects Media Downloader: from n/a through 0.4.7.5. media-downloader =<0.4.7.5 pkgs.media-downloader Qt/C++ GUI front end for yt-dlp and others nixos-unstable 5.2.0 nixos-unstable-small 5.2.0 nixpkgs-unstable 5.2.0 Package maintainers: 2 @zendo zendo <linzway@qq.com> @Aleksanaa Aleksana QwQ <me@aleksana.moe>
pkgs.media-downloader Qt/C++ GUI front end for yt-dlp and others nixos-unstable 5.2.0 nixos-unstable-small 5.2.0 nixpkgs-unstable 5.2.0
CVE-2025-22703 7.1 HIGH CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): REQUIRED Scope (S): CHANGED Confidentiality impact (C): LOW Integrity impact (I): LOW Availability impact (A): LOW created 6 months, 3 weeks ago WordPress Forge – Front-End Page Builder plugin <= 1.4.6 - CSRF to Stored Cross Site Scripting (XSS) vulnerability Cross-Site Request Forgery (CSRF) vulnerability in manuelvicedo Forge – Front-End Page Builder allows Stored XSS. This issue affects Forge – Front-End Page Builder: from n/a through 1.4.6. forge =<1.4.6 pkgs.forge OpenGL interop library that can be used with ArrayFire or any other application using CUDA or OpenCL compute backend nixos-unstable 1.0.8 nixos-unstable-small 1.0.8 nixpkgs-unstable 1.0.8 pkgs.forgejo Self-hosted lightweight software forge nixos-unstable 9.0.2 nixos-unstable-small 9.0.2 nixpkgs-unstable 9.0.2 pkgs.forge-mtg Magic: the Gathering card game with rules enforcement nixos-unstable 1.6.65 nixos-unstable-small 1.6.65 nixpkgs-unstable 1.6.65 pkgs.mindforger Thinking Notebook & Markdown IDE nixos-unstable 1.52.0 nixos-unstable-small 1.52.0 nixpkgs-unstable 1.52.0 pkgs.forgejo-cli CLI application for interacting with Forgejo nixos-unstable 0.1.1 nixos-unstable-small 0.1.1 nixpkgs-unstable 0.1.1 pkgs.forgejo-lts Self-hosted lightweight software forge nixos-unstable 7.0.11 nixos-unstable-small 7.0.11 nixpkgs-unstable 7.0.11 pkgs.mcdreforged Rewritten version of MCDaemon, a python tool to control your Minecraft server nixos-unstable 2.13.2 nixos-unstable-small 2.13.2 nixpkgs-unstable 2.13.2 pkgs.forge-sparks Get Git forges notifications nixos-unstable 0.4.0 nixos-unstable-small 0.4.0 nixpkgs-unstable 0.4.0 pkgs.fontforge-gtk Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.forgejo-runner Runner for Forgejo based on act nixos-unstable 5.0.3 nixos-unstable-small 5.0.3 nixpkgs-unstable 5.0.3 pkgs.emacsPackages.forge nixos-unstable 20241014.1340 nixos-unstable-small 20241014.1340 nixpkgs-unstable 20241014.1340 pkgs.fontforge-fonttools Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.gnomeExtensions.forge Tiling and window manager for GNOME nixos-unstable 84 nixos-unstable-small 84 nixpkgs-unstable 84 pkgs.emacsPackages.orgit-forge nixos-unstable 20240808.1947 nixos-unstable-small 20240808.1947 nixpkgs-unstable 20240808.1947 pkgs.python311Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.python312Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101 pkgs.emacsPackages.consult-gh-forge nixos-unstable 20240927.1004 nixos-unstable-small 20240927.1004 nixpkgs-unstable 20240927.1004 pkgs.python312Packages.fontforge.x86_64-linux Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.aarch64-linux Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.x86_64-darwin Font editor nixos-unstable 20230101 pkgs.python312Packages.fontforge.aarch64-darwin Font editor nixos-unstable 20230101 Package maintainers: 16 @Moraxyc Moraxyc Xu <i@qaq.li> @erictapen Kerstin Humm <kerstin@erictapen.name> @Kranzes Ilan Joselevich <personal@ilanjoselevich.com> @emilylange Emily Lange <nix@emilylange.de> @christoph-heiss Christoph Heiss <christoph@c8h4.io> @honnip Jung seungwoo <me@honnip.page> @chessai Daniel Cartwright <chessai1996@gmail.com> @twesterhout Tom Westerhout @eigengrau Sebastian Reuße <seb@schattenkopie.de> @michaelgrahamevans Michael Evans <michaelgrahamevans@gmail.com> @nycodeghg Marie Ramlow <tabmeier12+nix@gmail.com> @adamcstephens Adam C. Stephens <happy.plan4249@valkor.net> @urandom2 Colin Arnott <colin@urandom.co.uk> @bendlas Herwig Hochleitner <herwig@bendlas.net> @isabelroses Isabel Roses <isabel@isabelroses.com> @cyplo Cyryl Płotnicki <nixos@cyplo.dev>
pkgs.forge OpenGL interop library that can be used with ArrayFire or any other application using CUDA or OpenCL compute backend nixos-unstable 1.0.8 nixos-unstable-small 1.0.8 nixpkgs-unstable 1.0.8
pkgs.forgejo Self-hosted lightweight software forge nixos-unstable 9.0.2 nixos-unstable-small 9.0.2 nixpkgs-unstable 9.0.2
pkgs.forge-mtg Magic: the Gathering card game with rules enforcement nixos-unstable 1.6.65 nixos-unstable-small 1.6.65 nixpkgs-unstable 1.6.65
pkgs.mindforger Thinking Notebook & Markdown IDE nixos-unstable 1.52.0 nixos-unstable-small 1.52.0 nixpkgs-unstable 1.52.0
pkgs.forgejo-cli CLI application for interacting with Forgejo nixos-unstable 0.1.1 nixos-unstable-small 0.1.1 nixpkgs-unstable 0.1.1
pkgs.forgejo-lts Self-hosted lightweight software forge nixos-unstable 7.0.11 nixos-unstable-small 7.0.11 nixpkgs-unstable 7.0.11
pkgs.mcdreforged Rewritten version of MCDaemon, a python tool to control your Minecraft server nixos-unstable 2.13.2 nixos-unstable-small 2.13.2 nixpkgs-unstable 2.13.2
pkgs.forge-sparks Get Git forges notifications nixos-unstable 0.4.0 nixos-unstable-small 0.4.0 nixpkgs-unstable 0.4.0
pkgs.fontforge-gtk Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101
pkgs.forgejo-runner Runner for Forgejo based on act nixos-unstable 5.0.3 nixos-unstable-small 5.0.3 nixpkgs-unstable 5.0.3
pkgs.emacsPackages.forge nixos-unstable 20241014.1340 nixos-unstable-small 20241014.1340 nixpkgs-unstable 20241014.1340
pkgs.fontforge-fonttools Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101
pkgs.gnomeExtensions.forge Tiling and window manager for GNOME nixos-unstable 84 nixos-unstable-small 84 nixpkgs-unstable 84
pkgs.emacsPackages.orgit-forge nixos-unstable 20240808.1947 nixos-unstable-small 20240808.1947 nixpkgs-unstable 20240808.1947
pkgs.python311Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101
pkgs.python312Packages.fontforge Font editor nixos-unstable 20230101 nixos-unstable-small 20230101 nixpkgs-unstable 20230101
pkgs.emacsPackages.consult-gh-forge nixos-unstable 20240927.1004 nixos-unstable-small 20240927.1004 nixpkgs-unstable 20240927.1004
CVE-2023-4911 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 7 months ago Glibc: buffer overflow in ld.so leading to privilege escalation A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges. glibc * <2.39 compat-glibc redhat-virtualization-host * redhat-release-virtualization-host * pkgs.glibc GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.iconv GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.getent nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.locale nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.mtrace Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3) nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.getconf nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.libiconv nixos-unstable 2.40 nixos-unstable-small 2.40 nixpkgs-unstable 2.40 pkgs.glibcInfo GNU Info manual of the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibc_multi nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibcLocales Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.glibcLocalesUtf8 Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.getent nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.locale nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.unixtools.getconf nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36 pkgs.locale.x86_64-linux nixos-unstable ??? nixos-unstable-small 2.40-36 pkgs.locale.aarch64-linux nixos-unstable ??? nixos-unstable-small 2.40-36 pkgs.libiconv.x86_64-linux nixos-unstable ??? nixos-unstable-small 2.40 pkgs.libiconv.aarch64-linux nixos-unstable ??? nixos-unstable-small 2.40 Package maintainers: 2 @Ma27 Maximilian Bosch <maximilian@mbosch.me> @ConnorBaker Connor Baker <ConnorBaker01@gmail.com>
pkgs.glibc GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.iconv GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.mtrace Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3) nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.glibcInfo GNU Info manual of the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.glibcLocales Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.glibc_memusage GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
pkgs.glibcLocalesUtf8 Locale information for the GNU C Library nixos-unstable 2.40-36 nixos-unstable-small 2.40-36 nixpkgs-unstable 2.40-36
CVE-2024-22029 7.8 HIGH CVSS version: 3.1 Attack vector (AV): LOCAL Attack complexity (AC): LOW Privileges required (PR): LOW User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH created 7 months ago tomcat packaging allows for escalation to root from tomcat user Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root tomcat <9.0.85-150200.57.1 <9.0.85-3.1 pkgs.tomcat9 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 9.0.97 nixos-unstable-small 9.0.97 nixpkgs-unstable 9.0.97 pkgs.tomcat10 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 10.1.33 nixos-unstable-small 10.1.33 nixpkgs-unstable 10.1.33 pkgs.tomcat11 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 11.0.0 nixos-unstable-small 11.0.0 nixpkgs-unstable 11.0.0 pkgs.tomcat-native Optional component for use with Apache Tomcat that allows Tomcat to use certain native resources for performance, compatibility, etc nixos-unstable 2.0.8 nixos-unstable-small 2.0.8 nixpkgs-unstable 2.0.8 pkgs.tomcat_mysql_jdbc nixos-unstable 9.1.0 nixos-unstable-small 9.1.0 nixpkgs-unstable 9.1.0 Package maintainers: 2 @anthonyroussel Anthony Roussel <anthony@roussel.dev> @aanderse Aaron Andersen <aaron@fosslib.net>
pkgs.tomcat9 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 9.0.97 nixos-unstable-small 9.0.97 nixpkgs-unstable 9.0.97
pkgs.tomcat10 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 10.1.33 nixos-unstable-small 10.1.33 nixpkgs-unstable 10.1.33
pkgs.tomcat11 Implementation of the Java Servlet and JavaServer Pages technologies nixos-unstable 11.0.0 nixos-unstable-small 11.0.0 nixpkgs-unstable 11.0.0
pkgs.tomcat-native Optional component for use with Apache Tomcat that allows Tomcat to use certain native resources for performance, compatibility, etc nixos-unstable 2.0.8 nixos-unstable-small 2.0.8 nixpkgs-unstable 2.0.8