Automatically generated suggestions

Create Draft to queue a suggestion for refinement.

Dismiss to remove a suggestion from the queue.

CVE-2024-10525
9.1 CRITICAL
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 1 month, 2 weeks ago
CISA ADP Vulnrichment

None

mosquitto
=<2.0.18

pkgs.mosquitto

Open source MQTT v3.1/3.1.1/5.0 broker

pkgs.haskellPackages.mosquitto-hs

Mosquitto client library bindings

pkgs.chickenPackages_5.chickenEggs.mosquitto

Bindings to mosquitto MQTT client library
Package maintainers: 2
CVE-2024-50422
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress Breeze plugin <= 2.1.14 - Broken Access Control vulnerability

Missing Authorization vulnerability in Cloudways Breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through 2.1.14.

breeze
=<2.1.14

pkgs.kdePackages.breeze

Artwork, styles and assets for the Breeze visual style for the Plasma Desktop

pkgs.kdePackages.breeze-gtk

Breeze widget theme for GTK 2 and 3

pkgs.kdePackages.breeze-grub

GRUB theme for the Breeze visual style for the Plasma Desktop

pkgs.libsForQt5.breeze-icons

pkgs.kdePackages.breeze-icons

Breeze icon theme.

pkgs.kdePackages.breeze-plymouth

Plymouth theme for the Breeze visual style for the Plasma Desktop

pkgs.python312Packages.seabreeze

Python library to access Ocean Optics spectrometers

pkgs.python313Packages.seabreeze

Python library to access Ocean Optics spectrometers

pkgs.plasma5Packages.breeze-icons

pkgs.kdePackages.qqc2-breeze-style

Breeze inspired QQC2 Style

pkgs.wordpressPackages.plugins.breeze

pkgs.kdePackages.sierra-breeze-enhanced

OSX-like window decoration for KDE Plasma written in C++

pkgs.qt6Packages.sierra-breeze-enhanced

OSX-like window decoration for KDE Plasma written in C++
Package maintainers: 10
CVE-2024-50418
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress Time Slot plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Time Slot Booking Time Slot allows Stored XSS.This issue affects Time Slot: from n/a through 1.3.6.

timeslot
=<1.3.6

pkgs.python312Packages.timeslot

Data type for representing time slots with a start and end

pkgs.python313Packages.timeslot

Data type for representing time slots with a start and end
Package maintainers: 1
CVE-2024-10491
4.0 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 1 month, 2 weeks ago
Preload arbitrary resources by injecting additional `Link` headers

A vulnerability has been identified in the Express response.links function, allowing for arbitrary resource injection in the Link header when unsanitized data is used. The issue arises from improper sanitization in `Link` header values, which can allow a combination of characters like `,`, `;`, and `<>` to preload malicious resources. This vulnerability is especially relevant for dynamic parameters.

express
=<3.21.2

pkgs.expressvpn

CLI client for ExpressVPN

pkgs.opteeQemuAarch64

Trusted Execution Environment for ARM

pkgs.haskellPackages.express

Dynamically-typed expressions involving function application and variables

pkgs.haskellPackages.gogol-qpxexpress

Google QPX Express SDK

pkgs.python312Packages.pymata-express

Python Asyncio Arduino Firmata Client

pkgs.python313Packages.pymata-express

Python Asyncio Arduino Firmata Client

pkgs.haskellPackages.csound-expression

library to make electronic music

pkgs.haskellPackages.prefix-expression

pkgs.python312Packages.tag-expressions

Package to parse logical tag expressions

pkgs.python313Packages.tag-expressions

Package to parse logical tag expressions

pkgs.haskellPackages.reorder-expression

Reorder expressions in a syntax tree according to operator fixities

pkgs.python312Packages.import-expression

Transpiles a superset of python to allow easy inline imports

pkgs.python312Packages.xpath-expressions

Python module to handle XPath expressions

pkgs.python313Packages.import-expression

Transpiles a superset of python to allow easy inline imports

pkgs.python313Packages.xpath-expressions

Python module to handle XPath expressions

pkgs.python312Packages.license-expression

Utility library to parse, normalize and compare License expressions

pkgs.python312Packages.py-expression-eval

Python Mathematical Expression Evaluator

pkgs.python313Packages.license-expression

Utility library to parse, normalize and compare License expressions

pkgs.python313Packages.py-expression-eval

Python Mathematical Expression Evaluator

pkgs.python312Packages.ciscomobilityexpress

Module to interact with Cisco Mobility Express APIs to fetch connected devices

pkgs.python313Packages.ciscomobilityexpress

Module to interact with Cisco Mobility Express APIs to fetch connected devices

pkgs.wordpressPackages.plugins.webp-express

pkgs.haskellPackages.csound-expression-typed

typed core for the library csound-expression

pkgs.haskellPackages.csound-expression-dynamic

dynamic core for csound-expression library

pkgs.haskellPackages.csound-expression-opcodes

opcodes for the library csound-expression

pkgs.python312Packages.cucumber-tag-expressions

Provides tag-expression parser for cucumber/behave

pkgs.python313Packages.cucumber-tag-expressions

Provides tag-expression parser for cucumber/behave

pkgs.azure-cli-extensions.express-route-cross-connection

Microsoft Azure Command-Line Tools ExpressRouteCrossConnection Extension
Package maintainers: 10
CVE-2024-49673
7.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress LaTeX2HTML plugin <= 2.5.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Van Abel LaTeX2HTML allows Reflected XSS.This issue affects LaTeX2HTML: from n/a through 2.5.4.

latex2html
=<2.5.4

pkgs.latex2html

LaTeX-to-HTML translator
Package maintainers: 1
CVE-2024-49646
7.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress Code Generate plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ioannup Code Generate allows Reflected XSS.This issue affects Code Generate: from n/a through 1.0.

code-generator
=<1.0

pkgs.kubernetes-code-generator

Kubernetes code generation

pkgs.haskellPackages.openapi3-code-generator

OpenAPI3 Haskell Client Code Generator

pkgs.python312Packages.datamodel-code-generator

Pydantic model and dataclasses.dataclass generator for easy conversion of JSON, OpenAPI, JSON Schema, and YAML data sources

pkgs.python313Packages.datamodel-code-generator

Pydantic model and dataclasses.dataclass generator for easy conversion of JSON, OpenAPI, JSON Schema, and YAML data sources
Package maintainers: 2
CVE-2024-47640
7.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress WP ERP plugin <= 1.13.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in weDevs WP ERP allows Reflected XSS.This issue affects WP ERP: from n/a through 1.13.2.

erp
=<1.13.2

pkgs.lerpn

Curses RPN calculator written in straight Python

pkgs.serpl

Simple terminal UI for search and replace, ala VS Code

pkgs.sherpa

Monte Carlo event generator for the Simulation of High-Energy Reactions of PArticles

pkgs.makerpm

Clean, simple RPM packager reimplemented completely from scratch

pkgs.serpent

Compiler for the Serpent language for Ethereum

pkgs.overpass

Font heavily inspired by Highway Gothic

pkgs.overpush

Self-hosted, drop-in replacement for Pushover that can use XMPP

pkgs.powerpipe

Dynamically query your cloud, code, logs & more with SQL

pkgs.featherpad

Lightweight Qt5 Plain-Text Editor for Linux

pkgs.filterpath

Retrieve a valid path from a messy piped line
  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.browserpass

Browserpass native client app

pkgs.centerpiece

Your trusty omnibox search

pkgs.ciderpress2

File archive utility for Apple II disk images and file archives

pkgs.letterpress

Create beautiful ASCII art

pkgs.pufferpanel

Free, open source game management panel

pkgs.fingerprintx

Standalone utility for service discovery on open ports

pkgs.hyperpotamus

YAML based HTTP script processing engine

pkgs.etherpad-lite

Modern really-real-time collaborative document editor

pkgs.masterpdfeditor

Master PDF Editor

pkgs.masterpdfeditor4

Master PDF Editor - version 4, without watermark

pkgs.open-interpreter

OpenAI's Code Interpreter in your terminal, running locally

pkgs.luaPackages.serpent

Lua serializer and pretty printer

pkgs.nerd-fonts.overpass

Nerd Fonts: An open source font family inspired by Highway Gothic

pkgs.haskellPackages.derp

Derivative Parsing

pkgs.world-serpant-search

Command-line tool for vulnerability detection

pkgs.beamerpresenter-mupdf

Modular multi screen pdf presentation viewer

pkgs.lua51Packages.serpent

Lua serializer and pretty printer

pkgs.lua52Packages.serpent

Lua serializer and pretty printer

pkgs.lua53Packages.serpent

Lua serializer and pretty printer

pkgs.lua54Packages.serpent

Lua serializer and pretty printer

pkgs.unigine-superposition

Unigine Superposition GPU benchmarking tool

pkgs.luajitPackages.serpent

Lua serializer and pretty printer

pkgs.beamerpresenter-poppler

Modular multi screen pdf presentation viewer

pkgs.python312Packages.serpy

Ridiculously fast object serialization

pkgs.python313Packages.serpy

Ridiculously fast object serialization

pkgs.haskellPackages.Euterpea

Library for computer music research and education

pkgs.python312Packages.overpy

Python Wrapper to access the Overpass API

pkgs.python313Packages.overpy

Python Wrapper to access the Overpass API

pkgs.stalwart-mail-enterprise

Secure & Modern All-in-One Mail Server (IMAP, JMAP, SMTP)

pkgs.python312Packages.serpent

Simple serialization library based on ast.literal_eval

pkgs.python313Packages.serpent

Simple serialization library based on ast.literal_eval

pkgs.libsForQt5.kdesignerplugin

pkgs.python312Packages.derpconf

Module to abstract loading configuration files for your app

pkgs.python312Packages.gitterpy

Python interface for the Gitter API

pkgs.python312Packages.pyinterp

Python library for optimized geo-referenced interpolation

pkgs.python312Packages.spiderpy

Unofficial Python wrapper for the Spider API

pkgs.python312Packages.userpath

Cross-platform tool for adding locations to the user PATH

pkgs.python313Packages.derpconf

Module to abstract loading configuration files for your app

pkgs.python313Packages.gitterpy

Python interface for the Gitter API

pkgs.python313Packages.pyinterp

Python library for optimized geo-referenced interpolation

pkgs.python313Packages.spiderpy

Unofficial Python wrapper for the Spider API

pkgs.python313Packages.userpath

Cross-platform tool for adding locations to the user PATH

pkgs.haskellPackages.interpolate

String interpolation done right

pkgs.python312Packages.boilerpy3

Python port of Boilerpipe library

pkgs.python312Packages.dockerpty

Functionality needed to operate the pseudo-tty (PTY) allocated to a docker container

pkgs.python312Packages.pyzerproc

Python library to control Zerproc Bluetooth LED smart string lights

pkgs.python313Packages.boilerpy3

Python port of Boilerpipe library

pkgs.python313Packages.dockerpty

Functionality needed to operate the pseudo-tty (PTY) allocated to a docker container

pkgs.python313Packages.pyzerproc

Python library to control Zerproc Bluetooth LED smart string lights

pkgs.haskellPackages.interprocess

Shared memory and control structures for IPC

pkgs.python312Packages.inquirerpy

Python port of Inquirer.js

pkgs.python313Packages.inquirerpy

Python port of Inquirer.js

pkgs.typstPackages.tierpist_0_1_0

Make simple tierlists using the Catppuccin pastel color palettes

pkgs.haskellPackages.Interpolation

Multiline strings, interpolation and templating

pkgs.haskellPackages.interpolation

piecewise linear and cubic Hermite interpolation

pkgs.python312Packages.betterproto

Code generator & library for Protobuf 3 and async gRPC

pkgs.python312Packages.hyperpyyaml

Extensions to YAML syntax for better python interaction

pkgs.python313Packages.betterproto

Code generator & library for Protobuf 3 and async gRPC

pkgs.python313Packages.hyperpyyaml

Extensions to YAML syntax for better python interaction

pkgs.perlPackages.StringInterpolate

String::Interpolate - Wrapper for builtin the Perl interpolation engine

pkgs.python312Packages.fingerprints

Library to generate entity fingerprints

pkgs.python312Packages.headerparser

Module to parse key-value pairs in the style of RFC 822 (e-mail) headers

pkgs.python313Packages.fingerprints

Library to generate entity fingerprints

pkgs.python313Packages.headerparser

Module to parse key-value pairs in the style of RFC 822 (e-mail) headers

pkgs.plasma5Packages.kdesignerplugin

pkgs.python312Packages.cypherpunkpay

Modern self-hosted software for accepting Bitcoin

pkgs.python313Packages.cypherpunkpay

Modern self-hosted software for accepting Bitcoin

pkgs.haskellPackages.reinterpret-cast

Memory reinterpretation casts for Float/Double and Word32/Word64

pkgs.python312Packages.betterproto-fw

Fork of betterproto used in fireworks-ai

pkgs.python312Packages.llm-perplexity

LLM access to pplx-api

pkgs.python313Packages.betterproto-fw

Fork of betterproto used in fireworks-ai

pkgs.python313Packages.llm-perplexity

LLM access to pplx-api

pkgs.haskellPackages.hasql-interpolate

QuasiQuoter that supports expression interpolation for hasql

pkgs.perl538Packages.StringInterpolate

String::Interpolate - Wrapper for builtin the Perl interpolation engine

pkgs.perl540Packages.StringInterpolate

String::Interpolate - Wrapper for builtin the Perl interpolation engine

pkgs.python312Packages.cppheaderparser

Parse C++ header files using ply.lex to generate navigable class tree representing the class structure

pkgs.python312Packages.cxxheaderparser

Modern pure python C++ header parser

pkgs.python313Packages.cppheaderparser

Parse C++ header files using ply.lex to generate navigable class tree representing the class structure

pkgs.python313Packages.cxxheaderparser

Modern pure python C++ header parser

pkgs.haskellPackages.Interpolation-maxs

Multiline strings, interpolation and templating

pkgs.haskellPackages.erpnext-api-client

Generic API client library for ERPNext

pkgs.haskellPackages.neat-interpolation

Quasiquoter for neat and simple multiline text interpolation

pkgs.haskellPackages.string-interpolate

Haskell string/text/bytestring interpolation that just works

pkgs.python312Packages.enterpriseattack

Module to interact with the Mitre Att&ck Enterprise dataset

pkgs.python312Packages.open-interpreter

OpenAI's Code Interpreter in your terminal, running locally

pkgs.python313Packages.enterpriseattack

Module to interact with the Mitre Att&ck Enterprise dataset

pkgs.python313Packages.open-interpreter

OpenAI's Code Interpreter in your terminal, running locally

pkgs.akkuPackages.slib-array-interpolate

Interpolated array access

pkgs.haskellPackages.copilot-interpreter

Interpreter for Copilot

pkgs.perlPackages.StringInterpolateNamed

Interpolated named arguments in string

pkgs.azure-cli-extensions.redisenterprise

Microsoft Azure Command-Line Tools RedisEnterprise Extension

pkgs.haskellPackages.prettyprinter-interp

Efficient interpolation for Prettyprinter

pkgs.graylogPlugins.enterprise-integrations

Integrations are tools that help Graylog work with external systems (unfree enterprise integrations)

pkgs.haskellPackages.exploring-interpreters

A generic exploring interpreter for exploratory programming

pkgs.haskellPackages.x-sum-type-boilerplate

(Forked) Library for reducing the boilerplate involved with sum types

pkgs.home-assistant-component-tests.zerproc

Open source home automation that puts local control and privacy first

pkgs.perl538Packages.StringInterpolateNamed

Interpolated named arguments in string

pkgs.perl540Packages.StringInterpolateNamed

Interpolated named arguments in string

pkgs.perlPackages.StringBinaryInterpolation

Make it easier to interpolate binary bytes into a string

pkgs.python312Packages.langchain-perplexity

Build LangChain applications with Perplexity

pkgs.python313Packages.langchain-perplexity

Build LangChain applications with Perplexity

pkgs.haskellPackages.gogol-android-enterprise

Google Play EMM SDK

pkgs.haskellPackages.interpolatedstring-perl6

QuasiQuoter for Perl6-style multi-line interpolated strings

pkgs.python312Packages.betterproto-rust-codec

Converter between betterproto messages and the Protobuf wire format

pkgs.python313Packages.betterproto-rust-codec

Converter between betterproto messages and the Protobuf wire format

pkgs.perl538Packages.StringBinaryInterpolation

Make it easier to interpolate binary bytes into a string

pkgs.perl540Packages.StringBinaryInterpolation

Make it easier to interpolate binary bytes into a string

pkgs.haskellPackages.gogol-recaptcha-enterprise

Google reCAPTCHA Enterprise SDK

pkgs.haskellPackages.lambda-calculus-interpreter

Lambda Calculus interpreter

pkgs.haskellPackages.postgresql-simple-interpolate

Interpolated SQL queries via quasiquotation

pkgs.perlPackages.TestRunPluginAlternateInterpreters

Define different interpreters for different test scripts with Test::Run

pkgs.perl538Packages.TestRunPluginAlternateInterpreters

Define different interpreters for different test scripts with Test::Run

pkgs.perl540Packages.TestRunPluginAlternateInterpreters

Define different interpreters for different test scripts with Test::Run
Package maintainers: 61
CVE-2024-50431
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): HIGH
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 1 month, 2 weeks ago
WordPress Breeze plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cloudways Breeze allows Stored XSS.This issue affects Breeze: from n/a through 2.1.14.

breeze
=<2.1.14

pkgs.kdePackages.breeze

Artwork, styles and assets for the Breeze visual style for the Plasma Desktop

pkgs.kdePackages.breeze-gtk

Breeze widget theme for GTK 2 and 3

pkgs.kdePackages.breeze-grub

GRUB theme for the Breeze visual style for the Plasma Desktop

pkgs.libsForQt5.breeze-icons

pkgs.kdePackages.breeze-icons

Breeze icon theme.

pkgs.kdePackages.breeze-plymouth

Plymouth theme for the Breeze visual style for the Plasma Desktop

pkgs.python312Packages.seabreeze

Python library to access Ocean Optics spectrometers

pkgs.python313Packages.seabreeze

Python library to access Ocean Optics spectrometers

pkgs.plasma5Packages.breeze-icons

pkgs.kdePackages.qqc2-breeze-style

Breeze inspired QQC2 Style

pkgs.wordpressPackages.plugins.breeze

pkgs.kdePackages.sierra-breeze-enhanced

OSX-like window decoration for KDE Plasma written in C++

pkgs.qt6Packages.sierra-breeze-enhanced

OSX-like window decoration for KDE Plasma written in C++
Package maintainers: 10
CVE-2024-10041
4.7 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): HIGH
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 1 month, 2 weeks ago
Pam: libpam: libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.

pam
<1.6.0
*

pkgs.pam

Pluggable Authentication Modules, a flexible mechanism for authenticating user

pkgs.ipam

Cli based IPAM written in Go with PowerDNS support

pkgs.opam

Package manager for OCaml

pkgs.paml

Phylogenetic Analysis by Maximum Likelihood (PAML)

pkgs.dspam

Community Driven Antispam Filter

pkgs.pamix

Pulseaudio terminal mixer

pkgs.rspamd

Advanced spam filtering system

pkgs.openpam

Open source PAM library that focuses on simplicity, correctness, and cleanliness

pkgs.pam_p11

Authentication with PKCS#11 modules

pkgs.pam_u2f

PAM module for allowing authentication with a U2F device

pkgs.pamixer

Pulseaudio command line mixer

pkgs.pam_krb5

PAM module allowing PAM-aware applications to authenticate users by performing an AS exchange with a Kerberos KDC

pkgs.pam_rssh

PAM module for authenticating via ssh-agent, written in Rust

pkgs.linux-pam

Pluggable Authentication Modules, a flexible mechanism for authenticating user

pkgs.ncpamixer

Terminal mixer for PulseAudio inspired by pavucontrol

pkgs.opam2json

Convert opam file syntax to JSON

pkgs.pam_dp9ik

dp9ik pam module

pkgs.pam_gnupg

Unlock GnuPG keys on login

pkgs.pam_mount

PAM module to mount volumes for a user session

pkgs.pam_mysql

PAM authentication module against a MySQL database

pkgs.pam_pgsql

Support to authenticate against PostgreSQL for PAM-enabled appliations

pkgs.pamtester

Utility program to test the PAM facility

pkgs.pam_ccreds

PAM module to locally authenticate using an enterprise identity when the network is unavailable

pkgs.pam_mktemp

PAM for login service to provide per-user private directories

pkgs.pam_rundir

Provide user runtime directory on Linux systems

pkgs.pam_tmpdir

PAM module for creating safe per-user temporary directories

pkgs.yubico-pam

Yubico PAM module

pkgs.pam-watchid

PAM plugin module that allows the Apple Watch to be used for authentication

pkgs.apparmor-pam

Mandatory access control system - PAM service

pkgs.opam-publish

Tool to ease contributions to opam repositories

pkgs.pam-reattach

Reattach to the user's GUI session on macOS during authentication (for Touch ID support in tmux)

pkgs.spamassassin

Open-Source Spam Filter

pkgs.nss_pam_ldapd

LDAP identity and authentication for NSS/PAM

pkgs.libpam-wrapper

Wrapper for testing PAM modules

pkgs.opam-installer

Handle (un)installation from opam install files

pkgs.pam-honeycreds

PAM module that sends warnings when fake passwords are used

pkgs.rspamd-trainer

Grabs messages from a spam mailbox via IMAP and feeds them to Rspamd for training

pkgs.pam_ssh_agent_auth

PAM module for authentication through the SSH agent

pkgs.decode-spam-headers

Script that helps you understand why your E-Mail ended up in Spam

pkgs.haskellPackages.pam

Haskell binding for C PAM API

pkgs.luaPackages.lua-pam

Lua module for PAM authentication

pkgs.google-authenticator

Two-step verification, with pam module

pkgs.lua51Packages.lua-pam

Lua module for PAM authentication

pkgs.lua52Packages.lua-pam

Lua module for PAM authentication

pkgs.lua53Packages.lua-pam

Lua module for PAM authentication

pkgs.kdePackages.kwallet-pam

PAM Integration with KWallet - Unlock KWallet when you login

pkgs.opensmtpd-filter-rspamd

OpenSMTPD filter integration for the Rspamd daemon

pkgs.python312Packages.pamqp

RabbitMQ Focused AMQP low-level library

pkgs.python313Packages.pamqp

RabbitMQ Focused AMQP low-level library

pkgs.python312Packages.pamela

PAM interface using ctypes

pkgs.python313Packages.pamela

PAM interface using ctypes

pkgs.stalwart-mail-spam-filter

Secure & modern all-in-one mail server Stalwart (spam-filter module)

pkgs.python312Packages.pypamtest

Wrapper for testing PAM modules

pkgs.python313Packages.pypamtest

Wrapper for testing PAM modules

pkgs.python312Packages.python-pam

Python pam module

pkgs.python313Packages.python-pam

Python pam module

pkgs.wordpressPackages.plugins.antispam-bee

pkgs.matrix-synapse-plugins.matrix-synapse-pam

PAM auth provider for the Synapse Matrix server

pkgs.matrix-synapse-plugins.synapse-http-antispam

Synapse module that forwards spam checking to an HTTP server

pkgs.matrix-synapse-plugins.matrix-synapse-mjolnir-antispam

AntiSpam / Banlist plugin to be used with mjolnir

pkgs.vscode-extensions.fabiospampinato.vscode-open-in-github

VS Code extension to open the current project or file in github.com
Package maintainers: 55
CVE-2024-6519
8.2 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): HIGH
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 1 month, 2 weeks ago
Qemu: scsi: lsi53c895a: use-after-free local privilege escalation vulnerability

A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape.

qemu
qemu-kvm
qemu-kvm-ma
virt:av/qemu-kvm
virt:rhel/qemu-kvm

pkgs.qemu

Generic and open source machine emulator and virtualizer

pkgs.qemu_kvm

Generic and open source machine emulator and virtualizer

pkgs.qemu_xen

Generic and open source machine emulator and virtualizer

pkgs.qemu-user

QEMU User space emulator - launch executables compiled for one CPU on another CPU

pkgs.qemu_full

Generic and open source machine emulator and virtualizer

pkgs.qemu_test

Generic and open source machine emulator and virtualizer

pkgs.qemu-utils

Generic and open source machine emulator and virtualizer

pkgs.qemu-python-utils

Python tooling used by the QEMU project to build, configure, and test QEMU

pkgs.armTrustedFirmwareQemu

Reference implementation of secure world software for ARMv8-A

pkgs.python312Packages.qemu

Python tooling used by the QEMU project to build, configure, and test QEMU

pkgs.python313Packages.qemu

Python tooling used by the QEMU project to build, configure, and test QEMU

pkgs.python312Packages.qemu-qmp

Asyncio library for communicating with QEMU Monitor Protocol (“QMP”) servers

pkgs.python313Packages.qemu-qmp

Asyncio library for communicating with QEMU Monitor Protocol (“QMP”) servers
Package maintainers: 11