Nixpkgs Security Tracker

Login with GitHub

Automatically generated suggestions

to queue a suggestion for refinement.

to remove a suggestion from the queue.

CVE-2023-32549
6.8 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): NONE
created 3 months ago
Landscape insecure token generation

Landscape cryptographic keys were insecurely generated with a weak pseudo-random generator.

Affected products

landscape
  • <19.10.05

Matching in nixpkgs

pkgs.terraform-landscape

Improve Terraform's plan output to be easier to read and understand

pkgs.ue4demos.landscape_mountains

Unreal Engine 4 Linux demos

  • nixos-unstable ???
    • nixpkgs-unstable

Package maintainers: 3

CVE-2023-20519
created 3 months ago
A Use-After-Free vulnerability in the management of an SNP guest …

A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity.

Affected products

PI
  • ==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

pkgs.haskellPackages.hsPID

PID control loop

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

pkgs.perlPackages.ProcPIDFile

Manage process id files

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

pkgs.perl538Packages.ProcPIDFile

Manage process id files

pkgs.perl540Packages.ProcPIDFile

Manage process id files

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

CVE-2023-24415
5.4 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 3 months ago
WordPress AI ChatBot plugin <= 4.2.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud AI ChatBot plugin <= 4.2.8 versions.

Affected products

chatbot
  • =<4.2.8

Matching in nixpkgs

pkgs.gnomeExtensions.penguin-ai-chatbot

A GNOME Shell extension that provides a chatbot interface using various LLM providers, including Anthropic, OpenAI, Gemini, and OpenRouter. Features include multiple provider support, customizable models, chat history, customizable appearance, a keyboard shortcut, and copy-to-clipboard functionality.

Package maintainers: 1

CVE-2024-3056
4.8 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 3 months ago
Podman: containers in shared ipc namespace are vulnerable to denial of service attack

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources until it is out-of-memory (OOM) killed. While the malicious container's cgroup will be removed, the IPC resources it created are not. Those resources are tied to the IPC namespace that will not be removed until all containers using it are stopped, and one non-malicious container is holding the namespace open. The malicious container is restarted, either automatically or by attacker control, repeating the process and increasing the amount of memory consumed. With a container configured to restart always, such as `podman run --restart=always`, this can result in a memory-based denial of service of the system.

Affected products

kernel
podman
  • ==5.0.0
kernel-rt
container-tools:4.0/podman
container-tools:rhel8/podman

Matching in nixpkgs

pkgs.podman

Program for managing pods, containers and container images

pkgs.linux-doc

Linux kernel html documentation

pkgs.coq-kernel

  • nixos-unstable ???
    • nixpkgs-unstable

pkgs.podman-tui

Podman Terminal UI

pkgs.kernelshark

GUI for trace-cmd which is an interface for the Linux kernel ftrace subsystem

pkgs.podman-bootc

Streamlining podman+bootc interactions

pkgs.podman-compose

Implementation of docker-compose with podman backend

pkgs.podman-desktop

Graphical tool for developing on containers and Kubernetes

pkgs.nomad-driver-podman

Podman task driver for Nomad

pkgs.linuxPackages.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.kernel-hardening-checker

Tool for checking the security hardening options of the Linux kernel

pkgs.linuxPackages.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.python312Packages.podman

Python bindings for Podman's RESTful API

pkgs.python313Packages.podman

Python bindings for Podman's RESTful API

pkgs.linuxPackages_lqx.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_zen.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.python312Packages.kernels

Load compute kernels from the Huggingface Hub

pkgs.python313Packages.kernels

Load compute kernels from the Huggingface Hub

pkgs.linuxPackages.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages-libre.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages-libre.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.python312Packages.ipykernel

IPython Kernel for Jupyter

pkgs.python313Packages.ipykernel

IPython Kernel for Jupyter

pkgs.linuxPackages_latest.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_lqx.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxPackages_xanmod.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_xanmod.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_zen.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.python312Packages.metakernel

Jupyter/IPython Kernel Tools

pkgs.python312Packages.nix-kernel

Simple jupyter kernel for nix-repl

pkgs.python313Packages.metakernel

Jupyter/IPython Kernel Tools

pkgs.python313Packages.nix-kernel

Simple jupyter kernel for nix-repl

pkgs.python312Packages.bash-kernel

Bash Kernel for Jupyter

pkgs.python313Packages.bash-kernel

Bash Kernel for Jupyter

pkgs.haskellPackages.ipython-kernel

A library for creating kernels for IPython frontends

pkgs.linuxPackages-libre.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxPackages_lqx.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_zen.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.rocmPackages.composable_kernel

Performance portable programming model for machine learning tensor operators

pkgs.linuxPackages_latest.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxPackages_xanmod.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.gnomeExtensions.kernel-indicator

Display the kernel version in the top bar

pkgs.linuxPackages-libre.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.python312Packages.ansible-kernel

Ansible kernel for Jupyter

pkgs.python312Packages.spyder-kernels

Jupyter kernels for Spyder's console

pkgs.python313Packages.ansible-kernel

Ansible kernel for Jupyter

pkgs.python313Packages.spyder-kernels

Jupyter kernels for Spyder's console

pkgs.rocmPackages_6.composable_kernel

Performance portable programming model for machine learning tensor operators

pkgs.linuxPackages_latest.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_xanmod.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_latest-libre.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.python312Packages.jupyter-c-kernel

Minimalistic C kernel for Jupyter

pkgs.python313Packages.jupyter-c-kernel

Minimalistic C kernel for Jupyter

pkgs.linuxPackages_xanmod_stable.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_latest-libre.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_5_4.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_4.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_1.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_1.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_6.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_6.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_lqx.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_zen.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_xanmod_stable.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_5_10.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_10.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_15.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_15.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_16.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_latest-libre.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_libre.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_libre.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxPackages_xanmod_stable.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.home-assistant-component-tests.hardkernel

Open source home automation that puts local control and privacy first

pkgs.linuxKernel.packages.linux_5_4.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_6_1.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_6_6.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_lqx.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_xanmod.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_xanmod.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_zen.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_5_10.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_5_15.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_6_12.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_6_16.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_5_4.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_1.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_6.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_hardened.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_hardened.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_libre.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_lqx.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_zen.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_10.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_5_15.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_16.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_xanmod.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_libre.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_hardened.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_xanmod.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_latest_libre.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12_hardened.zfs_2_2

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12_hardened.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_hardened.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_xanmod_stable.zfs_2_3

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_latest_libre.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_6_12_hardened.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_xanmod_stable.linux-gpib

Support package for GPIB (IEEE 488) hardware

pkgs.linuxKernel.packages.linux_latest_libre.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_6_12_hardened.zfs_unstable

ZFS Filesystem Linux Kernel Module

pkgs.linuxKernel.packages.linux_xanmod_stable.zfs_unstable

ZFS Filesystem Linux Kernel Module

Package maintainers: 26

CVE-2023-1523
10.0 CRITICAL
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 3 months ago
Using the TIOCLINUX ioctl request, a malicious snap could inject …

Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. Graphical terminal emulators like xterm, gnome-terminal and others are not affected - this can only be exploited when snaps are run on a virtual console.

Affected products

snapd
  • ==2.59.5

Matching in nixpkgs

pkgs.snapdragon-profiler

Profiler for Android devices running Snapdragon chips

CVE-2023-23699
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 3 months ago
WordPress Progress Bar Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Chris Reynolds Progress Bar plugin <= 2.2.1 versions.

Affected products

progress-bar
  • =<2.2.1

Matching in nixpkgs

pkgs.haskellPackages.terminal-progress-bar

A progress bar in the terminal

CVE-2023-2968
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
created 3 months ago
Undefined variable usage in npm package "proxy" leads to remote denial of service

A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.

Affected products

proxy
  • <2.1.1

Matching in nixpkgs

pkgs.tproxy

CLI tool to proxy and analyze TCP connections

pkgs._3proxy

Tiny free proxy server

pkgs.g3proxy

Enterprise-oriented Generic Proxy Solutions

pkgs.gvproxy

Network stack based on gVisor

pkgs.haproxy

Reliable, high performance TCP/HTTP load balancer

pkgs.ldproxy

Linker Proxy: a simple tool to forward linker arguments to the actual linker executable

pkgs.moproxy

Transparent TCP to SOCKSv5/HTTP proxy on Linux written in Rust

pkgs.ocproxy

OpenConnect proxy

pkgs.reproxy

Simple edge server / reverse proxy

pkgs.s3proxy

Access other storage backends via the S3 API

pkgs.dnsproxy

Simple DNS proxy with DoH, DoT, and DNSCrypt support

pkgs.imgproxy

Fast and secure on-the-fly image processing server written in Go

pkgs.libproxy

Library that provides automatic proxy configuration management

pkgs.mapproxy

Open source proxy for geospatial data

pkgs.pacproxy

No-frills local HTTP proxy server powered by a proxy auto-config (PAC) file

pkgs.proxyman

Capture, inspect, and manipulate HTTP(s) requests/responses with ease

pkgs.proxypin

Capture HTTP(S) traffic software

pkgs.proxysql

High-performance MySQL proxy

pkgs.sniproxy

Transparent TLS and HTTP layer 4 proxy with SNI support

pkgs.xssproxy

Forward freedesktop.org Idle Inhibition Service calls to Xss

pkgs.dkimproxy

SMTP-proxy that signs and/or verifies emails

pkgs.igmpproxy

Daemon that routes multicast using IGMP forwarding

pkgs.mcp-proxy

MCP server which proxies other MCP servers from stdio to SSE or from SSE to stdio

pkgs.mitmproxy

Man-in-the-middle proxy

pkgs.proxyauth

Proxy Authentication Token - Fast authentication gateway for backend APIs

pkgs.ssl-proxy

Simple single-command SSL reverse proxy with autogenerated certificates (LetsEncrypt, self-signed)

pkgs.tinyproxy

Light-weight HTTP/HTTPS proxy daemon for POSIX operating systems

pkgs.toxiproxy

Proxy for for simulating network conditions

pkgs.tun2proxy

Tunnel (TUN) interface for SOCKS and HTTP proxies

pkgs.wireproxy

Wireguard client that exposes itself as a socks5 proxy

pkgs.localproxy

AWS IoT Secure Tunneling Local Proxy Reference Implementation C++

pkgs.nntp-proxy

Simple NNTP proxy with SSL support

pkgs.netns-proxy

Simple and slim proxy to forward ports from and into linux network namespaces

pkgs.proxychains

Proxifier for SOCKS proxies

pkgs.radsecproxy

Generic RADIUS proxy that supports both UDP and TLS (RadSec) RADIUS transports

pkgs.simpleproxy

Simple TCP proxy

pkgs.trevorproxy

Module to rotate the source IP address via SSH proxies and other methods

pkgs.vouch-proxy

SSO and OAuth / OIDC login solution for NGINX using the auth_request module

pkgs.xmrig-proxy

Monero (XMR) Stratum protocol proxy

pkgs.alpaca-proxy

HTTP forward proxy with PAC and NTLM authentication support

pkgs.mtprotoproxy

Async MTProto proxy for Telegram

pkgs.oauth2-proxy

Reverse proxy that provides authentication with Google, Github, or other providers

pkgs.xorg.smproxy

pkgs.doh-proxy-rust

Fast, mature, secure DoH server proxy written in Rust

pkgs.heimdall-proxy

Cloud native Identity Aware Proxy and Access Control Decision service

pkgs.proxychains-ng

Preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies

pkgs.xdg-dbus-proxy

DBus proxy for Flatpak and others

pkgs.dnscrypt-proxy2

Tool that provides secure DNS resolution

pkgs.iio-sensor-proxy

Proxy for sending IIO sensor data to D-Bus

pkgs.mitmproxy2swagger

Tool to automagically reverse-engineer REST APIs

pkgs.zabbix.proxy-mysql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix.proxy-pgsql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.immich-public-proxy

Share your Immich photos and albums in a safe way without exposing your Immich instance to the public

pkgs.nix-store-gcs-proxy

HTTP nix store that proxies requests to Google Storage

pkgs.zabbix.proxy-sqlite

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix60.proxy-mysql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix60.proxy-pgsql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix70.proxy-mysql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix70.proxy-pgsql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix72.proxy-mysql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix72.proxy-pgsql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix74.proxy-mysql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix74.proxy-pgsql

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.haskellPackages.proxy

proxy helpers

pkgs.zabbix60.proxy-sqlite

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix70.proxy-sqlite

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix72.proxy-sqlite

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.zabbix74.proxy-sqlite

Enterprise-class open source distributed monitoring solution (client-server proxy)

pkgs.aws-codeartifact-proxy

AWS CodeArtifact proxy to allow unauthenticated read access

pkgs.google-cloud-sql-proxy

Utility for ensuring secure connections to Google Cloud SQL instances

pkgs.ios-webkit-debug-proxy

DevTools proxy (Chrome Remote Debugging Protocol) for iOS devices (Safari Remote Web Inspector)

pkgs.configurable-http-proxy

Configurable-on-the-fly HTTP Proxy

pkgs.authentik-outposts.proxy

Authentik proxy outpost which is used for HTTP reverse proxy authentication

pkgs.haskellPackages.ip2proxy

IP2Proxy Haskell package for proxy detection

pkgs.python312Packages.pproxy

Proxy server that can tunnel among remote servers by regex rules

pkgs.python313Packages.pproxy

Proxy server that can tunnel among remote servers by regex rules

pkgs.google-alloydb-auth-proxy

Utility for connecting securely to your AlloyDB instances

pkgs.python312Packages.proxy-db

Module to manage proxies in a local database

pkgs.python312Packages.proxy-py

Python proxy framework

pkgs.python313Packages.proxy-db

Module to manage proxies in a local database

pkgs.python313Packages.proxy-py

Python proxy framework

pkgs.prometheus-haproxy-exporter

HAProxy Exporter for the Prometheus monitoring system

pkgs.python312Packages.mitmproxy

Man-in-the-middle proxy

pkgs.python313Packages.mitmproxy

Man-in-the-middle proxy

pkgs.gnomeExtensions.toggle-proxy

Toggle v2ray proxy

pkgs.haskellPackages.gopher-proxy

proxy gopher over http

pkgs.python312Packages.free-proxy

Free proxy scraper written in python

pkgs.python312Packages.tiny-proxy

SOCKS5/SOCKS4/HTTP proxy server

pkgs.python312Packages.wsgiproxy2

HTTP proxying tools for WSGI apps

pkgs.python312Packages.zope-proxy

Generic Transparent Proxies

pkgs.python313Packages.free-proxy

Free proxy scraper written in python

pkgs.python313Packages.tiny-proxy

SOCKS5/SOCKS4/HTTP proxy server

pkgs.python313Packages.wsgiproxy2

HTTP proxying tools for WSGI apps

pkgs.python313Packages.zope-proxy

Generic Transparent Proxies

pkgs.python312Packages.proxy-tools

Simple (hopefuly useful) Proxy (as in the GoF design pattern) implementation for Python

pkgs.python312Packages.trevorproxy

Module to rotate the source IP address via SSH proxies and other methods

pkgs.python313Packages.proxy-tools

Simple (hopefuly useful) Proxy (as in the GoF design pattern) implementation for Python

pkgs.python313Packages.trevorproxy

Module to rotate the source IP address via SSH proxies and other methods

pkgs.gnomeExtensions.proxy-switcher

Switches between the system proxy settings profiles defined in Network Settings.

pkgs.python312Packages.mitmproxy-rs

Rust bits in mitmproxy

pkgs.python313Packages.mitmproxy-rs

Rust bits in mitmproxy

pkgs.haskellPackages.inspection-proxy

A simple proxy for debugging plaintext protocols communication

pkgs.python312Packages.mitmproxy-linux

Linux Rust bits in mitmproxy

pkgs.python312Packages.mitmproxy-macos

MacOS Rust bits in mitmproxy

pkgs.python313Packages.mitmproxy-linux

Linux Rust bits in mitmproxy

pkgs.python313Packages.mitmproxy-macos

MacOS Rust bits in mitmproxy

pkgs.haskellPackages.haskell-proxy-list

Simple library for retrieving proxy servers info from https://proxy-list.org

pkgs.haskellPackages.http-reverse-proxy

Reverse proxy HTTP requests, either over raw sockets or with WAI

pkgs.haskellPackages.io-streams-haproxy

HAProxy protocol 1.5 support for io-streams

pkgs.python312Packages.authcaptureproxy

Proxy to capture authentication information from a webpage

pkgs.python313Packages.authcaptureproxy

Proxy to capture authentication information from a webpage

pkgs.python312Packages.lazy-object-proxy

Fast and thorough lazy object proxy

pkgs.python313Packages.lazy-object-proxy

Fast and thorough lazy object proxy

pkgs.python312Packages.flask-reverse-proxy-fix

Python Flask middleware for applications running under a reverse proxy

pkgs.python313Packages.flask-reverse-proxy-fix

Python Flask middleware for applications running under a reverse proxy

pkgs.home-assistant-custom-components.hass_web_proxy

Home Assistant Web Proxy

Package maintainers: 80

CVE-2023-49166
7.6 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): HIGH
  • User interaction (UI): NONE
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
created 3 months ago
WordPress MSync Plugin <= 1.0.0 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Magic Logix MSync.This issue affects MSync: from n/a through 1.0.0.

Affected products

msync
  • =<1.0.0

Matching in nixpkgs

pkgs.lvmsync

Optimised synchronisation of LVM snapshots over a network

pkgs.pimsync

Synchronise calendars and contacts

Package maintainers: 3

CVE-2023-38000
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 3 months ago
Auth. Stored Cross-Site Scripting (XSS) vulnerability in WordPress core and Gutenberg plugin via Navigation Links Block

Auth. Stored (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress core 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.1.3, from 6.0 through 6.0.5, from 5.9 through 5.9.7 and Gutenberg plugin <= 16.8.0 versions.

Affected products

gutenberg
  • =<16.8.0

Matching in nixpkgs

pkgs.wordpressPackages.plugins.gutenberg

pkgs.haskellPackages.gutenberg-fibonaccis

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

Package maintainers: 2

CVE-2023-40680
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): HIGH
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
created 3 months ago
WordPress Yoast SEO Plugin <= 21.0 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Team Yoast Yoast SEO allows Stored XSS.This issue affects Yoast SEO: from n/a through 21.0.

Affected products

wordpress-seo
  • =<21.0

Matching in nixpkgs

pkgs.wordpressPackages.plugins.wordpress-seo