Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed
Permalink CVE-2026-1174
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 4 months ago by @LeSuisse Activity log
  • Created suggestion 4 months ago
  • @LeSuisse ignored
    45 packages
    • mprime
    • primecount
    • primesieve
    • prime-server
    • courier-prime
    • CuboCore.libcprime
    • quartus-prime-lite
    • rubyPackages.prime
    • dolphin-emu-primehack
    • haskellPackages.primes
    • rubyPackages_3_1.prime
    • rubyPackages_3_2.prime
    • rubyPackages_3_3.prime
    • rubyPackages_3_4.prime
    • rubyPackages_3_5.prime
    • haskellPackages.nth-prime
    • python312Packages.msprime
    • python312Packages.primepy
    • python312Packages.primer3
    • python313Packages.msprime
    • python313Packages.primepy
    • python313Packages.primer3
    • haskellPackages.antiprimes
    • haskellPackages.primecount
    • haskellPackages.primesieve
    • perlPackages.MathPrimeUtil
    • akkuPackages.chibi-math-prime
    • haskellPackages.prelude-prime
    • perl538Packages.MathPrimeUtil
    • perl540Packages.MathPrimeUtil
    • perlPackages.MathPrimeUtilGMP
    • perlPackages.MathProvablePrime
    • python312Packages.primecountpy
    • python313Packages.primecountpy
    • haskellPackages.opentheory-prime
    • perl538Packages.MathPrimeUtilGMP
    • perl540Packages.MathPrimeUtilGMP
    • rubyPackages.jekyll-theme-primer
    • perl538Packages.MathProvablePrime
    • perl540Packages.MathProvablePrime
    • rubyPackages_3_1.jekyll-theme-primer
    • rubyPackages_3_2.jekyll-theme-primer
    • rubyPackages_3_3.jekyll-theme-primer
    • rubyPackages_3_4.jekyll-theme-primer
    • rubyPackages_3_5.jekyll-theme-primer
    4 months ago
  • @LeSuisse dismissed 4 months ago
birkir prime GraphQL Alias graphql resource consumption

A vulnerability was determined in birkir prime up to 0.4.0.beta.0. This affects an unknown function of the file /graphql of the component GraphQL Alias Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

prime
  • ==0.4.0.beta
Ignored packages (45)

pkgs.primecount

Fast prime counting function implementations

  • nixos-unstable 7.20
    • nixpkgs-unstable 7.20
    • nixos-unstable-small 7.20

pkgs.prime-server

Non-blocking (web)server API for distributed computing and SOA based on zeromq

pkgs.CuboCore.libcprime

Library for bookmarking, saving recent activites, managing settings of C-Suite

pkgs.python312Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3

pkgs.python313Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3 
Impacted software not present in nixpkgs