Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed
Permalink CVE-2026-1172
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 4 months ago by @LeSuisse Activity log
  • Created suggestion 4 months ago
  • @LeSuisse ignored
    45 packages
    • mprime
    • primecount
    • primesieve
    • prime-server
    • courier-prime
    • CuboCore.libcprime
    • quartus-prime-lite
    • rubyPackages.prime
    • dolphin-emu-primehack
    • haskellPackages.primes
    • rubyPackages_3_1.prime
    • rubyPackages_3_2.prime
    • rubyPackages_3_3.prime
    • rubyPackages_3_4.prime
    • rubyPackages_3_5.prime
    • haskellPackages.nth-prime
    • python312Packages.msprime
    • python312Packages.primepy
    • python312Packages.primer3
    • python313Packages.msprime
    • python313Packages.primepy
    • python313Packages.primer3
    • haskellPackages.antiprimes
    • haskellPackages.primecount
    • haskellPackages.primesieve
    • perlPackages.MathPrimeUtil
    • akkuPackages.chibi-math-prime
    • haskellPackages.prelude-prime
    • perl538Packages.MathPrimeUtil
    • perl540Packages.MathPrimeUtil
    • perlPackages.MathPrimeUtilGMP
    • perlPackages.MathProvablePrime
    • python312Packages.primecountpy
    • python313Packages.primecountpy
    • haskellPackages.opentheory-prime
    • perl538Packages.MathPrimeUtilGMP
    • perl540Packages.MathPrimeUtilGMP
    • rubyPackages.jekyll-theme-primer
    • perl538Packages.MathProvablePrime
    • perl540Packages.MathProvablePrime
    • rubyPackages_3_1.jekyll-theme-primer
    • rubyPackages_3_2.jekyll-theme-primer
    • rubyPackages_3_3.jekyll-theme-primer
    • rubyPackages_3_4.jekyll-theme-primer
    • rubyPackages_3_5.jekyll-theme-primer
    4 months ago
  • @LeSuisse dismissed 4 months ago
birkir prime GraphQL Directive graphql denial of service

A vulnerability has been found in birkir prime up to 0.4.0.beta.0. The affected element is an unknown function of the file /graphql of the component GraphQL Directive Handler. The manipulation leads to denial of service. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

prime
  • ==0.4.0.beta
Ignored packages (45)

pkgs.primecount

Fast prime counting function implementations

  • nixos-unstable 7.20
    • nixpkgs-unstable 7.20
    • nixos-unstable-small 7.20

pkgs.prime-server

Non-blocking (web)server API for distributed computing and SOA based on zeromq

pkgs.CuboCore.libcprime

Library for bookmarking, saving recent activites, managing settings of C-Suite

pkgs.python312Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3

pkgs.python313Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3 
Impacted software not present in nixpkgs