Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed
Permalink CVE-2026-1173
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 4 months ago by @LeSuisse Activity log
  • Created suggestion 4 months ago
  • @LeSuisse ignored
    45 packages
    • mprime
    • primecount
    • primesieve
    • prime-server
    • courier-prime
    • CuboCore.libcprime
    • quartus-prime-lite
    • rubyPackages.prime
    • dolphin-emu-primehack
    • haskellPackages.primes
    • rubyPackages_3_1.prime
    • rubyPackages_3_2.prime
    • rubyPackages_3_3.prime
    • rubyPackages_3_4.prime
    • rubyPackages_3_5.prime
    • haskellPackages.nth-prime
    • python312Packages.msprime
    • python312Packages.primepy
    • python312Packages.primer3
    • python313Packages.msprime
    • python313Packages.primepy
    • python313Packages.primer3
    • haskellPackages.antiprimes
    • haskellPackages.primecount
    • haskellPackages.primesieve
    • perlPackages.MathPrimeUtil
    • akkuPackages.chibi-math-prime
    • haskellPackages.prelude-prime
    • perl538Packages.MathPrimeUtil
    • perl540Packages.MathPrimeUtil
    • perlPackages.MathPrimeUtilGMP
    • perlPackages.MathProvablePrime
    • python312Packages.primecountpy
    • python313Packages.primecountpy
    • haskellPackages.opentheory-prime
    • perl538Packages.MathPrimeUtilGMP
    • perl540Packages.MathPrimeUtilGMP
    • rubyPackages.jekyll-theme-primer
    • perl538Packages.MathProvablePrime
    • perl540Packages.MathProvablePrime
    • rubyPackages_3_1.jekyll-theme-primer
    • rubyPackages_3_2.jekyll-theme-primer
    • rubyPackages_3_3.jekyll-theme-primer
    • rubyPackages_3_4.jekyll-theme-primer
    • rubyPackages_3_5.jekyll-theme-primer
    4 months ago
  • @LeSuisse dismissed 4 months ago
birkir prime GraphQL Array Based Query Batch graphql denial of service

A vulnerability was found in birkir prime up to 0.4.0.beta.0. The impacted element is an unknown function of the file /graphql of the component GraphQL Array Based Query Batch Handler. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

prime
  • ==0.4.0.beta
Ignored packages (45)

pkgs.primecount

Fast prime counting function implementations

  • nixos-unstable 7.20
    • nixpkgs-unstable 7.20
    • nixos-unstable-small 7.20

pkgs.prime-server

Non-blocking (web)server API for distributed computing and SOA based on zeromq

pkgs.CuboCore.libcprime

Library for bookmarking, saving recent activites, managing settings of C-Suite

pkgs.python312Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3

pkgs.python313Packages.primepy

This module contains several useful functions to work with prime numbers. from primePy import primes

  • nixos-unstable 1.3
    • nixpkgs-unstable 1.3
    • nixos-unstable-small 1.3 
Impacted software not present in nixpkgs