NIXPKGS-2026-0188

GitHub issue published on 8 Feb 2026

Permalink CVE-2025-15564

updated 3 days, 13 hours ago by @LeSuisse Activity log

Created automatic suggestion 4 days, 7 hours ago
@LeSuisse removed
2 packages
- python312Packages.python-mapnik
- python313Packages.python-mapnik
3 days, 13 hours ago
@LeSuisse accepted 3 days, 13 hours ago
@LeSuisse published on GitHub 3 days, 13 hours ago

Mapnik value.cpp operator divide by zero

A vulnerability has been found in Mapnik up to 4.2.0. This vulnerability affects the function mapnik::detail::mod<...>::operator of the file src/value.cpp. The manipulation leads to divide by zero. The attack needs to be performed locally. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

Mapnik

==4.2.0
==4.1
==4.0

Matching in nixpkgs

pkgs.mapnik

Open source toolkit for developing mapping applications

nixos-unstable 4.2.1
- nixpkgs-unstable 4.2.1
- nixos-unstable-small 4.2.1
nixos-25.11 4.1.4
- nixos-25.11-small 4.1.4
- nixpkgs-25.11-darwin 4.1.4

Ignored packages (2)

pkgs.python312Packages.python-mapnik

Python bindings for Mapnik

pkgs.python313Packages.python-mapnik