Nixpkgs security tracker
7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
37 packages
- usbredir
- reredirect
- libredirect
- perlPackages.FileShareDir
- nixos-render-docs-redirects
- perl538Packages.FileShareDir
- perl540Packages.FileShareDir
- perlPackages.FileShareDirDist
- perlPackages.TestFileShareDir
- perl538Packages.FileShareDirDist
- perl538Packages.TestFileShareDir
- perl540Packages.FileShareDirDist
- perl540Packages.TestFileShareDir
- perlPackages.FileShareDirInstall
- rubyPackages.jekyll-redirect-from
- gnomeExtensions.disable-unredirect
- python312Packages.mkdocs-redirects
- python313Packages.mkdocs-redirects
- python314Packages.mkdocs-redirects
- perl538Packages.FileShareDirInstall
- perl540Packages.FileShareDirInstall
- python312Packages.sphinx-reredirects
- python313Packages.sphinx-reredirects
- python314Packages.sphinx-reredirects
- haskellPackages.system-posix-redirect
- python312Packages.sphinxext-rediraffe
- python313Packages.sphinxext-rediraffe
- python314Packages.sphinxext-rediraffe
- rubyPackages_3_1.jekyll-redirect-from
- rubyPackages_3_2.jekyll-redirect-from
- rubyPackages_3_3.jekyll-redirect-from
- rubyPackages_3_4.jekyll-redirect-from
- rubyPackages_4_0.jekyll-redirect-from
- perlPackages.PlackMiddlewareFixMissingBodyInRedirect
- gnomeExtensions.disable-unredirect-fullscreen-windows
- perl538Packages.PlackMiddlewareFixMissingBodyInRedirect
- perl540Packages.PlackMiddlewareFixMissingBodyInRedirect
Redir 3.3 - Denial of Service
Redir 3.3 contains a stack overflow vulnerability in the doproxyconnect() function that allows attackers to crash the application by sending oversized input. Attackers can exploit the sprintf() buffer without proper length checking to overwrite memory and cause a segmentation fault, resulting in program termination.
References
-
ExploitDB-47919 exploit
-
Redir Project GitHub Repository product
-
VulnCheck Advisory: Redir 3.3 - Denial of Service third-party-advisory
Affected products
- ==3.3
Matching in nixpkgs
Ignored packages (37)
pkgs.usbredir
USB traffic redirection protocol
pkgs.reredirect
Tool to dynamicly redirect outputs of a running process
pkgs.libredirect
LD_PRELOAD library to intercept and rewrite the paths in glibc calls
pkgs.perlPackages.FileShareDir
Locate per-dist and per-module shared files
pkgs.nixos-render-docs-redirects
Redirects manipulation for nixos manuals
pkgs.perl538Packages.FileShareDir
Locate per-dist and per-module shared files
pkgs.perl540Packages.FileShareDir
Locate per-dist and per-module shared files
pkgs.perlPackages.FileShareDirDist
Locate per-dist shared files
pkgs.perlPackages.TestFileShareDir
Create a Fake ShareDir for your modules for testing
pkgs.perl538Packages.FileShareDirDist
Locate per-dist shared files
pkgs.perl538Packages.TestFileShareDir
Create a Fake ShareDir for your modules for testing
pkgs.perl540Packages.FileShareDirDist
Locate per-dist shared files
pkgs.perl540Packages.TestFileShareDir
Create a Fake ShareDir for your modules for testing
pkgs.perlPackages.FileShareDirInstall
Install shared files
pkgs.rubyPackages.jekyll-redirect-from
None
pkgs.gnomeExtensions.disable-unredirect
Disables unredirect fullscreen
pkgs.python312Packages.mkdocs-redirects
Open source plugin for Mkdocs page redirects
pkgs.python313Packages.mkdocs-redirects
Open source plugin for Mkdocs page redirects
pkgs.python314Packages.mkdocs-redirects
Open source plugin for Mkdocs page redirects
pkgs.perl538Packages.FileShareDirInstall
Install shared files
pkgs.perl540Packages.FileShareDirInstall
Install shared files
pkgs.python312Packages.sphinx-reredirects
Handles redirects for moved pages in Sphinx documentation projects
pkgs.python313Packages.sphinx-reredirects
Handles redirects for moved pages in Sphinx documentation projects
pkgs.python314Packages.sphinx-reredirects
Handles redirects for moved pages in Sphinx documentation projects
pkgs.haskellPackages.system-posix-redirect
A toy module to temporarily redirect a program's stdout
pkgs.python312Packages.sphinxext-rediraffe
Sphinx extension to redirect files
pkgs.python313Packages.sphinxext-rediraffe
Sphinx extension to redirect files
pkgs.python314Packages.sphinxext-rediraffe
Sphinx extension to redirect files
pkgs.rubyPackages_3_1.jekyll-redirect-from
None
pkgs.rubyPackages_3_2.jekyll-redirect-from
None
pkgs.rubyPackages_3_3.jekyll-redirect-from
None
pkgs.rubyPackages_3_4.jekyll-redirect-from
None
pkgs.rubyPackages_4_0.jekyll-redirect-from
None
pkgs.perlPackages.PlackMiddlewareFixMissingBodyInRedirect
Plack::Middleware which sets body for redirect response, if it's not already set
pkgs.gnomeExtensions.disable-unredirect-fullscreen-windows
Disables unredirect fullscreen windows in gnome-shell to workaround a bug when clicking on full screen windows goes through to windows underneath. This also happens to fix screen tearing in full-screen windows.
pkgs.perl538Packages.PlackMiddlewareFixMissingBodyInRedirect
Plack::Middleware which sets body for redirect response, if it's not already set
pkgs.perl540Packages.PlackMiddlewareFixMissingBodyInRedirect
Plack::Middleware which sets body for redirect response, if it's not already set