Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed

(not in Nixpkgs)

Permalink CVE-2026-34631

7.8 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

updated 2 weeks ago by @LeSuisse Activity log

Created suggestion 2 weeks ago
@LeSuisse dismissed (not in Nixpkgs) 2 weeks ago

InCopy | Out-of-bounds Write (CWE-787)

InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

References

https://helpx.adobe.com/security/products/incopy/apsb26-33.html vendor-advisory

Affected products

InCopy

=<21.2

Matching in nixpkgs

pkgs.python312Packages.bincopy

Mangling of various file formats that conveys binary information (Motorola S-Record, Intel HEX, TI-TXT, ELF and binary files)

nixos-25.11 20.1.0
- nixos-25.11-small 20.1.0
- nixpkgs-25.11-darwin 20.1.0

pkgs.python313Packages.bincopy

Mangling of various file formats that conveys binary information (Motorola S-Record, Intel HEX, TI-TXT, ELF and binary files)

nixos-unstable 20.1.0
- nixpkgs-unstable 20.1.0
- nixos-unstable-small 20.1.0
nixos-25.11 20.1.0
- nixos-25.11-small 20.1.0
- nixpkgs-25.11-darwin 20.1.0

pkgs.python314Packages.bincopy

Mangling of various file formats that conveys binary information (Motorola S-Record, Intel HEX, TI-TXT, ELF and binary files)

nixos-unstable 20.1.0
- nixpkgs-unstable 20.1.0
- nixos-unstable-small 20.1.0

Package maintainers

@sbruder Simon Bruder <nixos@sbruder.de>
@frogamic Dominic Shelton <frogamic@protonmail.com>