Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed
(not in Nixpkgs)
Permalink CVE-2024-28765
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): Low (L)
  • Integrity (I): None (N)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): None (N)
updated 2 weeks, 2 days ago by @LeSuisse Activity log
  • Created suggestion 2 weeks, 3 days ago
  • @LeSuisse dismissed (not in Nixpkgs) 2 weeks, 2 days ago
Security vulnerability was found in IBM Security Directory Integrator

IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

References

Affected products

SDI
  • =<7.2.0.14
Security Directory Integrator
  • =<10.0.0.2

Matching in nixpkgs

pkgs.bsdiff

Efficient binary diff/patch tool

  • nixos-unstable 4.3
    • nixpkgs-unstable 4.3
    • nixos-unstable-small 4.3

pkgs.nsdiff

Create a "nsupdate" script from DNS zone file differences

  • nixos-unstable 1.85
    • nixpkgs-unstable 1.85
    • nixos-unstable-small 1.85

pkgs.sysdig

Tracepoint-based system tracing tool for Linux (with clients for other OSes)

pkgs.dnsdiag

DNS Measurement, Troubleshooting and Security Auditing Toolset

pkgs.vipsdisp

Tiny image viewer with libvips

Package maintainers