Nixpkgs security tracker

Dismissed

Permalink CVE-2026-56099

6.9 MEDIUM

CVSS version (CVSS): 4.0
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Attack Requirement (AT): None (N)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Vulnerable System Impact Confidentiality (VC): Low (L)
Vulnerable System Impact Integrity (VI): None (N)
Vulnerable System Impact Availability (VA): None (N)
Subsequent System Impact Confidentiality (SC): None (N)
Subsequent System Impact Integrity (SI): None (N)
Subsequent System Impact Availability (SA): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Attack Requirement (MAT): None (N)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
Modified Vulnerable System Impact Integrity (MVI): None (N)
Modified Vulnerable System Impact Availability (MVA): None (N)
Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
Modified Subsequent System Impact Integrity (MSI): Negligible (N)
Modified Subsequent System Impact Availability (MSA): Negligible (N)
Safety (S): Not Defined (X)
Automatable (AU): Not Defined (X)
Recovery (R): Not Defined (X)
Value Density (V): Not Defined (X)
Vulnerability Response Effort (RE): Not Defined (X)
Provider Urgency (U): Not Defined (X)
Confidentiality Req. (CR): Not Defined (X)
Integrity Req. (IR): Not Defined (X)
Availability Req. (AR): Not Defined (X)
Exploit Maturity (E): Not Defined (X)

updated 1 day, 5 hours ago by @LeSuisse Activity log

Created suggestion 1 day, 11 hours ago
@LeSuisse dismissed 1 day, 5 hours ago

OpenBSD mpls_do_error Kernel Stack Memory Disclosure via MPLS Input

OpenBSD before commit 6a23123 (2026-06-18) contains an out-of-bounds read vulnerability in the mpls_do_error function within sys/netmpls/mpls_input.c that allows remote attackers to disclose kernel stack memory by sending crafted MPLS frames with 16 labels and no Bottom-of-Stack bit set.

References

https://pop.argus-systems.ai/advisory/adv-040.html technical-descriptionexploit
https://github.com/openbsd/src/commit/6a23123ec05f1eb29cfcaae0f3a468b2e1983cfd patch
https://www.vulncheck.com/advisories/openbsd-mpls-do-error-kernel-stack-memory-… third-party-advisory

Affected products

src

<6a23123ec05f1eb29cfcaae0f3a468b2e1983cfd

Matching in nixpkgs

pkgs.ssrc

High quality audio sampling rate converter

nixos-unstable 1.33
- nixpkgs-unstable 1.33
- nixos-unstable-small 1.33
nixos-26.05 1.33
- nixos-26.05-small 1.33
- nixpkgs-26.05-darwin 1.33

pkgs.chsrc

Change Source everywhere for every software

nixos-unstable 0.2.4
- nixpkgs-unstable 0.2.4
- nixos-unstable-small 0.2.4
nixos-26.05 0.2.4
- nixos-26.05-small 0.2.4
- nixpkgs-26.05-darwin 0.2.4

pkgs.opensrc

Fetch source code for npm packages to give AI coding agents deeper context

nixos-unstable 0.7.2
- nixpkgs-unstable 0.7.2
- nixos-unstable-small 0.7.2
nixos-26.05 0.7.2
- nixos-26.05-small 0.7.2
- nixpkgs-26.05-darwin 0.7.2

pkgs.src-cli

Sourcegraph CLI

nixos-unstable 7.3.0
- nixpkgs-unstable 7.3.0
- nixos-unstable-small 7.3.0
nixos-26.05 7.3.0
- nixos-26.05-small 7.3.0
- nixpkgs-26.05-darwin 7.3.0

pkgs.isrcsubmit

None

nixos-unstable 2.1.0-unstable-2023-08-10
- nixos-unstable-small 2.1.0-unstable-2023-08-10
nixos-26.05 2.1.0-unstable-2023-08-10
- nixos-26.05-small 2.1.0-unstable-2023-08-10
- nixpkgs-26.05-darwin 2.1.0-unstable-2023-08-10

pkgs.haskellPackages.srcloc

Data types for managing source code locations

nixos-unstable 0.6.0.1
- nixpkgs-unstable 0.6.0.1
- nixos-unstable-small 0.6.0.1
nixos-26.05 0.6.0.1
- nixos-26.05-small 0.6.0.1
- nixpkgs-26.05-darwin 0.6.0.1

pkgs.gst_all_1.icamerasrc-ipu6

None

nixos-unstable 2025-12-26
- nixos-unstable-small 2025-12-26
nixos-26.05 2025-12-26
- nixos-26.05-small 2025-12-26
- nixpkgs-26.05-darwin 2025-12-26

pkgs.python313Packages.srctools

Modules for working with Valve's Source Engine file formats

nixos-unstable 2.7.0
- nixpkgs-unstable 2.7.0
- nixos-unstable-small 2.7.0
nixos-26.05 2.7.0
- nixos-26.05-small 2.7.0
- nixpkgs-26.05-darwin 2.7.0

pkgs.python314Packages.srctools

Modules for working with Valve's Source Engine file formats

nixos-unstable 2.7.0
- nixpkgs-unstable 2.7.0
- nixos-unstable-small 2.7.0
nixos-26.05 2.7.0
- nixos-26.05-small 2.7.0
- nixpkgs-26.05-darwin 2.7.0

pkgs.gst_all_1.icamerasrc-ipu6ep

None

nixos-unstable 2025-12-26
- nixos-unstable-small 2025-12-26
nixos-26.05 2025-12-26
- nixos-26.05-small 2025-12-26
- nixpkgs-26.05-darwin 2025-12-26

pkgs.haskellPackages.haskell-src

Support for manipulating Haskell source code

nixos-unstable 1.0.4.2
- nixpkgs-unstable 1.0.4.2
- nixos-unstable-small 1.0.4.2
nixos-26.05 1.0.4.2
- nixos-26.05-small 1.0.4.2
- nixpkgs-26.05-darwin 1.0.4.2

pkgs.gst_all_1.icamerasrc-ipu6epmtl

None

nixos-unstable 2025-12-26
- nixos-unstable-small 2025-12-26
nixos-26.05 2025-12-26
- nixos-26.05-small 2025-12-26
- nixpkgs-26.05-darwin 2025-12-26

pkgs.haskellPackages.haskell-src-exts

Manipulating Haskell source: abstract syntax, lexer, parser, and pretty-printer

nixos-unstable 1.23.1
- nixpkgs-unstable 1.23.1
- nixos-unstable-small 1.23.1
nixos-26.05 1.23.1
- nixos-26.05-small 1.23.1
- nixpkgs-26.05-darwin 1.23.1

pkgs.haskellPackages.haskell-src-meta

Parse source to template-haskell abstract syntax

nixos-unstable 0.8.15
- nixpkgs-unstable 0.8.15
- nixos-unstable-small 0.8.15
nixos-26.05 0.8.15
- nixos-26.05-small 0.8.15
- nixpkgs-26.05-darwin 0.8.15

pkgs.haskellPackages.simple-src-utils

source code editing utilities

nixos-unstable 0.1
- nixpkgs-unstable 0.1
- nixos-unstable-small 0.1
nixos-26.05 0.1
- nixos-26.05-small 0.1
- nixpkgs-26.05-darwin 0.1

pkgs.haskellPackages.egison-pattern-src

Manipulating Egison patterns: abstract syntax, parser, and pretty-printer

nixos-unstable 0.2.1.2
- nixpkgs-unstable 0.2.1.2
- nixos-unstable-small 0.2.1.2
nixos-26.05 0.2.1.2
- nixos-26.05-small 0.2.1.2
- nixpkgs-26.05-darwin 0.2.1.2

pkgs.haskellPackages.haskell-src-exts-util

Helper functions for working with haskell-src-exts trees

nixos-unstable 0.2.5
- nixpkgs-unstable 0.2.5
- nixos-unstable-small 0.2.5
nixos-26.05 0.2.5
- nixos-26.05-small 0.2.5
- nixpkgs-26.05-darwin 0.2.5

pkgs.haskellPackages.kdesrc-build-profiles

Build profiles for kdesrc-build

nixos-unstable 0.2.0
- nixpkgs-unstable 0.2.0
- nixos-unstable-small 0.2.0
nixos-26.05 0.2.0
- nixos-26.05-small 0.2.0
- nixpkgs-26.05-darwin 0.2.0

pkgs.haskellPackages.haskell-src-exts-simple

A simplified view on the haskell-src-exts AST

nixos-unstable 1.23.1.0
- nixpkgs-unstable 1.23.1.0
- nixos-unstable-small 1.23.1.0
nixos-26.05 1.23.1.0
- nixos-26.05-small 1.23.1.0
- nixpkgs-26.05-darwin 1.23.1.0

pkgs.haskellPackages.egison-pattern-src-th-mode

Parser and pretty printer for Egison pattern expressions to use with TH

nixos-unstable 0.2.1.2
- nixpkgs-unstable 0.2.1.2
- nixos-unstable-small 0.2.1.2
nixos-26.05 0.2.1.2
- nixos-26.05-small 0.2.1.2
- nixpkgs-26.05-darwin 0.2.1.2

Package maintainers

@airRnot1106 airRnot
@different-name different-name <hello@different-name.dev>
@keegancsmith Keegan Carruthers-Smith <keegan.csmith@gmail.com>

Not for us, OpenBSD

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.ssrc

pkgs.chsrc

pkgs.opensrc

pkgs.src-cli

pkgs.isrcsubmit

pkgs.haskellPackages.srcloc

pkgs.gst_all_1.icamerasrc-ipu6

pkgs.python313Packages.srctools

pkgs.python314Packages.srctools

pkgs.gst_all_1.icamerasrc-ipu6ep

pkgs.haskellPackages.haskell-src

pkgs.gst_all_1.icamerasrc-ipu6epmtl

pkgs.haskellPackages.haskell-src-exts

pkgs.haskellPackages.haskell-src-meta

pkgs.haskellPackages.simple-src-utils

pkgs.haskellPackages.egison-pattern-src

pkgs.haskellPackages.haskell-src-exts-util

pkgs.haskellPackages.kdesrc-build-profiles

pkgs.haskellPackages.haskell-src-exts-simple

pkgs.haskellPackages.egison-pattern-src-th-mode

Package maintainers