Nixpkgs security tracker
5.5 MEDIUM
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Local (L)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): None (N)
- Availability (A): None (N)
- Modified Attack Vector (MAV): Local (L)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): None (N)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
8 packages
- python312Packages.docling-ibm-models
- python313Packages.docling-ibm-models
- python314Packages.docling-ibm-models
- pkgsRocm.python3Packages.docling-core
- pkgsRocm.python3Packages.docling-ibm-models
- python312Packages.llama-index-node-parser-docling
- python313Packages.llama-index-node-parser-docling
- pkgsRocm.python3Packages.llama-index-node-parser-docling
- @LeSuisse accepted
- @LeSuisse published on GitHub
Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands
Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.73.0 until 2.91.0, he LaTeX backend's handling of \includegraphics, \input, and \include commands lacked path containment validation. Attackers could craft malicious LaTeX documents with path traversal sequences to read arbitrary files from the file system accessible to the process, include sensitive files in the converted document output, or potentially access configuration files, credentials, or other sensitive data This vulnerability is fixed in 2.91.0.
References
-
https://github.com/docling-project/docling/releases/tag/v2.91.0 x_refsource_MISC
Affected products
- ==>= 2.73.0, < 2.91.0
Matching in nixpkgs
pkgs.python312Packages.docling-core
None
pkgs.python313Packages.docling-core
Python library to define and validate data types in Docling
Ignored packages (8)
pkgs.python312Packages.docling-ibm-models
None
pkgs.python313Packages.docling-ibm-models
Docling IBM models
pkgs.python314Packages.docling-ibm-models
Docling IBM models
pkgs.pkgsRocm.python3Packages.docling-core
Python library to define and validate data types in Docling
pkgs.pkgsRocm.python3Packages.docling-ibm-models
Docling IBM models
pkgs.python313Packages.llama-index-node-parser-docling
Llama-index node_parser docling integration
7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): High (H)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): High (H)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
8 packages
- python312Packages.docling-ibm-models
- python313Packages.docling-ibm-models
- python314Packages.docling-ibm-models
- pkgsRocm.python3Packages.docling-core
- pkgsRocm.python3Packages.docling-ibm-models
- python312Packages.llama-index-node-parser-docling
- python313Packages.llama-index-node-parser-docling
- pkgsRocm.python3Packages.llama-index-node-parser-docling
- @LeSuisse accepted
- @LeSuisse published on GitHub
Docling: Unsafe Zip Extraction in EasyOCR Model Download
Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.91.0, the EasyOCR model download functionality extracted ZIP archives without validating member paths, enabling Zip Slip attacks. If an attacker could compromise the model download source (via supply chain attack, DNS spoofing, or MITM), they could write arbitrary files to any location writable by the process, potentially achieving remote code execution by overwriting Python files or system binaries, persistent backdoors by modifying startup scripts or SSH keys, and data corruption or system compromise. This vulnerability is fixed in 2.91.0.
References
-
https://github.com/docling-project/docling/releases/tag/v2.91.0 x_refsource_MISC
Affected products
- ==< 2.91.0
Matching in nixpkgs
pkgs.python312Packages.docling-core
None
pkgs.python313Packages.docling-core
Python library to define and validate data types in Docling
Ignored packages (8)
pkgs.python312Packages.docling-ibm-models
None
pkgs.python313Packages.docling-ibm-models
Docling IBM models
pkgs.python314Packages.docling-ibm-models
Docling IBM models
pkgs.pkgsRocm.python3Packages.docling-core
Python library to define and validate data types in Docling
pkgs.pkgsRocm.python3Packages.docling-ibm-models
Docling IBM models
pkgs.python313Packages.llama-index-node-parser-docling
Llama-index node_parser docling integration
7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
8 packages
- python312Packages.docling-ibm-models
- python313Packages.docling-ibm-models
- python314Packages.docling-ibm-models
- pkgsRocm.python3Packages.docling-core
- pkgsRocm.python3Packages.docling-ibm-models
- python312Packages.llama-index-node-parser-docling
- python313Packages.llama-index-node-parser-docling
- pkgsRocm.python3Packages.llama-index-node-parser-docling
- @LeSuisse accepted
- @LeSuisse published on GitHub
Docling: Unsafe XML Entity Expansion in USPTO Patent Backend
Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2.74.0, the USPTO patent XML parser used the standard xml.sax.parseString() without protection against XML External Entity (XXE) attacks. An attacker could craft malicious USPTO patent XML files with external entity references that could read arbitrary files from the server filesystem, perform Server-Side Request Forgery (SSRF) attacks, or cause denial of service through entity expansion (Billion Laughs attack). The vulnerability affects three USPTO patent format parsers: ICE (v4.x), Grant v2.5, and Application v1.x. This vulnerability is fixed in 2.74.0.
References
Affected products
- ==>= 2.13.0, < 2.74.0
Matching in nixpkgs
pkgs.python312Packages.docling-core
None
pkgs.python313Packages.docling-core
Python library to define and validate data types in Docling
Ignored packages (8)
pkgs.python312Packages.docling-ibm-models
None
pkgs.python313Packages.docling-ibm-models
Docling IBM models
pkgs.python314Packages.docling-ibm-models
Docling IBM models
pkgs.pkgsRocm.python3Packages.docling-core
Python library to define and validate data types in Docling
pkgs.pkgsRocm.python3Packages.docling-ibm-models
Docling IBM models
pkgs.python313Packages.llama-index-node-parser-docling
Llama-index node_parser docling integration