Suggestions search

Published

Filter by:

With package: mapnik

Found 2 matching suggestions

Permalink CVE-2025-15564

updated 3 days, 15 hours ago by @LeSuisse Activity log

Created automatic suggestion 4 days, 9 hours ago
@LeSuisse removed
2 packages
- python312Packages.python-mapnik
- python313Packages.python-mapnik
3 days, 15 hours ago
@LeSuisse accepted 3 days, 15 hours ago
@LeSuisse published on GitHub 3 days, 15 hours ago

Mapnik value.cpp operator divide by zero

A vulnerability has been found in Mapnik up to 4.2.0. This vulnerability affects the function mapnik::detail::mod<...>::operator of the file src/value.cpp. The manipulation leads to divide by zero. The attack needs to be performed locally. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

Mapnik

==4.2.0
==4.1
==4.0

Matching in nixpkgs

pkgs.mapnik

Open source toolkit for developing mapping applications

nixos-unstable 4.2.1
- nixpkgs-unstable 4.2.1
- nixos-unstable-small 4.2.1
nixos-25.11 4.1.4
- nixos-25.11-small 4.1.4
- nixpkgs-25.11-darwin 4.1.4

Ignored packages (2)

pkgs.python312Packages.python-mapnik

Python bindings for Mapnik

pkgs.python313Packages.python-mapnik

Python bindings for Mapnik

Package maintainers

@hummeltech David Hummel <hummeltech@sherpaguru.com>
@willcohen Will Cohen
@l0b0 Victor Engmark <victor@engmark.name>
@nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com>
@imincik Ivan Mincik <ivan.mincik@gmail.com>
@hrdinka Christoph Hrdinka <c.nix@hrdinka.at>
@autra Augustin Trancart <augustin.trancart@gmail.com>
@sikmir Nikolay Korotkiy <sikmir@disroot.org>
@nh2 Niklas Hambüchen <mail@nh2.me>

Upstream issue: https://github.com/mapnik/mapnik/issues/4545

Permalink CVE-2025-15537

updated 3 weeks, 1 day ago by @LeSuisse Activity log

Created automatic suggestion 3 weeks, 3 days ago
@LeSuisse removed
2 packages
- python312Packages.python-mapnik
- python313Packages.python-mapnik
3 weeks, 2 days ago
@LeSuisse accepted 3 weeks, 2 days ago
@LeSuisse published on GitHub 3 weeks, 1 day ago

Mapnik dbfile.cpp string_value heap-based overflow

A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function mapnik::dbf_file::string_value of the file plugins/input/shape/dbfile.cpp. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.