Nixpkgs security tracker

Untriaged

Permalink CVE-2026-2644

3.3 LOW

CVSS version (CVSS): 3.1
Attack Vector (AV): Local (L)
Attack Complexity (AC): Low (L)
Privileges Required (PR): Low (L)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): None (N)
Integrity (I): None (N)
Availability (A): Low (L)
Exploit Code Maturity (E): Proof-of-Concept (P)
Remediation Level (RL): Not Defined (X)
Report Confidence (RC): Reasonable (R)
Modified Attack Vector (MAV): Local (L)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): None (N)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): Low (L)

created 3 months ago Activity log

Created suggestion 3 months ago

niklasso minisat DIMACS File SolverTypes.h value out-of-bounds

A weakness has been identified in niklasso minisat up to 2.2.0. This issue affects the function Solver::value in the library core/SolverTypes.h of the component DIMACS File Parser. This manipulation of the argument variable index with the input 2147483648 causes out-of-bounds read. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

References

VDB-346406 | niklasso minisat DIMACS File SolverTypes.h value out-of-bounds vdb-entrytechnical-description
VDB-346406 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #752775 | niklasso minisat master-branch Heap-based Buffer Overflow third-party-advisory
https://github.com/niklasso/minisat/issues/55 issue-tracking
https://github.com/niklasso/minisat/issues/55#issue-3832527387 issue-trackingexploit
https://github.com/niklasso/minisat/ product

Affected products

minisat

==2.2.0
==2.0
==2.1

Matching in nixpkgs

pkgs.minisat

Compact and readable SAT solver

nixos-unstable 2.2.1
- nixpkgs-unstable 2.2.1
- nixos-unstable-small 2.2.1
nixos-25.11 2.2.1
- nixos-25.11-small 2.2.1
- nixpkgs-25.11-darwin 2.2.1

pkgs.cryptominisat

Advanced SAT Solver

nixos-unstable 5.11.21
- nixpkgs-unstable 5.11.21
- nixos-unstable-small 5.11.21
nixos-25.11 5.11.21
- nixos-25.11-small 5.11.21
- nixpkgs-25.11-darwin 5.11.21

pkgs.ocamlPackages.minisat

Simple bindings to Minisat-C

nixos-unstable 0.6
- nixpkgs-unstable 0.6
- nixos-unstable-small 0.6
nixos-25.11 0.6
- nixos-25.11-small 0.6
- nixpkgs-25.11-darwin 0.6

pkgs.haskellPackages.minisat

A Haskell bundle of the Minisat SAT solver

nixos-unstable 0.1.4
- nixpkgs-unstable 0.1.4
- nixos-unstable-small 0.1.4
nixos-25.11 0.1.4
- nixos-25.11-small 0.1.4
- nixpkgs-25.11-darwin 0.1.4

pkgs.ocamlPackages_latest.minisat

Simple bindings to Minisat-C

nixos-unstable 0.6
- nixpkgs-unstable 0.6
- nixos-unstable-small 0.6

pkgs.haskellPackages.minisat-solver

High-level Haskell bindings for the MiniSat SAT solver

nixos-25.11 0.1
- nixos-25.11-small 0.1
- nixpkgs-25.11-darwin 0.1

pkgs.sbclPackages.cl-sat_dot_minisat

None

nixos-unstable 20241012-git
- nixpkgs-unstable 20241012-git
- nixos-unstable-small 20241012-git
nixos-25.11 20241012-git
- nixos-25.11-small 20241012-git
- nixpkgs-25.11-darwin 20241012-git

Package maintainers

@Mic92 Jörg Thalheim <joerg@thalheim.io>
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>
@nagy Daniel Nagy <danielnagy@posteo.de>
@hraban Hraban Luyat <hraban@0brg.net>
@lukego Luke Gorrie <luke@snabb.co>
@mgttlinger Merlin Humml <megoettlinger@gmail.com>

Suggestions search