Nixpkgs Security Tracker

Untriaged

Permalink CVE-2023-20596

created 6 months ago

Improper input validation in the SMM Supervisor may allow an …

Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7011 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7011 vendor-advisory x_transferred

Affected products

PI

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-20566

5.3 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): NONE
Integrity impact (I): HIGH
Availability impact (A): NONE

created 6 months ago

Improper address validation in ASP with SNP enabled may potentially …

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred

Affected products

PI

==various

AMD EPYC™ Embedded 7003

==various

AMD EPYC™ Embedded 9003

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-20587

7.1 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): NONE

created 6 months ago

Improper Access Control in System Management Mode (SMM) may allow …

Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI flash potentially leading to arbitrary code execution.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory x_transferred

Affected products

PI

==various
==various

AMD EPYC(TM) Embedded 7003

==various

AMD EPYC(TM) Embedded 9003

==various

AMD EPYC(TM) Embedded 3000

==various

AMD EPYC(TM) Embedded 7002

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-31346

6.0 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): NONE
Availability impact (A): NONE

created 6 months ago

Failure to initialize memory in SEV Firmware may allow a …

Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 vendor-advisory x_transferred

Affected products

PI

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-20565

created 6 months ago

Insufficient protections in System Management Mode (SMM) code may allow …

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory x_transferred

Affected products

PI

==various

AMD Ryzen™ Embedded V3000

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-20579

4.4 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months ago

Improper Access Control in the AMD SPI protection feature may …

Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) privileged access to bypass protections potentially resulting in loss of integrity and availability.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 vendor-advisory x_transferred

Affected products

PI

==Various
==various
==various

AMD Ryzen™ 3000 Series Processors with Radeon™ Graphics

==various

AMD Ryzen™ 7035 Series Mobile Processors with Radeon™ Graphics

==various

AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2023-20526

1.9 LOW

CVSS version: 3.1
Attack vector (AV): PHYSICAL
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): NONE

created 6 months ago

Insufficient input validation in the ASP Bootloader may enable a …

Insufficient input validation in the ASP Bootloader may enable a privileged attacker with physical access to expose the contents of ASP memory potentially leading to a loss of confidentiality.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory x_transferred

Affected products

PI

==various
==various

AMD EPYC™ Embedded 3000

==various
==various

AMD EPYC™ Embedded 7002

==various
==various

AMD EPYC™ Embedded 7003

==various
==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2022-23820

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Failure to validate the AMD SMM communication buffer may allow …

Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory x_transferred

Affected products

PI

==Various
==Various
==various
==various

AMD EPYC™ Embedded 7003

==various
==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2021-46774

6.7 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): HIGH
Availability impact (A): LOW

created 6 months ago

Insufficient DRAM address validation in System Management Unit (SMU) may …

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 vendor-advisory x_transferred
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 vendor-advisory x_transferred

Affected products

PI

==various
==various

AMD EPYC™ Embedded 3000

==various

AMD EPYC™ Embedded 7002

==various

AMD EPYC™ Embedded 7003

==various

AMD Ryzen™ Embedded 5000

==various

Matching in nixpkgs

pkgs.spoofdpi

Simple and fast anti-censorship tool written in Go

nixos-unstable -
- nixpkgs-unstable 0.12.0

pkgs.perlPackages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl538Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perl540Packages.PPI

Parse, Analyze and Manipulate Perl (without perl)

nixos-unstable -
- nixpkgs-unstable 1.277

pkgs.perlPackages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.haskellPackages.hsPID

PID control loop

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.spirv-llvm-translator

Tool and a library for bi-directional translation between SPIR-V and LLVM IR

nixos-unstable -
- nixpkgs-unstable 19.1.10

pkgs.perl538Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perl540Packages.GSSAPI

Perl extension providing access to the GSSAPIv2 library

nixos-unstable -
- nixpkgs-unstable 0.28

pkgs.perlPackages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl538Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perl540Packages.PDFAPI2

Create, modify, and examine PDF files

nixos-unstable -
- nixpkgs-unstable API2-2.045

pkgs.perlPackages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.haskellPackages.EdisonAPI

A library of efficient, purely-functional data structures (API)

nixos-unstable -
- nixpkgs-unstable 1.3.3.2

pkgs.perl538Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perl540Packages.PPIxUtils

Utility functions for PPI

nixos-unstable -
- nixpkgs-unstable 0.003

pkgs.perlPackages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perl540Packages.PPIxRegexp

Parse regular expressions

nixos-unstable -
- nixpkgs-unstable 0.088

pkgs.perlPackages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perlPackages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perlPackages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl538Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl540Packages.ProcPIDFile

Manage process id files

nixos-unstable -
- nixpkgs-unstable 1.29

pkgs.perl538Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl540Packages.WWWTwilioAPI

Accessing Twilio's REST API with Perl

nixos-unstable -
- nixpkgs-unstable 0.21

pkgs.perl538Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl538Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl538Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perl540Packages.OpenAPIClient

Client for talking to an Open API powered server

nixos-unstable -
- nixpkgs-unstable 1.07

pkgs.perl540Packages.PPIxQuoteLike

Parse Perl string literals and string-literal-like things

nixos-unstable -
- nixpkgs-unstable 0.023

pkgs.perl540Packages.PPIxUtilities

Extensions to PPI|PPI

nixos-unstable -
- nixpkgs-unstable 1.001000

pkgs.perlPackages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl538Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

pkgs.perl540Packages.MojoliciousPluginOpenAPI

OpenAPI / Swagger plugin for Mojolicious

nixos-unstable -
- nixpkgs-unstable 5.09

Package maintainers

@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@stigtsp Stig Palmquist <stig@stig.io>
@gloaming Craig Hall <ch9871@gmail.com>
@s0me1newithhand7s hand7s <s0me1newithhand7s@gmail.com>

Untriaged

Permalink CVE-2021-26345

1.9 LOW

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months ago

Failure to validate the value in APCB may allow a …

Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.