Nixpkgs security tracker

Login with GitHub

Suggestions search

Untriaged
Filter by:
With package: python312Packages.python-ctags3

Found 1 matching suggestions

View:
Compact
Detailed
Permalink CVE-2026-2641
3.3 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
created 3 months ago Activity log
  • Created suggestion 3 months ago
universal-ctags V Language v.c parseExprList recursion

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on the local host. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

ctags
  • ==6.2.1
  • ==6.2.0

Matching in nixpkgs

pkgs.ctags

Tool for fast source code browsing (exuberant ctags)

  • nixos-unstable 816
    • nixpkgs-unstable 816
    • nixos-unstable-small 816
  • nixos-25.11 816
    • nixos-25.11-small 816
    • nixpkgs-25.11-darwin 816

pkgs.ctags-lsp

LSP implementation using universal-ctags as backend

Package maintainers