Nixpkgs security tracker

Login with GitHub

Suggestions search

All statuses
Filter by:
With package: python314Packages.distorm3

Found 2 matching suggestions

View:
Compact
Detailed
Dismissed
(not in Nixpkgs)
Permalink CVE-2026-48191
3.5 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): Low (L)
  • Integrity (I): None (N)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): None (N)
updated 2 weeks, 4 days ago by @LeSuisse Activity log
  • Created suggestion 2 weeks, 4 days ago
  • @LeSuisse dismissed (not in Nixpkgs) 2 weeks, 4 days ago
Wrong Permission Handling in Document Search Article Meta Filters

An incorrect handling of permissions in STORM powered by OTRS and in OTRS (2026.x and above) Document Search Article Meta Filters modules allows gaining knowledge about number of affected CIs, SLA and services without gaining access to them. This issue affects OTRS with STORM modules: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X

Affected products

STORM
  • =<2026.3.x
  • ==2024.x
  • ==7.0.x
  • ==2025.x
  • ==2023.x
  • ==8.0.x

Matching in nixpkgs

pkgs.storm

Distributed realtime computation system

pkgs.stormlib

Open-source project that can work with Blizzard MPQ archives

  • nixos-unstable 9.30
    • nixpkgs-unstable 9.30
    • nixos-unstable-small 9.30

Package maintainers

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-5567
8.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 2 months, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 2 months, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 2 months, 2 weeks ago
Tenda M3 Destination setAdvPolicyData buffer overflow

A flaw has been found in Tenda M3 1.0.0.10. This vulnerability affects the function setAdvPolicyData of the file /goform/setAdvPolicyData of the component Destination Handler. Executing a manipulation of the argument policyType can lead to buffer overflow. The attack can be executed remotely. The exploit has been published and may be used.

Affected products

M3
  • ==1.0.0.10

Matching in nixpkgs

pkgs.fvwm3

Multiple large virtual desktop window manager - Version 3

pkgs.wasm3

Fastest WebAssembly interpreter, and the most universal runtime

pkgs.icbm3d

3D vector-based clone of the atari game Missile Command

  • nixos-unstable 0.4
    • nixpkgs-unstable 0.4
    • nixos-unstable-small 0.4

pkgs.m32edit

Editor for the Midas M32 digital mixer

pkgs.stm32flash

Open source flash program for the STM32 ARM processors using the ST bootloader

  • nixos-unstable 0.7
    • nixpkgs-unstable 0.7
    • nixos-unstable-small 0.7

pkgs.stm32cubemx

Graphical tool for configuring STM32 microcontrollers and microprocessors

pkgs.stm32loader

Flash firmware to STM32 microcontrollers in Python

Package maintainers