Nixpkgs security tracker
8.6 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Local (L)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Changed (C)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Local (L)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Changed (C)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
48 packages
- oxidized
- zed
- spicedb-zed
- colorized-logs
- zed-editor-fhs
- guile-colorized
- zed-open-capture
- ocamlPackages.zed
- dircolors-solarized
- nerd-fonts.zed-mono
- typstPackages.mazed
- zed-discord-presence
- ue4demos.stylized_demo
- haskellPackages.bv-sized
- ocamlPackages_latest.zed
- numix-solarized-gtk-theme
- typstPackages.mazed_0_1_0
- haskellPackages.vector-sized
- haskellPackages.parameterized
- haskellPackages.sized-wrapper
- gnomeExtensions.hide-minimized
- python312Packages.parameterized
- python313Packages.parameterized
- python314Packages.parameterized
- haskellPackages.sized-wrapper-text
- gnomeExtensions.zed-search-provider
- haskellPackages.parameterized-utils
- haskellPackages.sized-wrapper-aeson
- haskellPackages.hmatrix-vector-sized
- perlPackages.MooseXRoleParameterized
- python314Packages.mkdocs-git-revision-date-localized-plugin
- python313Packages.mkdocs-git-revision-date-localized-plugin
- python312Packages.mkdocs-git-revision-date-localized-plugin
- vscode-extensions.brandonkirbyson.solarized-palenight
- chickenPackages_5.chickenEggs.generalized-arrays
- nixos-artwork.wallpapers.nineish-solarized-dark
- vimPlugins.nvim-treesitter-parsers.authzed
- gnomeExtensions.no-titlebar-when-maximized
- python314Packages.drf-standardized-errors
- haskellPackages.sized-wrapper-quickcheck
- gnomeExtensions.maximized-by-default-actually-reborn
- python313Packages.drf-standardized-errors
- python312Packages.drf-standardized-errors
- gnomeExtensions.minimized-windows-buttons
- perl540Packages.MooseXRoleParameterized
- perl538Packages.MooseXRoleParameterized
- gnomeExtensions.truly-maximized-windows
- perl5Packages.MooseXRoleParameterized
- @LeSuisse accepted
- @LeSuisse published on GitHub
Zed: Allowlist Bypass via Environment Variable Injection in Terminal Tool Permissions
Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed by prepending environment variable assignments to allowlisted commands, hijacking program behavior (e.g., PAGER) to execute arbitrary code. This vulnerability is fixed in 0.229.0.
References
-
https://github.com/zed-industries/zed/security/advisories/GHSA-c3g6-c3ff-69cg x_refsource_CONFIRM
Affected products
- ==< 0.229.0
Matching in nixpkgs
Ignored packages (48)
pkgs.zed
Novel data lake based on super-structured data
pkgs.oxidized
Network device configuration backup tool. It's a RANCID replacement
pkgs.spicedb-zed
Command line for managing SpiceDB
pkgs.colorized-logs
Tools for logs with ANSI color
pkgs.zed-editor-fhs
Wrapped variant of zed-editor which launches in a FHS compatible environment. Should allow for easy usage of extensions without nix-specific modifications.
pkgs.guile-colorized
Colorized REPL for GNU Guile
-
nixos-unstable 0-unstable-2019-12-05
- nixpkgs-unstable 0-unstable-2019-12-05
- nixos-unstable-small 0-unstable-2019-12-05
pkgs.zed-open-capture
Platform-agnostic camera and sensor capture API for the ZED 2, ZED 2i, and ZED Mini stereo cameras
-
nixos-unstable 0.5.0-unstable-2023-24-19
- nixpkgs-unstable 0.5.0-unstable-2023-24-19
- nixos-unstable-small 0.5.0-unstable-2023-24-19
-
nixos-25.11 0.5.0-unstable-2023-24-19
- nixos-25.11-small 0.5.0-unstable-2023-24-19
- nixpkgs-25.11-darwin 0.5.0-unstable-2023-24-19
pkgs.ocamlPackages.zed
Abstract engine for text edition in OCaml
pkgs.dircolors-solarized
Repository of themes for GNU, supporting Solarized color scheme
-
nixos-unstable 0-unstable-2025-09-22
- nixpkgs-unstable 0-unstable-2025-09-22
- nixos-unstable-small 0-unstable-2025-09-22
-
nixos-25.11 0-unstable-2025-09-22
- nixos-25.11-small 0-unstable-2025-09-22
- nixpkgs-25.11-darwin 0-unstable-2025-09-22
pkgs.nerd-fonts.zed-mono
Nerd Fonts: Zed Mono is a more rounded version of Iosevka
-
nixos-unstable 3.4.0+1.2.0
- nixpkgs-unstable 3.4.0+1.2.0
- nixos-unstable-small 3.4.0+1.2.0
-
nixos-25.11 3.4.0+1.2.0
- nixos-25.11-small 3.4.0+1.2.0
- nixpkgs-25.11-darwin 3.4.0+1.2.0
pkgs.typstPackages.mazed
Maze generator
pkgs.zed-discord-presence
Discord rich presence for Zed
pkgs.ue4demos.stylized_demo
Unreal Engine 4 Linux demos
pkgs.haskellPackages.bv-sized
a bitvector datatype that is parameterized by the vector width
pkgs.ocamlPackages_latest.zed
Abstract engine for text edition in OCaml
pkgs.numix-solarized-gtk-theme
Solarized versions of Numix GTK2 and GTK3 theme
pkgs.typstPackages.mazed_0_1_0
Maze generator
pkgs.haskellPackages.vector-sized
Size tagged vectors
pkgs.haskellPackages.parameterized
Parameterized/indexed monoids and monads using only a single parameter type variable
pkgs.haskellPackages.sized-wrapper
Create a Sized version of any container
pkgs.gnomeExtensions.hide-minimized
Hide minimized in overview
pkgs.python312Packages.parameterized
Parameterized testing with any Python test framework
pkgs.python313Packages.parameterized
Parameterized testing with any Python test framework
pkgs.python314Packages.parameterized
Parameterized testing with any Python test framework
pkgs.haskellPackages.sized-wrapper-text
'Sized' wrappers for text
pkgs.gnomeExtensions.zed-search-provider
Search for your Zed workspaces easily
pkgs.haskellPackages.parameterized-utils
Classes and data structures for working with data-kind indexed types
pkgs.haskellPackages.sized-wrapper-aeson
aeson instances for 'Sized'
pkgs.haskellPackages.hmatrix-vector-sized
Conversions between hmatrix and vector-sized types
pkgs.perlPackages.MooseXRoleParameterized
Moose roles with composition parameters
pkgs.perl5Packages.MooseXRoleParameterized
Moose roles with composition parameters
pkgs.gnomeExtensions.truly-maximized-windows
Maximizes new windows that are in the irritating ALMOST-maximized state. (Probably an xorg issue?)
pkgs.perl538Packages.MooseXRoleParameterized
Moose roles with composition parameters
pkgs.perl540Packages.MooseXRoleParameterized
Moose roles with composition parameters
pkgs.haskellPackages.sized-wrapper-quickcheck
QuickCheck instance for 'Sized'
pkgs.python312Packages.drf-standardized-errors
Standardize your DRF API error responses
pkgs.python313Packages.drf-standardized-errors
Standardize your DRF API error responses
pkgs.python314Packages.drf-standardized-errors
Standardize your DRF API error responses
-
nixos-unstable 0.0.0+rev=83e5c26
- nixpkgs-unstable 0.0.0+rev=83e5c26
- nixos-unstable-small 0.0.0+rev=83e5c26
pkgs.nixos-artwork.wallpapers.nineish-solarized-dark
Solarized dark Nix background inspired by simpler times
-
nixos-unstable 2021-07-20
- nixpkgs-unstable 2021-07-20
- nixos-unstable-small 2021-07-20
pkgs.chickenPackages_5.chickenEggs.generalized-arrays
Provides generalized arrays, intervals, and storage classes for CHICKEN Scheme.
pkgs.gnomeExtensions.maximized-by-default-actually-reborn
Make all windows maximized on start. Updated for GNOME 49 and ignores context menus.
pkgs.vscode-extensions.brandonkirbyson.solarized-palenight
Solarized-palenight theme for vscode
pkgs.python312Packages.mkdocs-git-revision-date-localized-plugin
MkDocs plugin that enables displaying the date of the last git modification of a page
pkgs.python313Packages.mkdocs-git-revision-date-localized-plugin
MkDocs plugin that enables displaying the date of the last git modification of a page
pkgs.python314Packages.mkdocs-git-revision-date-localized-plugin
MkDocs plugin that enables displaying the date of the last git modification of a page