Nixpkgs security tracker

Login with GitHub

Dismissed suggestions

These automatic suggestions were dismissed after initial triaging.

to select a suggestion for revision.

View:
Compact
Detailed
Dismissed
(not in Nixpkgs)
Permalink CVE-2026-21380
7.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Use After Free in DSP Service

Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.

Affected products

Snapdragon
  • ==X2000092
  • ==X2000090
  • ==FastConnect 7800
  • ==WSA8840
  • ==XG101039
  • ==WSA8835
  • ==XG101032
  • ==X2000094
  • ==WSA8845H
  • ==WCD9380
  • ==X2000086
  • ==WSA8832
  • ==QCA0000
  • ==Snapdragon AR1 Gen 1 Platform
  • ==WSA8845
  • ==WCD9378C
  • ==WSA8830
  • ==Cologne
  • ==XG101002
  • ==SC8380XP
  • ==X2000077
  • ==FastConnect 6900
  • ==WCD9385

Matching in nixpkgs

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-21381
7.6 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Buffer Over-read in WLAN Firmware

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

Affected products

Snapdragon
  • ==Snapdragon X72 5G Modem-RF System
  • ==X2000090
  • ==WCD9395
  • ==WSA8815
  • ==XRV9209
  • ==Snapdragon 8 Elite Gen 5
  • ==SAR2130P
  • ==WCN7861
  • ==WCN6755
  • ==SXR2250P
  • ==XRV7209
  • ==Milos
  • ==QXM1086
  • ==WCD9375
  • ==QCC2076
  • ==QCN9012
  • ==XG101002
  • ==Pandeiro
  • ==Snapdragon 8 Elite
  • ==SM7435
  • ==WCN7881
  • ==FastConnect 6200
  • ==FastConnect 6900
  • ==FWA Gen 3 Ultra Platform
  • ==QCA8081
  • ==Snapdragon 7s Gen 3 Mobile Platform
  • ==Snapdragon X75 5G Modem-RF System
  • ==QMP1000
  • ==QCA6698AU
  • ==Orne
  • ==QFW7124
  • ==XG101039
  • ==WSA8835
  • ==Netrani
  • ==QCN6274
  • ==QCS8550
  • ==XG101032
  • ==Snapdragon 6 Gen 4 Mobile Platform
  • ==QPA1083BD
  • ==WCN3988
  • ==Snapdragon AR1+ Gen 1 Platform
  • ==QCA8337
  • ==SM7635P
  • ==Palawan25
  • ==FastConnect 6700
  • ==QLN1086BD
  • ==QCC2073
  • ==WSA8832
  • ==QCN9011
  • ==Snapdragon AR1 Gen 1 Platform
  • ==WCD9378
  • ==WCD9378C
  • ==WSA8845
  • ==QXM1093
  • ==Snapdragon 8 Gen 3 Mobile Platform
  • ==WCD9370
  • ==WCD9385
  • ==SM8635
  • ==X2000092
  • ==WCN7860
  • ==QCA6787AQ
  • ==WSA8810
  • ==QCA6777AQ
  • ==QCA6797AQ
  • ==SM7675P
  • ==QXM1096
  • ==SXR2330P
  • ==QCN6224
  • ==QXM1095
  • ==X2000086
  • ==QFW7114
  • ==WSA8830
  • ==Cologne
  • ==QPA1086BD
  • ==SC8380XP
  • ==X2000077
  • ==WCD9390
  • ==WCN7880
  • ==SM8650Q
  • ==SM8635P
  • ==QXM1094
  • ==AR8035
  • ==SM6650P
  • ==FastConnect 7800
  • ==WCN6650
  • ==WSA8840
  • ==SAR1165P
  • ==X2000094
  • ==QXM1083
  • ==QCC710
  • ==QLN1083BD
  • ==WCN6450
  • ==WSA8845H
  • ==WCD9380
  • ==Snapdragon 6 Gen 1 Mobile Platform
  • ==SXR2230P
  • ==G2 Gen 1
  • ==SM8750P
  • ==SM7675
  • ==SXR2350P
  • ==Snapdragon 6 Gen 3 Mobile Platform
  • ==WCD9340
  • ==QCA6391

Matching in nixpkgs

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-34402
8.1 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): None (N)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Time Based Blind SQL Injection via Property Value in ChurchCRM

ChurchCRM is an open-source church management system. Prior to 7.1.0, authenticated users with Edit Records or Manage Groups permissions can exploit a time-based blind SQL injection vulnerability in the PropertyAssign.php endpoint to exfiltrate or modify any database content, including user credentials, personal identifiable information (PII), and configuration secrets. This vulnerability is fixed in 7.1.0.

Affected products

CRM
  • ==< 7.1.0

Matching in nixpkgs

pkgs.ocrmypdf

Adds an OCR text layer to scanned PDF files, allowing them to be searched

Package maintainers

  • @dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <>
Dismissed
(not in Nixpkgs)
Permalink CVE-2026-25932
7.2 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
GLPI has Stored XSS in Supplier 'Website' field

GLPI is a Free Asset and IT Management Software package. From 0.60 to before 10.0.24, an authenticated technician user can store an XSS payload in a supplier fields. This vulnerability is fixed in 10.0.24.

Affected products

glpi
  • ==>= 0.60, < 10.0.24

Matching in nixpkgs

pkgs.glpi-agent

GLPI unified Agent for UNIX, Linux, Windows and MacOSX

  • nixos-unstable 1.16
    • nixpkgs-unstable 1.16
    • nixos-unstable-small 1.16
  • nixos-25.11 1.16
    • nixos-25.11-small 1.16
    • nixpkgs-25.11-darwin 1.16

Package maintainers

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-21367
7.6 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Buffer Over-read in WLAN Firmware

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

Affected products

Snapdragon
  • ==Snapdragon X72 5G Modem-RF System
  • ==X2000090
  • ==WCD9395
  • ==WSA8815
  • ==XRV9209
  • ==Snapdragon 8 Elite Gen 5
  • ==QCA9889
  • ==SAR2130P
  • ==WCN7861
  • ==WCN6755
  • ==XRV7209
  • ==Milos
  • ==Networking Pro 400 Platform
  • ==QCN6122
  • ==QCN5052
  • ==Immersive Home 216 Platform
  • ==Networking Pro 600 Platform
  • ==WCD9375
  • ==QCC2076
  • ==IPQ6018
  • ==QCN9012
  • ==QCA8075
  • ==QCN9024
  • ==QCA8085
  • ==QCN5154
  • ==XG101002
  • ==Pandeiro
  • ==Snapdragon 8 Elite
  • ==SM7435
  • ==WCN7881
  • ==FastConnect 6200
  • ==FastConnect 6900
  • ==FWA Gen 3 Ultra Platform
  • ==QCA8081
  • ==Snapdragon 7s Gen 3 Mobile Platform
  • ==Snapdragon X75 5G Modem-RF System
  • ==QMP1000
  • ==QCA6698AU
  • ==QCN9100
  • ==QCA8084
  • ==QCN9070
  • ==QCN6132
  • ==QCN9000
  • ==Orne
  • ==QFW7124
  • ==XG101039
  • ==WSA8835
  • ==QCN6023
  • ==Netrani
  • ==QCN6274
  • ==QCS8550
  • ==XG101032
  • ==Snapdragon 6 Gen 4 Mobile Platform
  • ==QCN5122
  • ==Immersive Home 316 Platform
  • ==QPA1083BD
  • ==Networking Pro 810 Platform
  • ==QCN9022
  • ==IPQ9574
  • ==Snapdragon 8+ Gen 1 Mobile Platform
  • ==WCN3988
  • ==QCA8337
  • ==QCA9888
  • ==SM7635P
  • ==Palawan25
  • ==FastConnect 6700
  • ==QLN1086BD
  • ==QCC2073
  • ==WCN3950
  • ==WSA8832
  • ==IPQ5028
  • ==QCN9011
  • ==WCD9378
  • ==WCD9378C
  • ==WSA8845
  • ==QXM1093
  • ==Snapdragon 8 Gen 3 Mobile Platform
  • ==QCA8082
  • ==WCD9370
  • ==WCD9385
  • ==QCN6024
  • ==SM8635
  • ==X2000092
  • ==Snapdragon 7+ Gen 2 Mobile Platform
  • ==WCN7860
  • ==IPQ6010
  • ==QCN5152
  • ==Snapdragon 7 Gen 1 Mobile Platform
  • ==QCA6787AQ
  • ==Networking Pro 1200 Platform
  • ==WSA8810
  • ==QCA6777AQ
  • ==Networking Pro 800 Platform
  • ==QCA8386
  • ==QCA6797AQ
  • ==QCN5024
  • ==SM7675P
  • ==QXM1096
  • ==QCN9274
  • ==IPQ8078
  • ==SD 8 Gen1 5G
  • ==QCN6224
  • ==QXM1095
  • ==IPQ8076
  • ==X2000086
  • ==Networking Pro 610 Platform
  • ==QFW7114
  • ==Networking Pro 1610 Platform
  • ==WSA8830
  • ==Cologne
  • ==QPA1086BD
  • ==SC8380XP
  • ==IPQ5010
  • ==X2000077
  • ==WCD9390
  • ==WCN7880
  • ==SM8635P
  • ==SM8650Q
  • ==QCN5124
  • ==CSR8811
  • ==AR8035
  • ==QXM1094
  • ==SM6650P
  • ==FastConnect 7800
  • ==WCN6650
  • ==WSA8840
  • ==QCS4490
  • ==X2000094
  • ==QCN5022
  • ==Immersive Home 318 Platform
  • ==QCC710
  • ==QLN1083BD
  • ==WCN6450
  • ==SM8475P
  • ==WSA8845H
  • ==Snapdragon 8 Gen 1 Mobile Platform
  • ==WCD9380
  • ==Snapdragon 6 Gen 1 Mobile Platform
  • ==IPQ6000
  • ==G2 Gen 1
  • ==SM8750P
  • ==QCN5164
  • ==Immersive Home 214 Platform
  • ==QCM4490
  • ==SM7675
  • ==Networking Pro 1210 Platform
  • ==QCA4024
  • ==Snapdragon 6 Gen 3 Mobile Platform
  • ==WCD9340
  • ==QCA6391

Matching in nixpkgs

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-21375
7.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

Affected products

Snapdragon
  • ==X2000092
  • ==QCM5430
  • ==X2000090
  • ==FastConnect 7800
  • ==Snapdragon 460 Mobile Platform
  • ==WSA8840
  • ==XG101039
  • ==Snapdragon 8cx Gen 3 Compute Platform
  • ==WSA8835
  • ==XG101032
  • ==X2000094
  • ==WSA8845H
  • ==WCN3988
  • ==WCD9380
  • ==FastConnect 6700
  • ==X2000086
  • ==WCN3950
  • ==WSA8832
  • ==QCA0000
  • ==Snapdragon AR1 Gen 1 Platform
  • ==WSA8845
  • ==WCD9378C
  • ==Qualcomm Video Collaboration VC3 Platform
  • ==WCD9375
  • ==WSA8830
  • ==Cologne
  • ==XG101002
  • ==SC8380XP
  • ==X2000077
  • ==QCM6490
  • ==WCD9370
  • ==FastConnect 6900
  • ==Snapdragon 662 Mobile Platform
  • ==Snapdragon 7c+ Gen 3 Compute
  • ==WCD9385

Matching in nixpkgs

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-35398
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
WeGIA - Open Redirect - OrigemControle - listarTodos() & listarId_Nome() - Unvalidated $_GET['nextPage']

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos & listarId_Nome and nomeClasse=OrigemControle. The application fails to validate or restrict the nextPage parameter, allowing attackers to redirect users to arbitrary external websites. This can be abused for phishing attacks, credential theft, malware distribution, and social engineering using the trusted WeGIA domain. This vulnerability is fixed in 3.6.9.

Affected products

WeGIA
  • ==< 3.6.9

Matching in nixpkgs

Dismissed
(not in Nixpkgs)
Permalink CVE-2026-35391
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse ignored package ayatana-webmail 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Bulwark Webmail getClientIP() trusted client-controlled X-Forwarded-For value, enabling rate limit bypass and audit log forgery

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, the getClientIP() function in lib/admin/session.ts trusted the first (leftmost) entry of the X-Forwarded-For header, which is fully controlled by the client. An attacker could forge their source IP address to bypass IP-based rate limiting (enabling brute-force attacks against the admin login) or forge audit log entries (making malicious activity appear to originate from arbitrary IP addresses). This vulnerability is fixed in 1.4.11.

Affected products

webmail
  • ==< 1.4.11
Ignored packages (1)
Dismissed
(not in Nixpkgs)
Permalink CVE-2026-33727
6.4 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): High (H)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): High (H)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse ignored
    2 packages
    • gnomeExtensions.pi-hole
    • gnomeExtensions.phi-pi-hole-indicator
    1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Pi-hole has a Local Privilege Escalation (post-compromise, pihole -> root).

Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Version 6.4 has a local privilege-escalation vulnerability allows code execution as root from the low-privilege pihole account. Important context: the pihole account uses nologin, so this is not a direct interactive-login issue. However, nologin does not prevent code from running as UID pihole if a Pi-hole component is compromised. In that realistic post-compromise scenario, attacker-controlled content in /etc/pihole/versions is sourced by root-run Pi-hole scripts, leading to root code execution. This vulnerability is fixed in 6.4.1.

Affected products

pi-hole
  • ==>= 6.4, < 6.4.1
Ignored packages (2)
Dismissed
(not in Nixpkgs)
Permalink CVE-2026-39355
9.9 CRITICAL
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 1 month, 2 weeks ago
  • @LeSuisse ignored package haskellPackages.mathgenealogy 1 month, 2 weeks ago
  • @LeSuisse dismissed (not in Nixpkgs) 1 month, 2 weeks ago
Genealogy is Missing Authorization in `TeamController::transferOwnership()` Allows Any Authenticated User to Hijack Any Team (Broken Access Control)

Genealogy is a family tree PHP application. Prior to 5.9.1, a critical broken access control vulnerability in the genealogy application allows any authenticated user to transfer ownership of arbitrary non-personal teams to themselves. This enables complete takeover of other users’ team workspaces and unrestricted access to all genealogy data associated with the compromised team. This vulnerability is fixed in 5.9.1.

Affected products

genealogy
  • ==< 5.9.1
Ignored packages (1)