Nixpkgs security tracker

Login with GitHub

Automatically generated suggestions

to slate a suggestion for refinement.

to mark a suggestion as irrelevant and log the reason.

View:
Compact
Detailed
Permalink CVE-2026-6297
8.3 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Use after free in Proxy in Google Chrome prior to …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-21726
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV):
  • Attack complexity (AC):
  • Privileges required (PR):
  • User interaction (UI):
  • Scope (S):
  • Confidentiality impact (C):
  • Integrity impact (I):
  • Availability impact (A):
updated 16 hours ago by @LeSuisse Activity log
  • Created automatic suggestion 20 hours ago
  • @LeSuisse ignored
    2 packages
    • loki-tool
    • loki
    16 hours ago

Loki Path Traversal - CVE-2021-36156 Bypass

Loki
  • <3.5.9
Permalink CVE-2026-6307
8.8 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-6384
7.3 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Gimp: gimp: arbitrary code execution or denial of service via buffer overflow in gif image processing

gimp
gimp:2.8/gimp
Permalink CVE-2026-6299
8.8 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Use after free in Prerender in Google Chrome prior to …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-6296
9.6 CRITICAL
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Heap buffer overflow in ANGLE in Google Chrome prior to …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-6363
8.8 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-6309
8.3 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Use after free in Viz in Google Chrome prior to …

Chrome
  • <147.0.7727.101
Permalink CVE-2026-6311
8.3 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
created 20 hours ago

Uninitialized Use in Accessibility in Google Chrome on Windows prior …

Chrome
  • <147.0.7727.101