Nixpkgs Security Tracker

Permalink CVE-2026-2660

3.3 LOW

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 1 month ago

FascinatedBox lily lily_symtab.c shorthash_for_name use after free

A vulnerability was identified in FascinatedBox lily up to 2.3. Affected by this issue is the function shorthash_for_name of the file src/lily_symtab.c. The manipulation leads to use after free. Local access is required to approach this attack. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.

References

VDB-346458 | FascinatedBox lily lily_symtab.c shorthash_for_name use after free vdb-entry technical-description
VDB-346458 | CTI Indicators (IOB, IOC, IOA) signature permissions-required
Submit #753164 | FascinatedBox lily main branch Use After Free third-party-advisory
https://github.com/FascinatedBox/lily/issues/385 issue-tracking
https://github.com/oneafter/0122/blob/main/i385/repro.lily exploit
https://github.com/FascinatedBox/lily/ product

Affected products

lily

==2.3
==2.2
==2.1
==2.0

Matching in nixpkgs

pkgs.lilypond

Music typesetting system

nixos-unstable 2.24.4
- nixpkgs-unstable 2.24.4
- nixos-unstable-small 2.24.4
nixos-25.11 2.24.4
- nixos-25.11-small 2.24.4
- nixpkgs-25.11-darwin 2.24.4

pkgs.lilypond-unstable

Music typesetting system

nixos-unstable 2.25.32
- nixpkgs-unstable 2.25.32
- nixos-unstable-small 2.25.32
nixos-25.11 2.25.29
- nixos-25.11-small 2.25.29
- nixpkgs-25.11-darwin 2.25.29

pkgs.lilypond-with-fonts

Music typesetting system

nixos-unstable 2.24.4
- nixpkgs-unstable 2.24.4
- nixos-unstable-small 2.24.4
nixos-25.11 2.24.4
- nixos-25.11-small 2.24.4
- nixpkgs-25.11-darwin 2.24.4

pkgs.openlilylib-fonts.ross

ross font for LilyPond

nixos-unstable aa8127f
- nixpkgs-unstable aa8127f
- nixos-unstable-small aa8127f
nixos-25.11 aa8127f
- nixos-25.11-small aa8127f
- nixpkgs-25.11-darwin aa8127f

pkgs.gnomeExtensions.lilypad

Organize, hide, and reorder top bar icons

nixos-unstable 15
- nixpkgs-unstable 15
- nixos-unstable-small 15
nixos-25.11 15
- nixos-25.11-small 15
- nixpkgs-25.11-darwin 15

pkgs.openlilylib-fonts.haydn

haydn font for LilyPond

nixos-unstable 9e7de8b
- nixpkgs-unstable 9e7de8b
- nixos-unstable-small 9e7de8b
nixos-25.11 9e7de8b
- nixos-25.11-small 9e7de8b
- nixpkgs-25.11-darwin 9e7de8b

pkgs.openlilylib-fonts.bravura

bravura font for LilyPond

nixos-unstable 53c7744
- nixpkgs-unstable 53c7744
- nixos-unstable-small 53c7744
nixos-25.11 53c7744
- nixos-25.11-small 53c7744
- nixpkgs-25.11-darwin 53c7744

pkgs.openlilylib-fonts.cadence

cadence font for LilyPond

nixos-unstable 1cc0fb7
- nixpkgs-unstable 1cc0fb7
- nixos-unstable-small 1cc0fb7
nixos-25.11 1cc0fb7
- nixos-25.11-small 1cc0fb7
- nixpkgs-25.11-darwin 1cc0fb7

pkgs.openlilylib-fonts.gonville

gonville font for LilyPond

nixos-unstable a638bc9
- nixpkgs-unstable a638bc9
- nixos-unstable-small a638bc9
nixos-25.11 a638bc9
- nixos-25.11-small a638bc9
- nixpkgs-25.11-darwin a638bc9

pkgs.openlilylib-fonts.lilyjazz

lilyjazz font for LilyPond

nixos-unstable 8fa7d554
- nixpkgs-unstable 8fa7d554
- nixos-unstable-small 8fa7d554
nixos-25.11 8fa7d554
- nixos-25.11-small 8fa7d554
- nixpkgs-25.11-darwin 8fa7d554

pkgs.openlilylib-fonts.paganini

paganini font for LilyPond

nixos-unstable 8e4e55a
- nixpkgs-unstable 8e4e55a
- nixos-unstable-small 8e4e55a
nixos-25.11 8e4e55a
- nixos-25.11-small 8e4e55a
- nixpkgs-25.11-darwin 8e4e55a

pkgs.openlilylib-fonts.profondo

profondo font for LilyPond

nixos-unstable 8cfb668
- nixpkgs-unstable 8cfb668
- nixos-unstable-small 8cfb668
nixos-25.11 8cfb668
- nixos-25.11-small 8cfb668
- nixpkgs-25.11-darwin 8cfb668

pkgs.openlilylib-fonts.beethoven

beethoven font for LilyPond

nixos-unstable 669f400
- nixpkgs-unstable 669f400
- nixos-unstable-small 669f400
nixos-25.11 669f400
- nixos-25.11-small 669f400
- nixpkgs-25.11-darwin 669f400

pkgs.openlilylib-fonts.improviso

improviso font for LilyPond

nixos-unstable 0753f5a
- nixpkgs-unstable 0753f5a
- nixos-unstable-small 0753f5a
nixos-25.11 0753f5a
- nixos-25.11-small 0753f5a
- nixpkgs-25.11-darwin 0753f5a

pkgs.openlilylib-fonts.scorlatti

scorlatti font for LilyPond

nixos-unstable 1db87da
- nixpkgs-unstable 1db87da
- nixos-unstable-small 1db87da
nixos-25.11 1db87da
- nixos-25.11-small 1db87da
- nixpkgs-25.11-darwin 1db87da

pkgs.lilypond-unstable-with-fonts

Music typesetting system

nixos-unstable 2.25.32
- nixpkgs-unstable 2.25.32
- nixos-unstable-small 2.25.32
nixos-25.11 2.25.29
- nixos-25.11-small 2.25.29
- nixpkgs-25.11-darwin 2.25.29

pkgs.openlilylib-fonts.lilyboulez

lilyboulez font for LilyPond

nixos-unstable e8455fc
- nixpkgs-unstable e8455fc
- nixos-unstable-small e8455fc
nixos-25.11 e8455fc
- nixos-25.11-small e8455fc
- nixpkgs-25.11-darwin e8455fc

pkgs.openlilylib-fonts.sebastiano

sebastiano font for LilyPond

nixos-unstable 44bf262
- nixpkgs-unstable 44bf262
- nixos-unstable-small 44bf262
nixos-25.11 44bf262
- nixos-25.11-small 44bf262
- nixpkgs-25.11-darwin 44bf262

pkgs.openlilylib-fonts.lv-goldenage

lv-goldenage font for LilyPond

nixos-unstable 8a92fd3
- nixpkgs-unstable 8a92fd3
- nixos-unstable-small 8a92fd3
nixos-25.11 8a92fd3
- nixos-25.11-small 8a92fd3
- nixpkgs-25.11-darwin 8a92fd3

pkgs.openlilylib-fonts.gutenberg1939

gutenberg1939 font for LilyPond

nixos-unstable gutenberg1939-2316a35
- nixpkgs-unstable gutenberg1939-2316a35
- nixos-unstable-small gutenberg1939-2316a35
nixos-25.11 gutenberg1939-2316a35
- nixos-25.11-small gutenberg1939-2316a35
- nixpkgs-25.11-darwin gutenberg1939-2316a35

Package maintainers

@honnip Jung seungwoo <me@honnip.page>
@yurrriq Eric Bailey <eric@ericb.me>
@MarcWeber Marc Weber <marco-oweber@gmx.de>

Permalink CVE-2026-24126

6.6 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 1 month ago

Weblate has an argument injection in management console

Weblate is a web based localization tool. Prior to 5.16.0, the SSH management console did not validate the passed input while adding the SSH host key, which could lead to an argument injection to `ssh-add`. Version 5.16.0 fixes the issue. As a workaround, properly limit access to the management console.

References

https://github.com/WeblateOrg/weblate/security/advisories/GHSA-33fm-6gp7-4p47 x_refsource_CONFIRM
https://github.com/WeblateOrg/weblate/pull/17722 x_refsource_MISC
https://github.com/WeblateOrg/weblate/commit/78773cc141ce0a97900c11341e6cf856451395fd x_refsource_MISC

Affected products

weblate

==< 5.16.0

Matching in nixpkgs

pkgs.weblate

Web based translation tool with tight version control integration

nixos-unstable 5.15.2
- nixpkgs-unstable 5.15.2
- nixos-unstable-small 5.15.2
nixos-25.11 5.15.1
- nixos-25.11-small 5.15.1
- nixpkgs-25.11-darwin 5.15.1

pkgs.python312Packages.weblate-schemas

Schemas used by Weblate

nixos-25.11 2025.6
- nixos-25.11-small 2025.6
- nixpkgs-25.11-darwin 2025.6

pkgs.python313Packages.weblate-schemas

Schemas used by Weblate

nixos-unstable 2025.6
- nixpkgs-unstable 2025.6
- nixos-unstable-small 2025.6
nixos-25.11 2025.6
- nixos-25.11-small 2025.6
- nixpkgs-25.11-darwin 2025.6

pkgs.python314Packages.weblate-schemas

Schemas used by Weblate

nixos-unstable 2025.6
- nixpkgs-unstable 2025.6
- nixos-unstable-small 2025.6

pkgs.python312Packages.weblate-language-data

Language definitions used by Weblate

nixos-25.11 2025.10
- nixos-25.11-small 2025.10
- nixpkgs-25.11-darwin 2025.10

pkgs.python313Packages.weblate-language-data

Language definitions used by Weblate

nixos-unstable 2026.1
- nixpkgs-unstable 2026.2
- nixos-unstable-small 2026.2
nixos-25.11 2025.10
- nixos-25.11-small 2025.10
- nixpkgs-25.11-darwin 2025.10

pkgs.python314Packages.weblate-language-data

Language definitions used by Weblate

nixos-unstable 2026.1
- nixpkgs-unstable 2026.2
- nixos-unstable-small 2026.2

Package maintainers

@erictapen Kerstin Humm <kerstin@erictapen.name>

Permalink CVE-2015-5297

created 1 month ago

An integer overflow issue has been reported in the general_composite_rect() …

An integer overflow issue has been reported in the general_composite_rect() function in pixman prior to version 0.32.8. An attacker could exploit this issue to cause an application using pixman to crash or, potentially, execute arbitrary code.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-5297 x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=92027 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-5297 x_transferred x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=92027 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-5297 x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=92027 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-5297 x_transferred x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=92027 x_transferred x_refsource_MISC

Affected products

pixman

==0.32.8

Matching in nixpkgs

pkgs.pixman

Low-level library for pixel manipulation

nixos-unstable 0.46.4
- nixpkgs-unstable 0.46.4
- nixos-unstable-small 0.46.4
nixos-25.11 0.46.4
- nixos-25.11-small 0.46.4
- nixpkgs-25.11-darwin 0.46.4

pkgs.xorg.pixman

Low-level library for pixel manipulation

nixos-25.11 0.46.4
- nixos-25.11-small 0.46.4
- nixpkgs-25.11-darwin 0.46.4

Permalink CVE-2013-2093

created 1 month ago

Dolibarr ERP/CRM 3.3.1 does not properly validate user input in …

Dolibarr ERP/CRM 3.3.1 does not properly validate user input in viewimage.php and barcode.lib.php which allows remote attackers to execute arbitrary commands.

References

http://www.openwall.com/lists/oss-security/2013/05/14/3 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-2093 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/84249 x_refsource_MISC
https://github.com/Dolibarr/dolibarr/commit/526a80dd202bbca396687a502d52c27e06e… x_refsource_CONFIRM
https://security-tracker.debian.org/tracker/CVE-2013-2093 x_transferred x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/84249 x_transferred x_refsource_MISC
https://github.com/Dolibarr/dolibarr/commit/526a80dd202bbca396687a502d52c27e06e… x_transferred x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2013/05/14/3 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/05/14/3 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-2093 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/84249 x_refsource_MISC
https://github.com/Dolibarr/dolibarr/commit/526a80dd202bbca396687a502d52c27e06e… x_refsource_CONFIRM
https://security-tracker.debian.org/tracker/CVE-2013-2093 x_transferred x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/84249 x_transferred x_refsource_MISC
https://github.com/Dolibarr/dolibarr/commit/526a80dd202bbca396687a502d52c27e06e… x_transferred x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2013/05/14/3 x_transferred x_refsource_MISC

Affected products

dolibarr

==3.3.4-1

Matching in nixpkgs

pkgs.dolibarr

Enterprise resource planning (ERP) and customer relationship manager (CRM) server

nixos-unstable 22.0.4
- nixpkgs-unstable 22.0.4
- nixos-unstable-small 22.0.4
nixos-25.11 22.0.4
- nixos-25.11-small 22.0.4
- nixpkgs-25.11-darwin 22.0.4

Package maintainers

@GaetanLepage Gaetan Lepage <gaetan@glepage.com>

Permalink CVE-2013-4367

created 1 month ago

ovirt-engine 3.2 running on Linux kernel 3.1 and newer creates …

ovirt-engine 3.2 running on Linux kernel 3.1 and newer creates certain files world-writeable due to an upstream kernel change which impacted how python's os.chmod() works when passed a mode of '-1'.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4367 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4367 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4367 x_transferred x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4367 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4367 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4367 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4367 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4367 x_transferred x_refsource_MISC

Affected products

ovirt-engine

==ovirt-engine 3.2 running on Linux kernel 3.1 and newer

Matching in nixpkgs

pkgs.rubyPackages.ovirt-engine-sdk

None

nixos-unstable 4.6.1
- nixpkgs-unstable 4.6.1
- nixos-unstable-small 4.6.1
nixos-25.11 4.6.1
- nixos-25.11-small 4.6.1
- nixpkgs-25.11-darwin 4.6.1

pkgs.rubyPackages_3_1.ovirt-engine-sdk

None

pkgs.rubyPackages_3_2.ovirt-engine-sdk

None

pkgs.rubyPackages_3_3.ovirt-engine-sdk

None

nixos-unstable 4.6.1
- nixpkgs-unstable 4.6.1
- nixos-unstable-small 4.6.1
nixos-25.11 4.6.1
- nixos-25.11-small 4.6.1
- nixpkgs-25.11-darwin 4.6.1

pkgs.rubyPackages_3_4.ovirt-engine-sdk

None

nixos-unstable 4.6.1
- nixpkgs-unstable 4.6.1
- nixos-unstable-small 4.6.1
nixos-25.11 4.6.1
- nixos-25.11-small 4.6.1
- nixpkgs-25.11-darwin 4.6.1

pkgs.rubyPackages_4_0.ovirt-engine-sdk

None

nixos-unstable 4.6.1
- nixpkgs-unstable 4.6.1
- nixos-unstable-small 4.6.1
nixos-25.11 4.6.1
- nixos-25.11-small 4.6.1
- nixpkgs-25.11-darwin 4.6.1

Permalink CVE-2013-4168

created 1 month ago

Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start …

Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start and end time fields.

References

https://security-tracker.debian.org/tracker/CVE-2013-4168 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4168 x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/113987.ht… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114008.ht… x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/07/25/8 x_refsource_MISC
https://github.com/oetiker/SmokePing/commit/bad9f9c28f0939b269f90072aa4cf41f20f… x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-4168 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4168 x_transferred x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/113987.ht… x_transferred x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114008.ht… x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/07/25/8 x_transferred x_refsource_MISC
https://github.com/oetiker/SmokePing/commit/bad9f9c28f0939b269f90072aa4cf41f20f… x_transferred x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-4168 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4168 x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/113987.ht… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114008.ht… x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/07/25/8 x_refsource_MISC
https://github.com/oetiker/SmokePing/commit/bad9f9c28f0939b269f90072aa4cf41f20f… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/113987.ht… x_transferred x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114008.ht… x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/07/25/8 x_transferred x_refsource_MISC
https://github.com/oetiker/SmokePing/commit/bad9f9c28f0939b269f90072aa4cf41f20f… x_transferred x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-4168 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4168 x_transferred x_refsource_MISC

Affected products

SmokePing

==2.6.9

Matching in nixpkgs

pkgs.smokeping

Network latency collector

nixos-unstable 2.9.0
- nixpkgs-unstable 2.9.0
- nixos-unstable-small 2.9.0
nixos-25.11 2.9.0
- nixos-25.11-small 2.9.0
- nixpkgs-25.11-darwin 2.9.0

pkgs.prometheus-smokeping-prober

Prometheus exporter for sending continual ICMP/UDP pings

nixos-unstable 0.10.0
- nixpkgs-unstable 0.10.0
- nixos-unstable-small 0.10.0
nixos-25.11 0.10.0
- nixos-25.11-small 0.10.0
- nixpkgs-25.11-darwin 0.10.0

Package maintainers

@lukegb Luke Granger-Brown <nix@lukegb.com>

Permalink CVE-2013-1820

created 1 month ago

tuned before 2.x allows local users to kill running processes …

tuned before 2.x allows local users to kill running processes due to insecure permissions with tuned's ktune service.

References

https://security-tracker.debian.org/tracker/CVE-2013-1820 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1820 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=918233 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-1820 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1820 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=918233 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=918233 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-1820 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1820 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-1820 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1820 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=918233 x_transferred x_refsource_MISC

Affected products

tuned

==2.10.0-1

Matching in nixpkgs

pkgs.tuned

Tuning Profile Delivery Mechanism for Linux

nixos-unstable 2.26.0
- nixpkgs-unstable 2.26.0
- nixos-unstable-small 2.26.0
nixos-25.11 2.26.0
- nixos-25.11-small 2.26.0
- nixpkgs-25.11-darwin 2.26.0

pkgs.python312Packages.mypy-boto3-neptunedata

Type annotations for boto3 neptunedata

nixos-25.11 boto3-neptunedata-1.41.0
- nixos-25.11-small boto3-neptunedata-1.41.0
- nixpkgs-25.11-darwin boto3-neptunedata-1.41.0

pkgs.python313Packages.mypy-boto3-neptunedata

Type annotations for boto3 neptunedata

nixos-unstable boto3-neptunedata-1.42.45
- nixpkgs-unstable boto3-neptunedata-1.42.45
- nixos-unstable-small boto3-neptunedata-1.42.45
nixos-25.11 boto3-neptunedata-1.41.0
- nixos-25.11-small boto3-neptunedata-1.41.0
- nixpkgs-25.11-darwin boto3-neptunedata-1.41.0

pkgs.python314Packages.mypy-boto3-neptunedata

Type annotations for boto3 neptunedata

nixos-unstable boto3-neptunedata-1.42.45
- nixpkgs-unstable boto3-neptunedata-1.42.45
- nixos-unstable-small boto3-neptunedata-1.42.45

Package maintainers

@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@getchoo Seth Flynn <getchoo@tuta.io>

Permalink CVE-2013-4303

created 1 month ago

includes/libs/IEUrlExtension.php in the MediaWiki API in MediaWiki 1.19.x before 1.19.8, …

includes/libs/IEUrlExtension.php in the MediaWiki API in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 does not properly detect extensions when there are an even number of "." (period) characters in a string, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the siprop parameter in a query action to wiki/api.php.

References

http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.h… x_refsource_MISC
http://seclists.org/oss-sec/2013/q3/553 x_refsource_MISC
https://bugzilla.wikimedia.org/show_bug.cgi?id=52746 x_refsource_MISC
http://www.securityfocus.com/bid/62194 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/86897 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/86897 x_transferred x_refsource_MISC
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.h… x_transferred x_refsource_MISC
http://seclists.org/oss-sec/2013/q3/553 x_transferred x_refsource_MISC
https://bugzilla.wikimedia.org/show_bug.cgi?id=52746 x_transferred x_refsource_MISC
http://www.securityfocus.com/bid/62194 x_transferred x_refsource_MISC
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.h… x_refsource_MISC
http://seclists.org/oss-sec/2013/q3/553 x_refsource_MISC
https://bugzilla.wikimedia.org/show_bug.cgi?id=52746 x_refsource_MISC
http://www.securityfocus.com/bid/62194 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/86897 x_refsource_MISC
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.h… x_transferred x_refsource_MISC
http://seclists.org/oss-sec/2013/q3/553 x_transferred x_refsource_MISC
https://bugzilla.wikimedia.org/show_bug.cgi?id=52746 x_transferred x_refsource_MISC
http://www.securityfocus.com/bid/62194 x_transferred x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/86897 x_transferred x_refsource_MISC

Affected products

MediaWiki

==1.19.x before 1.19.8
==and 1.21.x before 1.21.2
==1.20.x before 1.20.7

Matching in nixpkgs

pkgs.mediawiki

Collaborative editing software that runs Wikipedia

nixos-unstable 1.45.1
- nixpkgs-unstable 1.45.1
- nixos-unstable-small 1.45.1
nixos-25.11 1.44.3
- nixos-25.11-small 1.44.3
- nixpkgs-25.11-darwin 1.44.3

Package maintainers

@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@gshipunov Grigory Shipunov <blame@oxapentane.com>
@tanneberger Tassilo Tanneberger <revol-xut@protonmail.com>
@astro Astro <astro@spaceboyz.net>

Permalink CVE-2013-0342

created 1 month ago

The CreateID function in packet.py in pyrad before 2.1 uses …

The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which makes it easier for remote attackers to spoof packets by predicting the next ID, a different vulnerability than CVE-2013-0294.

References

http://www.openwall.com/lists/oss-security/2013/02/22/2 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/21/27 x_refsource_MISC
http://www.securityfocus.com/bid/57984 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/82134 x_refsource_MISC
https://github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953be… x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=911685 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/15/9 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=911685 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/15/9 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/22/2 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/21/27 x_transferred x_refsource_MISC
http://www.securityfocus.com/bid/57984 x_transferred x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/82134 x_transferred x_refsource_MISC
https://github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953be… x_transferred x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=911685 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/15/9 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/22/2 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/21/27 x_refsource_MISC
http://www.securityfocus.com/bid/57984 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/82134 x_refsource_MISC
https://github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953be… x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=911685 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/15/9 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/22/2 x_transferred x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/02/21/27 x_transferred x_refsource_MISC
http://www.securityfocus.com/bid/57984 x_transferred x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/82134 x_transferred x_refsource_MISC
https://github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953be… x_transferred x_refsource_CONFIRM

Affected products

pyrad

==before 2.1

Matching in nixpkgs

pkgs.pyradio

Curses based internet radio player

nixos-unstable 0.9.3.11.27
- nixpkgs-unstable 0.9.3.11.27
- nixos-unstable-small 0.9.3.11.27
nixos-25.11 0.9.3.11.27
- nixos-25.11-small 0.9.3.11.27
- nixpkgs-25.11-darwin 0.9.3.11.27