github-actions[bot]
commented
4 days ago Report for marlon
Version changes:
Security vulnerability report
69 derivations with active advisories 3 derivations left out due to whitelisting ------------------------------------------------------------------------ audiofile-0.3.6 /nix/store/zn95q4flrjbgs0zckvs7nh6hfia6klmr-audiofile-0.3.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-18781 5.5 ------------------------------------------------------------------------ avahi-0.8 /nix/store/xngdb58ggdafdy2c5i27dsl797zj2axi-avahi-0.8.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-26720 7.8 ------------------------------------------------------------------------ bind-9.18.28 /nix/store/p2kv4m5jkacrhg22510qb59l7pqwrm7h-bind-9.18.28.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-6470 7.5 ------------------------------------------------------------------------ cereal-0.5.8.3 /nix/store/p95cnn3gna8ix579yjcg8ays36hk7gz8-cereal-0.5.8.3.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11105 9.8 https://nvd.nist.gov/vuln/detail/CVE-2020-11104 5.3 ------------------------------------------------------------------------ commonmark-0.2.6.1 /nix/store/jqmb9a246gq9gwf912y93ld6n55q7xng-commonmark-0.2.6.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-10010 6.1 ------------------------------------------------------------------------ cups-2.4.11 /nix/store/hhcrvmzc1pv1xmia4mv4hvgxdx2961b7-cups-2.4.11.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-26691 6.7 ------------------------------------------------------------------------ dash-0.5.12 /nix/store/7kiia0prq7l9wcbflx11dgpq1l7rkvwg-dash-0.5.12.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-21485 5.4 ------------------------------------------------------------------------ dbus-0.9.7 /nix/store/gzmx45mddgsdm6jadd7nk2r7bq24mq9s-dbus-0.9.7.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-12749 7.1 https://nvd.nist.gov/vuln/detail/CVE-2022-42010 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42011 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42012 6.5 ------------------------------------------------------------------------ dbus-1 /nix/store/3wsl2d1w8rx27hsxwzmiap73pa0fj35y-dbus-1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-12749 7.1 https://nvd.nist.gov/vuln/detail/CVE-2022-42010 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42011 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42012 6.5 ------------------------------------------------------------------------ ecdsa-0.14.8 /nix/store/jpl0c813b3xz302m6m6c3rln6ssnw3i5-ecdsa-0.14.8.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-23342 7.4 ------------------------------------------------------------------------ flex-2.6.4 /nix/store/gblp7r8kdl1gfw9hxrrx0xgsxpapnr99-flex-2.6.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-6293 5.5 ------------------------------------------------------------------------ foundation-0.0.30 /nix/store/xdr4r3c690gf1mzzmv0ldg9pqcpq972m-foundation-0.0.30.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-26304 7.5 ------------------------------------------------------------------------ fuse-2.9.9 /nix/store/sv7w4hd8b44f9f5xf91ifk7hxhlgl8cp-fuse-2.9.9.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9 /nix/store/mzdmqmx45x500w5p681smvhc1bbxfh32-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ fuse-3.16.2 /nix/store/vqhp78yv4a52w1znkbxgym1bsh1j5ap6-fuse-3.16.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ gcc-13.3.0 /nix/store/d501c7jfvisxah7bpaw3a7lx0z1l26qn-gcc-13.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4039 4.8 ------------------------------------------------------------------------ git-2.47.0 /nix/store/faqnz9j01fxvqhbzw1a544g8cqcrygia-git-2.47.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36882 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-30947 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-36883 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38663 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-21684 6.1 https://nvd.nist.gov/vuln/detail/CVE-2020-2136 5.4 https://nvd.nist.gov/vuln/detail/CVE-2022-36884 5.3 https://nvd.nist.gov/vuln/detail/CVE-2019-1003010 4.3 ------------------------------------------------------------------------ go-1.21.0-linux-amd64-bootstrap /nix/store/n3cr5a9g8clpd0n3px2g8lalprwlqn0q-go-1.21.0-linux-amd64-bootstrap.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-39320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2024-24790 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-39323 8.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39321 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39322 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39325 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-44487 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39318 6.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39319 6.1 https://nvd.nist.gov/vuln/detail/CVE-2024-24789 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ go-1.23.3 /nix/store/hr6yjfp34id9pnhbrwfzzr8hmzzrr01a-go-1.23.3.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ h2-0.3.26 /nix/store/ixkdgs95ripphp881ky4lsf07p3vwx1w-h2-0.3.26.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-45868 7.8 ------------------------------------------------------------------------ h2-0.4.6 /nix/store/s8vdy267lmwz5xrkqh2fdan198sy4b3n-h2-0.4.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-45868 7.8 ------------------------------------------------------------------------ hedgehog-1.4 /nix/store/s929qagvnw27va20baczvxz87h7vwnn5-hedgehog-1.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ hedgehog-1.4-r8.cabal /nix/store/1znf7bab1lr5hmb1jb2c08bkgd7vxsyc-hedgehog-1.4-r8.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ home-0.5.9 /nix/store/rd0xxcp06qrjs100dkjpaaw23rkf95sy-home-0.5.9.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-3612 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-25264 6.7 ------------------------------------------------------------------------ http-0.2.12 /nix/store/bi35c6fiikb06rs1c4fcngvkv3ls9q97-http-0.2.12.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-35669 6.1 ------------------------------------------------------------------------ http-1.1.0 /nix/store/sipwc4afwv3ggzcwl1ryx8syfrirnqix-http-1.1.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36032 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-26044 5.3 ------------------------------------------------------------------------ http-client-0.7.17 /nix/store/4y6fv07hl5vzp1g7pgdqsg33lavy7bni-http-client-0.7.17.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11021 7.5 ------------------------------------------------------------------------ hyper-0.14.30 /nix/store/spmw2sscm9ihrycdpll94xvx5xpmsq8m-hyper-0.14.30.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-23741 9.8 ------------------------------------------------------------------------ hyper-1.4.1 /nix/store/2h7vzdk4iiwxkyfq46k3x3df6rwwyg69-hyper-1.4.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-23741 9.8 ------------------------------------------------------------------------ jbig2dec-0.20 /nix/store/45fa6i7fcdh2xh3dhqcpybvgya409p4h-jbig2dec-0.20.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-46361 6.5 ------------------------------------------------------------------------ lapack-3 /nix/store/599gy2zlxs2sq3g086pigg1l1b9cwpn3-lapack-3.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4048 9.1 ------------------------------------------------------------------------ libmemcached-1.0.18 /nix/store/8py5s3ncx1q2d78lvxa0wcih0i181h12-libmemcached-1.0.18.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-27478 6.5 ------------------------------------------------------------------------ libmpeg2-0.5.1 /nix/store/gdvhl8h2mpxyyplxridaxpayppf763ns-libmpeg2-0.5.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37416 6.5 ------------------------------------------------------------------------ libsndfile-1.2.2 /nix/store/rql6m7vn0cnjql8fmpc8s9k88jrfl5yx-libsndfile-1.2.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-50613 6.5 https://nvd.nist.gov/vuln/detail/CVE-2024-50612 5.5 ------------------------------------------------------------------------ libssh2-1.11.1 /nix/store/6nw4iifhabnr6rdhv1k6q2fl7ni97zz8-libssh2-1.11.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-48795 5.9 ------------------------------------------------------------------------ lodepng-3.10.1 /nix/store/ds8s3dc6n4ivrpdbaa6vpzav4hn3z2dg-lodepng-3.10.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-17178 7.5 ------------------------------------------------------------------------ mercurial-6.8.2 /nix/store/jsbrdqaxbs3f6mr61c4kd00h881xd97x-mercurial-6.8.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-43410 5.3 ------------------------------------------------------------------------ network-3.1.4.0 /nix/store/azf2zjwjqh8aj591gl74dhf0cdk57sj2-network-3.1.4.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ network-3.1.4.0-r1.cabal /nix/store/804vjz8k6r0xfwj1ysq709n8rrq91d5p-network-3.1.4.0-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ ninja-1.12.1 /nix/store/4r7j4sw2a4kvclq4lhbgwdjyrprhr437-ninja-1.12.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4336 9.8 ------------------------------------------------------------------------ numpy-0.21.0 /nix/store/12cbxkilbdif52c2am0hnbwynhnkvdl9-numpy-0.21.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-6446 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-41496 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-34141 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-41495 5.3 ------------------------------------------------------------------------ oh-my-zsh-2024-10-01 /nix/store/kbxq3b87nc17n4ivfysnqlgxqlh16w3s-oh-my-zsh-2024-10-01.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3727 9.8 ------------------------------------------------------------------------ openvpn-2.6.12 /nix/store/4vxhzs2ppk5mb6bvb7l6yknl2y2ykc81-openvpn-2.6.12.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27569 7.5 ------------------------------------------------------------------------ patch-2.7.6 /nix/store/qg2mlfvjfqi1a038a5k9pwdchc5ghxy2-patch-2.7.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-20633 5.5 ------------------------------------------------------------------------ pip-20.3.4-source /nix/store/jxjahh2zy6c88f5p1wcp6nhphndzbyr6-pip-20.3.4-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3572 5.7 https://nvd.nist.gov/vuln/detail/CVE-2023-5752 3.3 ------------------------------------------------------------------------ polkit-1.pam /nix/store/qj2ifszk8cb930gdczy1p4ipwmny4745-polkit-1.pam.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4034 7.8 ------------------------------------------------------------------------ python-2.7.18.8 /nix/store/h9c3qljkm42malpaq49mhrfbi9n9pf4p-python-2.7.18.8.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-48565 9.8 https://nvd.nist.gov/vuln/detail/CVE-2019-9674 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-0391 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-45061 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48560 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-24329 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-36632 7.5 https://nvd.nist.gov/vuln/detail/CVE-2024-6232 7.5 https://nvd.nist.gov/vuln/detail/CVE-2024-7592 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-26488 7.0 https://nvd.nist.gov/vuln/detail/CVE-2021-3733 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48564 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-23336 5.9 https://nvd.nist.gov/vuln/detail/CVE-2022-48566 5.9 https://nvd.nist.gov/vuln/detail/CVE-2023-40217 5.3 ------------------------------------------------------------------------ quote-1.0.36 /nix/store/qv8h7p2pvymbfgqbra8a5l4ii2z40v2h-quote-1.0.36.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-16194 5.3 ------------------------------------------------------------------------ quote-1.0.37 /nix/store/03lkgsg6cx8bj8nv5pa7ymfsaz2b6x33-quote-1.0.37.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-16194 5.3 ------------------------------------------------------------------------ rubygems-3.5.22 /nix/store/q0kd8pjiw3ikjvrbw0jzsy4fv5msw7kb-rubygems-3.5.22.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36073 8.8 ------------------------------------------------------------------------ safe-0.3.21 /nix/store/iw89zgcki5vq55r3zh1m87zxcxhinprp-safe-0.3.21.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ safe-0.3.21-r1.cabal /nix/store/158bd0vmrf2z74bv63pm48q1w4xazgby-safe-0.3.21-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ samba-4.20.4 /nix/store/axqx6ja6iqf5n17kdkrf5b4q32kfds0h-samba-4.20.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37966 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-38023 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-32743 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-37967 7.2 https://nvd.nist.gov/vuln/detail/CVE-2021-3670 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-1615 5.5 ------------------------------------------------------------------------ sassc-3.6.2 /nix/store/zcrkq8hb9jwqllrn680zbzh0p7lxs0js-sassc-3.6.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-43357 7.5 ------------------------------------------------------------------------ semver-1.0.23 /nix/store/vrpilkwjxg3w0yh6hnk1s0hrgp83fq01-semver-1.0.23.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-25883 7.5 ------------------------------------------------------------------------ setuptools-44.0.0-source /nix/store/60w223rgccfrrasxijx9lx86bsaxryvh-setuptools-44.0.0-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40897 5.9 ------------------------------------------------------------------------ stringbuilder-0.5.1 /nix/store/fzf8z5wm2pq8x5h3fcl1piyvblxrdi1k-stringbuilder-0.5.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-21524 9.1 ------------------------------------------------------------------------ vault-0.3.1.5 /nix/store/592r71r3qkk0idfakk1s0d2jqd6wgpwn-vault-0.3.1.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2024-8365 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ vault-0.3.1.5-r8.cabal /nix/store/0bpmcbhfvq20bxigymw6z0rcszv66h58-vault-0.3.1.5-r8.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2024-8365 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ warp-3.3.31 /nix/store/v5l0p5lm03ciic6mrql9pjr04f4w9ggr-warp-3.3.31.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2022-3512 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4428 8.0 https://nvd.nist.gov/vuln/detail/CVE-2022-2145 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-2225 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-0652 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1412 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1862 7.3 https://nvd.nist.gov/vuln/detail/CVE-2023-2754 6.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0238 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0654 3.7 ------------------------------------------------------------------------ wheel-0.37.1-source /nix/store/16xbjk0dk2099907k0bskl1kfn88if7i-wheel-0.37.1-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40898 7.5 ------------------------------------------------------------------------ xdg-utils-1.2.1 /nix/store/lkl36vb7vz05jlflilwwnppzmh7xidrd-xdg-utils-1.2.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27748 6.5 ------------------------------------------------------------------------ yaml-0.11.11.2 /nix/store/92rmmcjskx08m3j95griqsw8fmd59xhi-yaml-0.11.11.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yaml-0.11.11.2-r2.cabal /nix/store/7sdg345ssbgwnp3769z4acq669ng4gld-yaml-0.11.11.2-r2.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yara-4.5.0 /nix/store/qr7vxhbaxc298w4jgaxr46v5ii45yw36-yara-4.5.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-45429 5.5 ------------------------------------------------------------------------ yasm-1.3.0 /nix/store/mq38vzixgc5pac144kf99q8s4sr5rdf4-yasm-1.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-33454 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33455 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33456 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33458 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33459 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33460 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33461 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33462 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33463 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33464 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33465 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33466 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33467 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33468 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-30402 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31972 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31973 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31974 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-51258 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31975 3.3 ------------------------------------------------------------------------ zlib-0.6.3.0 /nix/store/w1q0dssc3nn0zv0zvh7kn3rkx56x6yrc-zlib-0.6.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-0.6.3.0-r5.cabal /nix/store/7v6bi3n199ig5wnz58rlx3ic2rqb9v9j-zlib-0.6.3.0-r5.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-1.3.1 /nix/store/6nvdzyjrhc9h84y2iqby9qpzw0v7gz4d-zlib-1.3.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 use --show-whitelisted to see derivations with only whitelisted CVEs
Report for
rolandVersion changes:
Security vulnerability report