github-actions[bot]
commented
2 months ago Report for marlon
Version changes:
Version 1 -> 2:
SDL2: 2.30.4 → 2.30.5
aardvark-dns: -19.1 KiB
aws-c-auth: 0.7.22 → 0.7.25, +9.2 KiB
aws-c-common: 0.9.23 → 0.9.27
aws-c-compression: 0.2.18 → 0.2.19
aws-c-event-stream: 0.4.2 → 0.4.3
aws-c-io: 0.14.9 → 0.14.18
bash: 5.2p26 → 5.2p32
bash-interactive: 5.2p26 → 5.2p32
bat: -38.2 KiB
btrfs-progs: 6.10 → 6.10.1, -55.2 KiB
bubblewrap: 0.9.0 → 0.10.0
crun: 1.15 → 1.16.1
curl: 8.8.0 → 8.9.0, +14.6 KiB
dav1d: +44.4 KiB
delta: 0.17.0 → 0.18.0, -19.0 KiB
dhcpcd: 10.0.8 → 10.0.6
docker-compose: 2.29.1 → 2.29.2, +8.0 KiB
efivar: 38 → 39
fd: 10.1.0 → 10.2.0
ffmpeg: +62.1 KiB
ffmpeg-headless: +70.0 KiB
fribidi: 1.0.14 → 1.0.15
gdbm: 1.23 → 1.24, -362.4 KiB
gstreamer: -27.4 KiB
gvproxy: 0.7.3 → 0.7.4, +28.2 KiB
initrd-linux: 6.6.44 → 6.6.47, +14.0 KiB
libX11: 1.8.9 → 1.8.10, +9.8 KiB
libaom: +2046.1 KiB
libimagequant: -30.5 KiB
libksba: 1.6.6 → 1.6.7
libndp: 1.8 → 1.9, +8.7 KiB
libopenmpt: 0.7.8 → 0.7.9
librsvg: -177.0 KiB
libvmaf: +18.6 KiB
libxml2: 2.13.2 → 2.13.3
linux: 6.6.44, 6.6.44-modules → 6.6.47, 6.6.47-modules, +22.4 KiB
make-initrd-ng: -25.5 KiB
mesa: 24.1.4 → 24.1.5
netavark: -176.5 KiB
networkmanager: 1.48.6 → 1.48.8
nixos-configuration-reference: +12.3 KiB
nixos-manual: +46.1 KiB
nixos-system-marlon: 24.11.20240811.a58bc8a → 24.11.20240824.d0e1602
nsncd: ∅ → 1.4.1-unstable-2024-04-10, +1307.5 KiB
nsncd-unstable: 2024-03-18 → ∅, -1341.9 KiB
nss: 3.101.1 → 3.101.2
oh-my-zsh: 2024-08-04 → 2024-08-21, -22.9 KiB
openvpn: 2.6.11 → 2.6.12
pipewire: 1.2.1 → 1.2.2
podman: 5.2.0 → 5.2.2, +56.8 KiB
publicsuffix-list: 0-unstable-2024-01-07 → 0-unstable-2024-06-19, +9.6 KiB
pyenv: 2.4.8 → 2.4.10
python3.12-cryptography: 42.0.8 → 43.0.0, +277.3 KiB
python3.12-keyring: 25.2.1 → 25.3.0
python3.12-pillow: 10.3.0 → 10.4.0, +111.9 KiB
python3.12-rapidfuzz: 3.9.5 → 3.9.6
ripgrep: +88.4 KiB
s2n-tls: 1.4.17 → 1.5.1, +23.9 KiB
samba: 4.20.1 → 4.20.4, +89.2 KiB
sd: -65.8 KiB
source: +2572.1 KiB
systemd: 256.2 → 256.4, +13.6 KiB
systemd-minimal: 256.2 → 256.4
systemd-minimal-libs: 256.2 → 256.4
tailscale: 1.70.0 → 1.72.1, +345.0 KiB
tree-sitter: -70.4 KiB
webkitgtk: 2.44.2+abi=4.1 → 2.44.3+abi=4.1, +53.8 KiB
x265: 3.5 → 3.6, +220.7 KiB
xdg-dbus-proxy: 0.1.5 → 0.1.6
zfs-kernel: 2.2.5-6.6.44 → 2.2.5-6.6.47Security vulnerability report
52 derivations with active advisories 8 derivations left out due to whitelisting ------------------------------------------------------------------------ ShellCheck-0.10.0 /nix/store/1za6wfz4xd9g40js74dn8q2mh3lz8cpc-ShellCheck-0.10.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-28794 9.8 ------------------------------------------------------------------------ audiofile-0.3.6 /nix/store/nqmwnxdpz5nrl99xynbladnvg91v4v5s-audiofile-0.3.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-18781 5.5 ------------------------------------------------------------------------ cereal-0.5.8.3 /nix/store/np3610i7d2q36lpfkpwh0ck3726q1nra-cereal-0.5.8.3.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11105 9.8 https://nvd.nist.gov/vuln/detail/CVE-2020-11104 5.3 ------------------------------------------------------------------------ commonmark-0.2.6 /nix/store/1hs5hp8j7pph4s8klq551xc1kgdidp0h-commonmark-0.2.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-10010 6.1 ------------------------------------------------------------------------ cups-2.4.10 /nix/store/63dk65qvihjm3610h07j3yyv1kj3mvlc-cups-2.4.10.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-26691 6.7 ------------------------------------------------------------------------ dbus-1 /nix/store/m9sa1zavx8pfx4c0izycfjc6hac9dscd-dbus-1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-42010 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42011 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42012 6.5 ------------------------------------------------------------------------ fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9 /nix/store/z3gns24ib8rx8aq61k7ym7nvf4yp7s5r-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ fuse-3.16.2 /nix/store/rgi9bjych5l0g3n0a58hkir1bymw427s-fuse-3.16.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ gcc-13.3.0 /nix/store/yx0had1kdvn0wh20m41wa27y1jarlazx-gcc-13.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4039 4.8 ------------------------------------------------------------------------ git-2.45.2 /nix/store/49m8y9hwp80xif63g4lm7k534bqgzg2h-git-2.45.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36882 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-30947 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-36883 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38663 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-21684 6.1 https://nvd.nist.gov/vuln/detail/CVE-2020-2136 5.4 https://nvd.nist.gov/vuln/detail/CVE-2022-36884 5.3 https://nvd.nist.gov/vuln/detail/CVE-2019-1003010 4.3 ------------------------------------------------------------------------ go-1.21.0-linux-amd64-bootstrap /nix/store/pkv75cfaxf0z7bvk716n0m8carczr1sc-go-1.21.0-linux-amd64-bootstrap.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-39320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2024-24790 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-39323 8.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39321 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39322 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39325 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-44487 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39318 6.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39319 6.1 https://nvd.nist.gov/vuln/detail/CVE-2024-24789 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ go-1.22.5 /nix/store/bbh04pw5g9w9vyadjhi43qkz8j72y1b6-go-1.22.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ hedgehog-1.4 /nix/store/sy8ib28x8f2aadj32x0x1r0lxq17wp4z-hedgehog-1.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ hedgehog-1.4-r8.cabal /nix/store/r4kbjr2x39i8a412x8ml2f3gps6n1gkk-hedgehog-1.4-r8.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ http-client-0.7.17 /nix/store/pnfd9la8ncv07mk549fvry9p3w3p2wap-http-client-0.7.17.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11021 7.5 ------------------------------------------------------------------------ jbig2dec-0.20 /nix/store/87lrha1km079g5z3vwg9bnxyapq19xzw-jbig2dec-0.20.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-46361 6.5 ------------------------------------------------------------------------ libmemcached-1.0.18 /nix/store/sa22sh7qxj9y907f8hrg32nqr8y7ylin-libmemcached-1.0.18.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-27478 6.5 ------------------------------------------------------------------------ libmpeg2-0.5.1 /nix/store/36ygm3r1ab2igbnaiidhx5d8mvgplraa-libmpeg2-0.5.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37416 6.5 ------------------------------------------------------------------------ libyaml-0.1.4 /nix/store/jg8j0bcngn7sls5nhnbzz4v3lljdq8hi-libyaml-0.1.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-35325 9.8 ------------------------------------------------------------------------ libyaml-0.2.5 /nix/store/i8ivqay64jnz5n570bxv1cx67irxdag7-libyaml-0.2.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-35325 9.8 https://nvd.nist.gov/vuln/detail/CVE-2024-35326 9.8 https://nvd.nist.gov/vuln/detail/CVE-2024-35328 7.5 ------------------------------------------------------------------------ lodepng-3.10.1 /nix/store/ad547i3ajsxj8hc8kd0swnwsip4dj1g5-lodepng-3.10.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-17178 7.5 ------------------------------------------------------------------------ network-3.1.4.0 /nix/store/p4p62qmvyz7f7qjzksv67rk256k64fry-network-3.1.4.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ network-3.1.4.0-r1.cabal /nix/store/1zk87dv2x5a74dc50ijim7kiblav857c-network-3.1.4.0-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ ninja-1.12.1 /nix/store/xk58a1f55055pyh45yyhrmsi0whjpfcj-ninja-1.12.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4336 9.8 ------------------------------------------------------------------------ oh-my-zsh-2024-08-21 /nix/store/s8w3gxq855s694d9c1ilgv6m82rfadrx-oh-my-zsh-2024-08-21.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3727 9.8 ------------------------------------------------------------------------ openvpn-2.6.12 /nix/store/q2ffz492yyakpp0bzpm59k72d7fjv434-openvpn-2.6.12.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27569 7.5 ------------------------------------------------------------------------ pip-20.3.4-source /nix/store/f6q5zwzf99rpb6qxccpb6h79byb7c2wm-pip-20.3.4-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3572 5.7 https://nvd.nist.gov/vuln/detail/CVE-2023-5752 3.3 ------------------------------------------------------------------------ polkit-1.pam /nix/store/6g10r1zrqrfqsn327qqbbjqrgw7svmp7-polkit-1.pam.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4034 7.8 ------------------------------------------------------------------------ procps-3.3.17-binlore /nix/store/g2z4y9f8l7xqxs3ybm45pa8pvwlw39jj-procps-3.3.17-binlore.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4016 3.3 ------------------------------------------------------------------------ procps-3.3.17-lore-override /nix/store/l2031imssh312023475g9iphnfz7kagi-procps-3.3.17-lore-override.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4016 3.3 ------------------------------------------------------------------------ python-2.7.18.8 /nix/store/iql8ps09akbiljixk7n101q94wqfpr9i-python-2.7.18.8.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-48565 9.8 https://nvd.nist.gov/vuln/detail/CVE-2019-9674 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-0391 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-45061 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48560 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-24329 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-36632 7.5 https://nvd.nist.gov/vuln/detail/CVE-2024-7592 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-26488 7.0 https://nvd.nist.gov/vuln/detail/CVE-2021-3733 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48564 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-23336 5.9 https://nvd.nist.gov/vuln/detail/CVE-2022-48566 5.9 https://nvd.nist.gov/vuln/detail/CVE-2023-40217 5.3 ------------------------------------------------------------------------ quote-1.0.36 /nix/store/fxxymyvysn8adikf85djsd5386xrybsk-quote-1.0.36.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-16194 5.3 ------------------------------------------------------------------------ rubygems-3.5.16 /nix/store/f8md51g59h3brw293x618gxxzvsskyqz-rubygems-3.5.16.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36073 8.8 ------------------------------------------------------------------------ safe-0.3.21 /nix/store/ynrkr73jzkr3y64ch561b175y6vq81y2-safe-0.3.21.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ safe-0.3.21-r1.cabal /nix/store/nyzbkimrj7dwpgihx2lilvplcxya7742-safe-0.3.21-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ samba-4.20.4 /nix/store/qkzllm8p4arxcgd9296mgc7r8qgkwap9-samba-4.20.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37966 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-38023 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-32743 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-37967 7.2 https://nvd.nist.gov/vuln/detail/CVE-2021-3670 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-1615 5.5 ------------------------------------------------------------------------ sassc-3.6.2 /nix/store/bz5pxag76y9x1pbqm85nirbza1m1p6bq-sassc-3.6.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-43357 7.5 ------------------------------------------------------------------------ setuptools-44.0.0-source /nix/store/cyd777rzwp70pqpgkqyprgscyivm8h23-setuptools-44.0.0-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40897 5.9 ------------------------------------------------------------------------ unzip-6.0 /nix/store/6xmc6zv6avc0yznf7scn538gsglkj144-unzip-6.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4217 3.3 ------------------------------------------------------------------------ vault-0.3.1.5 /nix/store/chdhghiyyhd3acm7fl42k84nrvcch6nd-vault-0.3.1.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ vault-0.3.1.5-r7.cabal /nix/store/y2kxaf9kclbdjzlvbi0nnlk70vxzmjz4-vault-0.3.1.5-r7.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ vim-9.1.0595 /nix/store/sl7hdpms2jvbrg4v832fq0ha9zk6fn8a-vim-9.1.0595.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-41957 5.3 https://nvd.nist.gov/vuln/detail/CVE-2024-41965 4.2 ------------------------------------------------------------------------ warp-3.3.31 /nix/store/h88c30zam2j3sjpnkp1jpzli4zfqjjfm-warp-3.3.31.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2022-3512 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4428 8.0 https://nvd.nist.gov/vuln/detail/CVE-2022-2145 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-2225 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-0652 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1412 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1862 7.3 https://nvd.nist.gov/vuln/detail/CVE-2023-2754 6.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0238 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0654 3.7 ------------------------------------------------------------------------ wheel-0.37.1-source /nix/store/vrc80mbbiinxbgq34g4kzfbvawc0fw2l-wheel-0.37.1-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40898 7.5 ------------------------------------------------------------------------ xdg-utils-1.2.1 /nix/store/vhw94idm5w60awv3hsfn3n9xcq6zhkh7-xdg-utils-1.2.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27748 6.5 ------------------------------------------------------------------------ yaml-0.11.11.2 /nix/store/pwr3442i9dxxvcj5lrqpgsvx1l8d3n0x-yaml-0.11.11.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yaml-0.11.11.2-r2.cabal /nix/store/li5zfhy5lbarhz35mxbh9jcj9jpp2p32-yaml-0.11.11.2-r2.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yara-4.5.0 /nix/store/zv9sd3iv4dblgn97nk5xiglzcnab53pi-yara-4.5.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-45429 5.5 ------------------------------------------------------------------------ yasm-1.3.0 /nix/store/adwjqivygd0j1xlsrzkkggrq5xx7ccqw-yasm-1.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-33454 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33455 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33456 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33458 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33459 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33460 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33461 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33462 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33463 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33464 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33465 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33466 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33467 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33468 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-30402 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31972 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31973 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31974 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-51258 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31975 3.3 ------------------------------------------------------------------------ zlib-0.6.3.0 /nix/store/bni5w41r1sai6sqgabrpcxa616pjzzpv-zlib-0.6.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-0.6.3.0-r5.cabal /nix/store/p95cyzydb0nvph1pbrxz0q3izfyzs4wx-zlib-0.6.3.0-r5.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-1.3.1 /nix/store/80v1w8rwan51q42869dpgrwilxvg4783-zlib-1.3.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 use --show-whitelisted to see derivations with only whitelisted CVEs
This PR contains the following updates:
🔧 This Pull Request updates lock files to use the latest dependency versions.
Configuration
📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.