Описание
Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | deferred | 2025-06-25 |
| esm-apps/jammy | deferred | 2025-06-25 |
| esm-apps/noble | deferred | 2025-06-25 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | deferred | 2025-06-25 |
| mantic | ignored | end of life, was needs-triage |
| noble | deferred | 2025-06-25 |
| oracular | ignored | end of life, was deferred [2025-06-25] |
| plucky | ignored | end of life, was deferred [2025-06-25] |
Показывать по
4.3 Medium
CVSS3
Связанные уязвимости
Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request.
Nix through 2.22.1 mishandles certain usage of hash caches, which make ...
Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request.
4.3 Medium
CVSS3