about summary refs log tree commit diff
diff options
context:
space:
mode:
authorDaniƫl de Kok <me@danieldk.eu>2021-02-01 17:10:16 +0100
committerGitHub <noreply@github.com>2021-02-01 17:10:16 +0100
commit73bf313f081c258aaba1fffc1c3b50c9047aa540 (patch)
tree5e23ca26ee71c2b93066de88b9d8df9613505f30
parent31da4478f5f74ba9c7a0f35be4a661f39bc401fa (diff)
parentbcfec5c7738f0fa96e50301468fef3ff8c793dee (diff)
Merge pull request #111579 from dotlambda/libsixel-insecure
libsixel: mark as insecure
Diffstat
-rw-r--r--pkgs/development/libraries/libsixel/default.nix4
1 files changed, 4 insertions, 0 deletions
diff --git a/pkgs/development/libraries/libsixel/default.nix b/pkgs/development/libraries/libsixel/default.nix
index e82ecde5ddd24..0d5a54f9693e9 100644
--- a/pkgs/development/libraries/libsixel/default.nix
+++ b/pkgs/development/libraries/libsixel/default.nix
@@ -22,5 +22,9 @@ stdenv.mkDerivation rec {
     maintainers = with maintainers; [ vrthra ];
     license = licenses.mit;
     platforms = with platforms; unix;
+    knownVulnerabilities = [
+      "CVE-2020-11721" # https://github.com/saitoha/libsixel/issues/134
+      "CVE-2020-19668" # https://github.com/saitoha/libsixel/issues/136
+    ];
   };
 }
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-09-19 10:55:12 +0000