Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nix 安全漏洞
Vulnerability Description
Nix是Nix开源的一个强大的包管理器。用于制作包。 Nix 2.22.1及之前版本存在安全漏洞,该漏洞源于错误地处理了哈希缓存的某些使用,使得攻击者更容易通过引诱维护者接受恶意拉取请求,用攻击者控制的源代码替换当前源代码。
CVSS Information
N/A
Vulnerability Type
N/A