diff options
author | Léo Gaspard <github@leo.gaspard.ninja> | 2018-10-13 04:28:30 +0900 |
---|---|---|
committer | xeji <36407913+xeji@users.noreply.github.com> | 2018-10-12 21:28:30 +0200 |
commit | ad992cbde10879455a5359ceb17937fc57cf2fc9 (patch) | |
tree | 40f64802f4e7a18f2bd82958ae2fdfe49ca2acb6 /pkgs/applications/networking/instant-messengers/nheko | |
parent | e2d857a33240fc21635b376e5bddda3bd58b2396 (diff) | |
download | nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar.gz nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar.bz2 nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar.lz nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar.xz nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.tar.zst nixlib-ad992cbde10879455a5359ceb17937fc57cf2fc9.zip |
nheko: mark as insecure (#48281)
The package is no longer maintained and includes potential security vulnerabilities (a use-after-free and several crashes) that are known and not fixed in the version present in nixpkgs. They don't look too bad judging from the trigger vectors mentioned in the changelog, but with the project going unmaintained one of them becoming a security vulnerability would likely not be noticed.
Diffstat (limited to 'pkgs/applications/networking/instant-messengers/nheko')
-rw-r--r-- | pkgs/applications/networking/instant-messengers/nheko/default.nix | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/pkgs/applications/networking/instant-messengers/nheko/default.nix b/pkgs/applications/networking/instant-messengers/nheko/default.nix index 0d34a0a43628..6e78a9034aec 100644 --- a/pkgs/applications/networking/instant-messengers/nheko/default.nix +++ b/pkgs/applications/networking/instant-messengers/nheko/default.nix @@ -70,5 +70,6 @@ stdenv.mkDerivation rec { maintainers = with maintainers; [ ekleog fpletz ]; platforms = platforms.unix; license = licenses.gpl3Plus; + knownVulnerabilities = [ "No longer maintained" ]; }; } |