exploitdb: 2021-06-03 -> 2021-06-05

[r-ryantm]

Automatic update generated by nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/exploitdb/versions.

meta.description for exploitdb is: "Archive of public exploits and corresponding vulnerable software"

meta.homepage for exploitdb is: "https://github.com/offensive-security/exploitdb"

meta.changelog for exploitdb is: ""

Updates performed

• Version update

To inspect upstream changes

• Compare changes on GitHub

Impact

Checks done (click to expand)

---

• built on NixOS

• The tests defined in passthru.tests, if any, passed

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/LICENSE.md passed the binary check.

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/README.md passed the binary check.

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/files_exploits.csv passed the binary check.

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/files_shellcodes.csv passed the binary check.

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/searchsploit passed the binary check.

• /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin/.searchsploit_rc passed the binary check.

• 0 of 6 passed binary check by having a zero exit code.

• 6 of 6 passed binary check by having the new version present in output.

• found 2021-06-05 in filename of file in /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05

• directory tree listing: https://gist.github.com/0f0d19dd84d826dc769bb8cf527618a7

• du listing: https://gist.github.com/73329ccf4363c7784d37b3469c51e1d4

---

Rebuild report (if merged into master) (click to expand)

1 total rebuild path(s)

1 package rebuild(s)

1 x86_64-linux rebuild(s)
0 i686-linux rebuild(s)
0 x86_64-darwin rebuild(s)
0 aarch64-linux rebuild(s)


First fifty rebuilds by attrpath
exploitdb

Instructions to test this update (click to expand)

---

Either download from Cachix:

nix-store -r /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05 \
  --option binary-caches 'https://cache.nixos.org/ https://nix-community.cachix.org/' \
  --option trusted-public-keys '
  nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs=
  cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY=
  '

(The Cachix cache is only trusted for this store-path realization.)
For the Cachix download to work, your user must be in the trusted-users list or you can use sudo since root is effectively trusted.

Or, build yourself:

nix-build -A exploitdb https://github.com/r-ryantm/nixpkgs/archive/47371be95b595923c6c3d2736e2ed339a8457f0c.tar.gz

After you've downloaded or built it, look at the files and if there are any, run the binaries:

ls -la /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05
ls -la /nix/store/dmfmwc9nikznd6xfmns00va1ww98srcb-exploitdb-2021-06-05/bin

---

Pre-merge build results

We have automatically built all packages that will get rebuilt due to
this change.

This gives evidence on whether the upgrade will break dependent packages.
Note sometimes packages show up as failed to build independent of the
change, simply because they are already broken on the target branch.

Result of nixpkgs-review run on x86_64-linux 1

1 package built:

• exploitdb

---

Maintainer pings

cc @applePrincess for testing.

[fabaff]

Result of nixpkgs-review pr 125914 run on x86_64-linux 1

1 package built:

• exploitdb

[fabaff]

• package built (see exploitdb: 2021-06-03 -> 2021-06-05 #125914 (comment))
• all depending packages build
• tested on x86_64

...ew/pr-125914]$ ./results/exploitdb/bin/searchsploit opnsense
[...]
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- ---------------------------------
 Exploit Title                                                                                                                                                                                                                                             |  Path
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- ---------------------------------
OPNsense < 19.1.1 - Cross-Site Scripting                                                                                                                                                                                                                   | php/webapps/46351.txt
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- ---------------------------------
Shellcodes: No Results

Change looks good to me.

[r-rmcgibbo]

Result of nixpkgs-review pr 125914 at 47371be run on x86_64-linux 1

1 package built successfully:

• exploitdb

1 suggestion:

• warning: missing-phase-hooks

  installPhase should probably contain runHook preInstall and runHook postInstall.

  Near pkgs/tools/security/exploitdb/default.nix:14:3:

     |
  14 |   installPhase = ''
     |   ^