Security Advisory: Privilege Escalations in Nix, Lix and Guix

discourse.nixos.org

Security Advisory: Privilege Escalations in Nix, Lix and Guix

discourse.nixos.org

Lemmit.Online botMAB to NixOS - Purely functionalEnglish · 3 months ago

Summary This advisory follows up on the pre-announcement made last week. Nix and Lix are affected by a set of issues that can be combined to achieve root privilege escalation. These issues are identified as: CVE-2025-46415 CVE-2025-52991 CVE-2025-52992 CVE-2025-52993 Additionally, a privilege escalation to the build users (nixbld*) has been identified. This issue is known as CVE-2025-46416. This issue is only mitigated by Lix when the Pasta or LSM mitigations are enabled. This is a coordina...

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/nixos by /u/NateDevCSharp on 2025-07-09 11:39:59+00:00.

You must log in or register to comment.

Chat