Vulnerabilities in NixOS

26 results

CVE-2025-52992LOWThe Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails. This may allow arbitrary processes tEPSS 0.1%CVE-2024-38531LOWNix sandbox escapeEPSS 0.1%CVE-2024-43378HIGHcalamares-nixos-extensions LUKS keyfile exposure regression on legacy BIOS systemsEPSS 0.1%CVE-2025-53819HIGHNix's privilege dropping to build user broke for macOSEPSS 0.1%CVE-2025-46415LOWA race condition in the Nix, Lix, and Guix package managers allows the removal of content from arbitrary folders. This affects Nix before 2.EPSS 0.1%CVE-2025-52993MEDIUMA race condition in the Nix, Lix, and Guix package managers enables changing the ownership of arbitrary files to the UID and GID of the builEPSS 0.1%

← previouspage 2 / 2next →