from 0, < 1.4.0-3+deb12u2
from 0, < 1.2.0-4+deb11u3
from 0, < 1.2.0-4+deb11u3
MEDIUM5.9guix - security update
from 0, < 1.2.0-4+deb11u2
MEDIUM5.9guix - security update
from 0, < 1.2.0-4+deb11u2
MEDIUM5.7In guix-daemon in GNU Guix before 1618ca7, a content-addressed-mirrors file can be written to create a setuid program that allows a regular…
from 0
MEDIUM5.6A race condition in the Nix, Lix, and Guix package managers enables changing the ownership of arbitrary files to the UID and GID of the bui…
from 0
MEDIUM5.5A security vulnerability that can lead to local privilege escalation has been found in ’guix-daemon’.
from 0, < 1.2.0-4
LOW3.2The Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails.
from 0
LOW3.2The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location.
from 0
LOW3.2A race condition in the Nix, Lix, and Guix package managers allows the removal of content from arbitrary folders.
from 0
LOW2.9The Nix, Lix, and Guix package managers allow a bypass of build isolation in which a user can elevate their privileges to the build user ac…
from 0