| Name | CVE-2025-53819 |
| Description | Nix is a package manager for Linux and other Unix systems. Builds with Nix 2.30.0 on macOS were executed with elevated privileges (root), instead of the build users. The fix was applied to Nix 2.30.1. No known workarounds are available. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| nix (PTS) | bullseye | 2.3.7+dfsg1-1 | fixed |
| bookworm | 2.8.0-1.1 | fixed | |
| sid, trixie | 2.26.3+dfsg-1 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| nix | source | (unstable) | (not affected) |
- nix <not-affected> (Specific to MacOS)
https://github.com/NixOS/nix/security/advisories/GHSA-qc7j-jgf3-qmhg