| Release | Version |
|---|---|
| bullseye | 1.2.0-4+deb11u2 |
| bullseye (security) | 1.2.0-4+deb11u3 |
| bookworm | 1.4.0-3+deb12u2 |
| trixie | 1.4.0-9 |
| sid | 1.4.0-9 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2025-52993 | vulnerable | vulnerable | vulnerable | vulnerable | A race condition in the Nix, Lix, and Guix package managers enables ch ... |
| CVE-2025-52992 | vulnerable | vulnerable | vulnerable | vulnerable | The Nix, Lix, and Guix package managers fail to properly set permissio ... |
| CVE-2025-52991 | vulnerable | vulnerable | vulnerable | vulnerable | The Nix, Lix, and Guix package managers default to using temporary bui ... |
| CVE-2025-46416 | vulnerable | vulnerable | vulnerable | vulnerable | The Nix, Lix, and Guix package managers allow a bypass of build isolat ... |
| CVE-2025-46415 | vulnerable | vulnerable | vulnerable | vulnerable | A race condition in the Nix, Lix, and Guix package managers allows the ... |
| Bug | Description |
|---|---|
| CVE-2024-52867 | guix-daemon in GNU Guix before 5ab3c4c allows privilege escalation bec ... |
| CVE-2024-27297 | Nix is a package manager for Linux and other Unix systems. A fixed-out ... |
| CVE-2021-27851 | A security vulnerability that can lead to local privilege escalation h ... |
| CVE-2019-18192 | GNU Guix 1.0.1 allows local users to gain access to an arbitrary user' ... |
| CVE-2017-1000455 | GuixSD prior to Git commit 5e66574a128937e7f2fcf146d146225703ccfd5d us ... |
| DSA / DLA | Description |
|---|---|
| DLA-3959-1 | guix - security update |
| DSA-5805-1 | guix - security update |
| DSA-5669-1 | guix - security update |