Fedora 44 : fido-device-onboard (2026-9e223ca14f)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9e223ca14f advisory. Automatic update for fido-device-onboard-0.5.5-8.fc44. Changelog for fido-device-onboard Wed Apr 01 2026 Peter Robinson - 0.5.5-8 - Rebuild for...

[SECURITY] Fedora 42 Update: nix-2.31.4-1.fc42

Nix is a purely functional package manager. It allows multiple versions of a package to be installed side-by-side, ensures that dependency specifications are complete, supports atomic upgrades and rollbacks, allows non-root users to install software, and has many other features. It is the basis o...

[SECURITY] Fedora 43 Update: nix-2.31.4-1.fc43

Nix is a purely functional package manager. It allows multiple versions of a package to be installed side-by-side, ensures that dependency specifications are complete, supports atomic upgrades and rollbacks, allows non-root users to install software, and has many other features. It is the basis o...

Fedora 43 : nix (2026-6c1a1c78c1)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-6c1a1c78c1 advisory. - update to 2.31.4 - fixes nix-daemon critical GHSA-g3g9-5vj6-r3gj CVE-2026-39860: - https://github.com/NixOS/nix/security/advisories/GHSA-g3g9-5vj6-r3gj...

Fedora 44 : nix (2026-8c7366e046)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-8c7366e046 advisory. - update to 2.34 - https://nix.dev/manual/nix/2.34/release-notes/rl-2.33.html - https://nix.dev/manual/nix/2.34/release-notes/rl-2.34.html - includes fix for...

Fedora 42 : nix (2026-02fa328deb)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-02fa328deb advisory. - update to 2.31.4 - fixes nix-daemon critical GHSA-g3g9-5vj6-r3gj CVE-2026-39860 - https://github.com/NixOS/nix/security/advisories/GHSA-g3g9-5vj6-r3gj...

SUSE CVE-2026-39860

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

CVE-2026-39860

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

DEBIAN-CVE-2026-39860

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

EUVD-2026-20626

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

CVE-2026-39860

CVE-2026-39860 affects Nix, via a bug in the fix for CVE-2024-27297 that allowed arbitrary overwrites of files writable by the Nix build orchestrator (typically the root-running Nix daemon in multi-user setups) by following symlinks during fixed-output derivation output registration. Impact is li...

CVE-2026-39860 Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

Linux Distros Unpatched Vulnerability : CVE-2026-39860

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix...

Nix 安全漏洞

Nix is a package manager developed by Nix itself. There were security vulnerabilities in versions of Nix prior to 2.34.5, as well as versions before 2.33.4, 2.32.7, 2.31.4, 2.30.4, 2.29.3, and 2.28.6. These vulnerabilities stemmed from improper handling of symbolic links, which could lead to...

PT-2026-31315

Name of the Vulnerable Software and Affected Versions Nix versions prior to 2.34.5 Nix versions prior to 2.33.4 Nix versions prior to 2.32.7 Nix versions prior to 2.31.4 Nix versions prior to 2.30.4 Nix versions prior to 2.29.3 Nix versions prior to 2.28.6 Description A flaw exists in the fix for...

[SECURITY] Fedora 42 Update: rust-nix-0.31.2-1.fc42

Rust friendly bindings to nix APIs...

Fedora 42 : maturin / python-fastar / python-uv-build / rust-astral-tokio-tar / etc (2026-23bb71ea52)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-23bb71ea52 advisory. Update rust-astral-tokio-tar to 0.6.0, fixing CVE-2026-32766. Update rust-tar to 0.4.45, fixing CVE-2026-33056. Update rust-nix to 0.31.2. Update uv...

[SECURITY] Fedora 43 Update: rust-nix-0.31.2-1.fc43

Rust friendly bindings to nix APIs...

[SECURITY] Fedora 44 Update: rust-nix-0.31.2-1.fc44

Rust friendly bindings to nix APIs...

Fedora 43 : maturin / python-fastar / python-uv-build / rust-astral-tokio-tar / etc (2026-d18cf572b8)

The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-d18cf572b8 advisory. Update rust-astral-tokio-tar to 0.6.0, fixing CVE-2026-32766. Update rust-tar to 0.4.45, fixing CVE-2026-33056. Update rust-nix to 0.31.2. Update uv...