CVE-2024-51481

Nix is a package manager for Linux and other Unix systems. On macOS, built-in builders (such as builtin:fetchurl, exposed to users with import ) were not executed in the macOS sandbox. Thus, these builders (which are running under the nixbld* users) had read access to world-readable paths and write...