Main Vulnerability Database SB20240910157

SB20240910157 - Path traversal in nix

Published: September 10, 2024 Updated: April 8, 2026

Security Bulletin ID SB20240910157

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Path traversal (CVE-ID: CVE-2024-45593)

The vulnerability allows a remote user to write to arbitrary file system locations accessible to the Nix process.

The vulnerability exists due to improper path restriction in NAR unpacking when processing a crafted NAR. A remote user can supply a specially crafted NAR to write to arbitrary file system locations accessible to the Nix process.

When the Nix daemon is used, the file writes occur with root permissions. User interaction is required to unpack the crafted NAR.

Remediation

Install update from vendor's website.

References

https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493
https://github.com/advisories/GHSA-h4vv-h3jq-v493