top of page
perceptive_background_267k.jpg

An issue was discovered in Nix before 2.34.7 and Lix before 2.95.2. Unbounded recursion in the NAR (Nix Archive) parser could lead to a stack-to-heap overflow w…

Published:

4 mei 2026 om 22:00:00

Alert date:

5 mei 2026 om 02:00:47

Source:

nvd.nist.gov

Click to open the original link from this advisory

Operating Systems, Supply Chain & Dependencies

A critical vulnerability was discovered in Nix before version 2.34.7 and Lix before 2.95.2 involving unbounded recursion in the NAR (Nix Archive) parser. The vulnerability causes a stack-to-heap overflow when running on a coroutine stack without guard pages. This allows stack overflow to overwrite heap memory, potentially enabling arbitrary code execution as the Nix daemon (running as root in multi-user installations) if ASLR hardening is bypassed. The vulnerability can be exploited by any user with daemon connection privileges, which defaults to all users in Nix installations. Fixed versions include multiple releases across both Nix and Lix distributions.

Technical details

Mitigation steps:

Affected products:

Nix
Lix

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-44028
https://discourse.nixos.org/t/security-advisory-local-privilege-escalation-in-lix-and-nix/77407
https://github.com/NixOS/nix/security/advisories/GHSA-vh5x-56v6-4368
https://www.openwall.com/lists/oss-security/2026/05/04/32
https://www.openwall.com/lists/oss-security/2026/05/04/33

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page