Nix Project: >> Nix >> 0.17.0 Security Vulnerabilities
An issue was discovered in the nix crate 0.16.0 and later before 0.20.2, 0.21.x before 0.21.2, and 0.22.x before 0.22.2 for Rust. unistd::getgrouplist has an out-of-bounds write if a user is in more than 16 /etc/groups groups.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-12-27