Local Privilege Escalation Vulnerability in make-initrd-ng for NixOS Users
CVE-2025-32438

8.8HIGH

Key Information:

Vendor

Nixos

Status
Nixpkgs
Vendor
CVE Published:
15 April 2025

What is CVE-2025-32438?

A local privilege escalation vulnerability exists in make-initrd-ng, a tool utilized for copying binaries and their dependencies. This issue impacts all NixOS users, particularly when systemd.shutdownRamfs.enable is enabled by default. A malicious local user can craft a program that will be executed with root privileges during the shutdown process, potentially leading to unauthorized access. Users are advised to apply the available patches for NixOS 24.11 and 25.05 / unstable, or alternatively disable the vulnerable feature by setting systemd.shutdownRamfs.enable to false.

Affected Version(s)

nixpkgs < b17590193d8e5697000c23c66afcf11e1753734d < b17590193d8e5697000c23c66afcf11e1753734d

nixpkgs < fbf76bf72b161b9f4ab97704a8258776d5f3ffba < fbf76bf72b161b9f4ab97704a8258776d5f3ffba

References

https://github.com/NixOS/nixpkgs/security/advisories/GHSA...
x_refsource_CONFIRM
https://github.com/NixOS/nixpkgs/commit/b17590193d8e56970...
x_refsource_MISC
https://github.com/NixOS/nixpkgs/commit/fbf76bf72b161b9f4...
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.