NIXPKGS-2026-1041

GitHub issue published on

Permalink CVE-2026-40225

6.4 MEDIUM

CVSS version: 3.1
Attack vector (AV): PHYSICAL
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

updated 2 weeks, 4 days ago by @LeSuisse Activity log

Created suggestion 2 weeks, 4 days ago
@LeSuisse ignored
2 packages
- udev
- rofi-systemd
2 weeks, 4 days ago
@LeSuisse restored package udev 2 weeks, 4 days ago
@LeSuisse ignored
43 packages
- tests.pkg-config.defaultPkgConfigPackages.libsystemd
- tests.pkg-config.defaultPkgConfigPackages.libudev
- vscode-extensions.coolbear.systemd-unit-file
- gnomeExtensions.systemd-offline-update-indicator
- python313Packages.jupyterhub-systemdspawner
- python313Packages.systemdunitparser
- systemd-lsp
- haskellPackages.libsystemd-journal
- python312Packages.systemdunitparser
- python313Packages.systemd-python
- python314Packages.jupyterhub-systemdspawner
- ocamlPackages_latest.systemd
- update-systemd-resolved
- python312Packages.jupyterhub-systemdspawner
- gnomeExtensions.systemd-status
- python314Packages.systemdunitparser
- python314Packages.systemd-python
- python312Packages.systemd-python
- ocamlPackages.systemd
- php84Extensions.systemd
- php85Extensions.systemd
- php82Extensions.systemd
- gnomeExtensions.systemd-manager
- prometheus-systemd-exporter
- systemd
- systemdgenie
- systemdLibs
- haskellPackages.warp-systemd
- systemd-credsubst
- systemd-journal2gelf
- systemd-lock-handler
- phpExtensions.systemd
- haskellPackages.systemd
- systemd-manager-tui
- php83Extensions.systemd
- systemd-bootchart
- systemdMinimal
- systemd-netlogd
- systemd-wait
- systemd-language-server
- haskellPackages.systemd-api
- nagiosPlugins.check_systemd
- systemdUkify
2 weeks, 4 days ago
@LeSuisse accepted 2 weeks, 4 days ago
@LeSuisse published on GitHub 2 weeks, 4 days ago

In udev in systemd before 260, local root execution can …

In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.

References

https://github.com/systemd/systemd/security/advisories/GHSA-vpfq-8p5f-jcqx

Affected products

systemd

<260

Matching in nixpkgs

pkgs.udev

System and service manager for Linux

nixos-unstable 259.3
- nixpkgs-unstable 259.3
- nixos-unstable-small 259.3
nixos-25.11 258.5
- nixos-25.11-small 258.5
- nixpkgs-25.11-darwin 258.5

Ignored packages (44)

pkgs.systemd

System and service manager for Linux

nixos-unstable 259.3
- nixpkgs-unstable 259.3
- nixos-unstable-small 259.3
nixos-25.11 258.5
- nixos-25.11-small 258.5
- nixpkgs-25.11-darwin 258.5

pkgs.systemd-lsp

Language server implementation for systemd unit files made in Rust

nixos-unstable 2026.01.06
- nixpkgs-unstable 2026.01.06
- nixos-unstable-small 2026.01.06
nixos-25.11 2025.10.16
- nixos-25.11-small 2025.10.16
- nixpkgs-25.11-darwin 2025.10.16

pkgs.systemdLibs

System and service manager for Linux

nixos-unstable 259.3
- nixpkgs-unstable 259.3
- nixos-unstable-small 259.3
nixos-25.11 258.5
- nixos-25.11-small 258.5
- nixpkgs-25.11-darwin 258.5

pkgs.rofi-systemd

Control your systemd units using rofi

nixos-unstable 1.1.0
- nixpkgs-unstable 1.1.0
- nixos-unstable-small 1.1.0
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.systemd-wait

Wait for a systemd unit to enter a specific state

nixos-unstable 0.1+2018-10-05
- nixpkgs-unstable 0.1+2018-10-05
- nixos-unstable-small 0.1+2018-10-05
nixos-25.11 0.1+2018-10-05
- nixos-25.11-small 0.1+2018-10-05
- nixpkgs-25.11-darwin 0.1+2018-10-05

pkgs.systemdUkify

System and service manager for Linux

nixos-unstable 259.3
- nixpkgs-unstable 259.3
- nixos-unstable-small 259.3
nixos-25.11 258.5
- nixos-25.11-small 258.5
- nixpkgs-25.11-darwin 258.5

pkgs.systemdgenie

Systemd management utility

nixos-unstable 0.99.0-unstable-2026-03-07
- nixpkgs-unstable 0.99.0-unstable-2026-03-07
- nixos-unstable-small 0.99.0-unstable-2026-03-07
nixos-25.11 0.99.0-unstable-2025-10-11
- nixos-25.11-small 0.99.0-unstable-2025-10-11
- nixpkgs-25.11-darwin 0.99.0-unstable-2025-10-11

pkgs.systemdMinimal

System and service manager for Linux

nixos-unstable 259.3
- nixpkgs-unstable 259.3
- nixos-unstable-small 259.3
nixos-25.11 258.5
- nixos-25.11-small 258.5
- nixpkgs-25.11-darwin 258.5

pkgs.systemd-netlogd

Forwards messages from the journal to other hosts over the network

nixos-unstable 1.4.4
- nixpkgs-unstable 1.4.4
- nixos-unstable-small 1.4.4
nixos-25.11 1.4.4
- nixos-25.11-small 1.4.4
- nixpkgs-25.11-darwin 1.4.4

pkgs.systemd-bootchart

Boot performance graphing tool from systemd

nixos-unstable 235
- nixpkgs-unstable 235
- nixos-unstable-small 235
nixos-25.11 235
- nixos-25.11-small 235
- nixpkgs-25.11-darwin 235

pkgs.systemd-credsubst

envsubst for systemd credentials

nixos-unstable 0.1.0
- nixpkgs-unstable 0.1.0
- nixos-unstable-small 0.1.0
nixos-25.11 0.1.0
- nixos-25.11-small 0.1.0
- nixpkgs-25.11-darwin 0.1.0

pkgs.systemd-manager-tui

Program for managing systemd services through a TUI

nixos-unstable 1.2.4
- nixpkgs-unstable 1.2.4
- nixos-unstable-small 1.2.4
nixos-25.11 1.1.1
- nixos-25.11-small 1.1.1
- nixpkgs-25.11-darwin 1.1.1

pkgs.systemd-journal2gelf

Export entries from systemd's journal and send them to a graylog server using gelf

nixos-unstable 0-unstable-2023-03-10
- nixpkgs-unstable 0-unstable-2023-03-10
- nixos-unstable-small 0-unstable-2023-03-10
nixos-25.11 0-unstable-2023-03-10
- nixos-25.11-small 0-unstable-2023-03-10
- nixpkgs-25.11-darwin 0-unstable-2023-03-10

pkgs.systemd-lock-handler

Translates systemd-system lock/sleep signals into systemd-user target activations

nixos-unstable 2.4.2
- nixpkgs-unstable 2.4.2
- nixos-unstable-small 2.4.2
nixos-25.11 2.4.2
- nixos-25.11-small 2.4.2
- nixpkgs-25.11-darwin 2.4.2