It was discovered that insufficient restriction of unix daemon sockets in the GNU Guix functional package manager could result in sandbox bypass.
https://security-tracker.debian.org/tracker/DSA-5669-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-5669-1
Continue reading...
