Ludovic Courtã¨S

**Name of the Vulnerable Software and Affected Versions** GuixSD versions prior to Git commit 5e66574a128937e7f2fcf146d146225703ccfd5d **Description** The issue arises from the incorrect use of POSIX hard links, resulting in the creation of setuid executables in "the store". This violates a fundamental security assumption of GNU Guix, potentially leading to security breaches. **Recommendations** For GuixSD versions prior to Git commit 5e66574a128937e7f2fcf146d146225703ccfd5d, update to a version that includes the fix for the incorrect use of POSIX hard links to prevent the creation of setuid executables in "the store".