Kumphathi wephakheji ikhonjiwe (CVE-2019-18192), evumela ikhodi ukuthi isetshenziswe kumongo womunye umsebenzisi. Inkinga yenzeka ekucushweni kwe-Guix okunabasebenzisi abaningi futhi ibangelwa ukusetha ngokungalungile amalungelo okufinyelela kunkomba yesistimu enamaphrofayela abasebenzisi.
Ngokuzenzakalelayo, ~/.guix-profile profile profiles ichazwa njengezixhumanisi ezingokomfanekiso /var/guix/profiles/per-user/$USER lwemibhalo. Inkinga ukuthi izimvume eziku/var/guix/profiles/per-user/ directory zivumela noma yimuphi umsebenzisi ukuthi akhe ama-subdirectories amasha. Umhlaseli angakha uhla lwemibhalo lomunye umsebenzisi ongakangeni ngemvume futhi ahlele ukuthi ikhodi yakhe isebenze (/var/guix/profiles/per-user/$USER ukhona ku-PATH variable, futhi umhlaseli angabeka amafayela asebenzisekayo. kulolu hlu lwemibhalo oluzosetshenziswa ngenkathi isisulu sisasebenza esikhundleni samafayela asebenzisekayo wesistimu).
Source: opennet.ru