diff --git a/Dockerfile.kde-nvidia-ver4a b/Dockerfile.kde-nvidia-ver4a
index 63de4a5..686232e 100644
--- a/Dockerfile.kde-nvidia-ver4a
+++ b/Dockerfile.kde-nvidia-ver4a
@@ -20,5 +20,9 @@ RUN dnf5 -y remove firefox firefox-langpacks
 # Remove unneeded packages (currently doesn't actually reduce space, but reduces clutter)
 RUN dnf5 -y autoremove
 
+# Remove setuid/setgid binaries
+# Except for polkit-agent-helper-1, it's currently required for interactive authentication with polkit.
+RUN find /usr -mindepth 1 -type f -perm /6000 -regextype posix-extended -not -regex '/usr/lib/polkit-1/polkit-agent-helper-1' -exec sh -c 'chmod ug-s '{}' && echo "Removed setuid/setgid bit(s) from {}"' \;
+
 # https://github.com/ostreedev/ostree-rs-ext/issues/159
 RUN ostree container commit
diff --git a/Dockerfile.kde-ver4a b/Dockerfile.kde-ver4a
index abef40b..c168ae8 100644
--- a/Dockerfile.kde-ver4a
+++ b/Dockerfile.kde-ver4a
@@ -20,5 +20,9 @@ RUN dnf5 -y remove firefox firefox-langpacks
 # Remove unneeded packages (currently doesn't actually reduce space, but reduces clutter)
 RUN dnf5 -y autoremove
 
+# Remove setuid/setgid binaries
+# Except for polkit-agent-helper-1, it's currently required for interactive authentication with polkit.
+RUN find /usr -mindepth 1 -type f -perm /6000 -regextype posix-extended -not -regex '/usr/lib/polkit-1/polkit-agent-helper-1' -exec sh -c 'chmod ug-s '{}' && echo "Removed setuid/setgid bit(s) from {}"' \;
+
 # https://github.com/ostreedev/ostree-rs-ext/issues/159
 RUN ostree container commit