| 6 Jul 2021 |
Linux Hackerman | * Hm, where? The derivation looks straightforward to me | 16:21:44 |
hexa | https://github.com/AcademySoftwareFoundation/openexr/commit/6442fb71a86c09fb0a8118b6dbd93bcec4883a3c | 16:24:34 |
hexa | https://github.com/NixOS/nixpkgs/blob/master/pkgs/development/libraries/openexr/default.nix#L26 | 16:25:11 |
Linux Hackerman | oh, and that patch no longer applies? | 16:25:14 |
hexa | neither on 2.5.7 nor on 3.0.5 | 16:25:28 |
Linux Hackerman | aah ok. I'll take a look | 16:25:42 |
Linux Hackerman | https://github.com/AcademySoftwareFoundation/openexr/pull/815 hm looks like it was merged so we can probably remove it. | 16:26:16 |
Linux Hackerman | or not :) | 16:28:40 |
hexa |
/nix/store/qdf49mvm79r83n9c9s7pkmmjqwhrw8jv-stdenv-linux/setup: line 88: cd: IlmBase: No such file or directory
| 16:29:11 |
Linux Hackerman | https://github.com/NixOS/nixpkgs/pull/129462 | 16:40:39 |
Linux Hackerman | hm wait that might not be quite right. | 16:42:23 |
hexa | heh, weird. I remember that failing for me on staging-21.05 as well | 16:42:34 |
Linux Hackerman | since it was only merged into 3.x | 16:42:38 |
hexa | also please target staging | 16:42:42 |
hexa | https://github.com/AcademySoftwareFoundation/openexr/pull/1037 | 16:44:10 |
hexa | this pr was tagged with v2.5.7, and the release notes for that release mentions two oss-fuzz fixes | 16:44:31 |
Linux Hackerman | Yeah jtojnar's fix doesn't affect the build of openexr, it affects the builds of dependencies, so I'll forward-port his patch | 16:46:02 |
Linux Hackerman | * Yeah jtojnar's fix doesn't affect the build of openexr, it affects the builds of dependencies, so I'll backport his patch | 16:46:05 |
Linux Hackerman | oh lol there's a fix upstream https://github.com/AcademySoftwareFoundation/openexr/commit/2f19a01923885fda75ec9d19332de080ec7102bd just not in 2.5.7 >_< | 16:53:32 |
| εΉΈη« (πππΎπ/πππΎπ) changed their display name from εΉΈη« to εΉΈη« (they/them). | 18:58:16 |
| εΉΈη« (πππΎπ/πππΎπ) changed their display name from εΉΈη« (they/them) to εΉΈη« (π‘βππ¦/π‘βππ). | 19:11:06 |
| spacesbot - keeps a log of public NixOS channels changed their display name from spacesbot to spacesbot - keeps a log of public NixOS channels. | 22:11:49 |
| εΉΈη« (πππΎπ/πππΎπ) changed their display name from εΉΈη« (π‘βππ¦/π‘βππ) to εΉΈη« (πππΎπ/πππΎπ). | 22:40:30 |
| 7 Jul 2021 |
| quantumghost joined the room. | 03:58:19 |
| lassulus joined the room. | 08:12:31 |
| stefandeml joined the room. | 08:25:55 |
red | FYI: I found an exploitable bug in the ponyc compiler which allowed an attacker to do silently(ish) bypass ponyc's supply chain attack defenses. It got fixed within a few hours and a new version of the compiler has been released. I'm testing the new nixpkgs package for it and will tag it with security when I get the PR up. | 17:56:20 |
red | There is no assigned CVE or anything, didn't seem like any point since they fixed it within an hour :-P{ | 17:57:45 |
red | * There is no assigned CVE or anything, didn't seem like any point since they fixed it within an hour :-P | 17:57:50 |
red | although now that I've said that out loud I'm doubting myself... | 17:58:33 |