| 25 May 2021 |
 sumner | hexa: mentioned that he tested on 20.09 (https://github.com/NixOS/nixpkgs/pull/124276#pullrequestreview-667050318), but I'm not sure the best approach for testing in general since I'm running unstable on all my machines. | 03:02:48 |
| sumner | * hexa mentioned that he tested on 20.09 (https://github.com/NixOS/nixpkgs/pull/124276#pullrequestreview-667050318), but I'm not sure the best approach for testing in general since I'm running unstable on all my machines. | 03:04:08 |
 toonn | Fyi a backport GHAction was recently added might be a good test? | 09:38:44 |
 Synthetica | "recently" | 09:38:59 |
| Synthetica | Literally less than a minute ago :D | 09:39:05 |
| toonn | I'm like a pigeon, time moves very slowly to me : ) | 09:39:53 |
| Synthetica | But yeah, sumner, you should be able to add the label backport release-21.05 and on merge a PR will automatically be opened now | 09:41:04 |
 hexa | We are past creating the backport PRs though, which is all the backport action will create. | 14:04:45 |
| hexa | At some point you have to have confidence, that a backport will not break | 14:05:00 |
| hexa | merged the 20.09 change, which I already tested, but noticed too late, that the cherry-picked from note was missing | 14:07:42 |
| hexa | requested a change for 21.05 | 14:07:49 |
| hexa | sumner: ^ | 14:07:59 |
| hexa | Reminmder: curl 7.77.0 scheduled for tmorrow https://twitter.com/bagder/status/1396577716216946688 | 15:05:34 |
| hexa | * Reminmder: curl 7.77.0 scheduled for tomorrow https://twitter.com/bagder/status/1396577716216946688 | 15:05:40 |
| hexa | * Reminder: curl 7.77.0 scheduled for tomorrow https://twitter.com/bagder/status/1396577716216946688 | 15:06:10 |
| sumner | hexa: maybe it's worth trying the GH action for the backport to 21.05? | 15:18:31 |
| hexa | sumner: it does not work yet, see https://matrix.to/#/!kjdutkOsheZdjqYmqp:nixos.org/$QslwsZCEf9aeS9DOzAfzUlgkKh4ecPRi-MX2PuwQVzE?via=nixos.org&via=matrix.org&via=fairydust.space | 15:19:04 |
| sumner | OK, I updated the backport commit, and rebased on the latest release-21.05 branch for good measure. | 15:23:39 |
| hexa | will merge when ofborg eval is happy | 15:24:20 |
|  binaryoctopus joined the room. | 15:42:22 |
|  meet joined the room. | 16:06:36 |
|  georgyo joined the room. | 16:54:06 |
| hexa | https://github.com/NixOS/nixpkgs/pull/124400 | 18:31:19 |
| hexa | needs porting to both stable branches | 18:31:30 |
| hexa |
A security issue in nginx resolver was identified, which might allow an
attacker to cause 1-byte memory overwrite by using a specially crafted
DNS response, resulting in worker process crash or, potentially, in
arbitrary code execution (CVE-2021-23017).
| 18:31:53 |
| hexa | https://security.googleblog.com/2021/05/introducing-half-double-new-hammering.html 😒 | 18:39:03 |
 kevincox | You mean DRAM manufacturers didn't really fix the problem? surprised-pikachu | 18:48:07 |
| hexa | https://github.com/NixOS/nixpkgs/pull/124433 | 22:20:58 |
| hexa | please review | 22:21:07 |
| hexa | thanks for the quick response everbody 🥳 | 22:40:09 |
