| 15 Apr 2025 |
 emily | discussed in #security-discuss:nixos.org fwiw | 21:24:10 |
 Valodim | Ah, didn't see that. Thanks :) | 21:24:49 |
| Valodim | (because the room was replaced and I didn't notice. Classic 😬) | 21:25:26 |
| 16 Apr 2025 |
|  tlaurion aka Insurgo [ Timezone: ET ] changed their display name from tlaurion aka Insurgo [UTC-4] to tlaurion aka Insurgo [ https://time.is/ET ]. | 05:15:34 |
|  ·☽•Nameless☆•777 · ± changed their profile picture. | 06:49:51 |
|  Anton (he/him) joined the room. | 10:18:04 |
 hexa | https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2 erlang/otp Minijackson adamcstephens | 22:44:12 |
| hexa | https://blogs.gnome.org/mcatanzaro/2025/04/15/dangerous-arbitrary-file-read-vulnerability-in-yelp-cve-2025-3155/ Jan Tojnar | 22:51:15 |
| hexa | * https://blogs.gnome.org/mcatanzaro/2025/04/15/dangerous-arbitrary-file-read-vulnerability-in-yelp-cve-2025-3155/ yelp Jan Tojnar | 22:51:19 |
| hexa |
If you are a Linux operating system vendor, please consider applying the provided patches even though they have not yet been accepted upstream. They’re probably not worse than the status quo!
| 22:51:29 |
| hexa | addresesd in https://github.com/NixOS/nixpkgs/pull/399185 | 22:53:43 |
| hexa | * addressed in https://github.com/NixOS/nixpkgs/pull/399185 | 22:53:56 |
| 17 Apr 2025 |
 adamcstephens | https://github.com/NixOS/nixpkgs/pull/399345
https://github.com/NixOS/nixpkgs/pull/399349 | 00:46:21 |
| hexa | not in a position to review, but thanks for linking it | 00:46:51 |
| adamcstephens | Mostly linking for visibility | 00:48:55 |
 binarious | Sorry to ask here, but I'm unable to join other rooms to ask. What's the main NixOS room? Is it https://matrix.to/#/!6oudZq5zJjAyrxL2uY:0upti.me? Because I'm not allowed to join that room. | 04:53:29 |
| binarious | * Sorry to ask here, but I'm unable to join other rooms to ask. What's the main NixOS room? Is it https://matrix.to/#/!6oudZq5zJjAyrxL2uY:0upti.me? Because I'm not allowed to join that room ("You do not belong to any of the required rooms/spaces to join this room."). | 04:53:44 |
 SigmaSquadron | You need to join the NixOS Space at #community:nixos.org to access the room. This restriction has been set up due to recent spam attacks. | 04:54:47 |
 K900 | #NixOS | 04:54:53 |
| K900 | ^ space | 04:54:55 |
| SigmaSquadron | wait, the alias changed? | 04:55:04 |
| K900 | It has multiple e | 04:55:14 |
| K900 | * It has multiple I think? | 04:55:16 |
| binarious | I am part of the space. I also only see an invite button and not a join button at the top. | 04:55:52 |
| binarious | * I am part of the space - or should be. I also only see an invite button and not a join button at the top. | 04:56:01 |
| binarious | Thanks SigmaSquadron, the room invite worked. | 04:57:53 |
| hexa | https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
libxml2 Jan Tojnar | 18:48:20 |
 Grimmauld (any/all) | is this still unfixed? If so i'll poke. There seems to be an update available to fix it, and like half the package affectd pull libxml via libsoup propagation and i already was messing with that lot of "fun" | 21:08:55 |
| hexa | check the PR queue | 21:09:30 |
| Grimmauld (any/all) | gh search only returns my own PRs mentioning libxml recently, so probably nothing was opened yet | 21:10:05 |
