!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

685 Members
Coordination and triage of security issues in nixpkgs | Discussions in #security-discuss:nixos.org | Open PRs: https://github.com/NixOS/nixpkgs/pulls?q=is%3Apr+is%3Aopen+sort%3Aupdated-desc+label%3A%221.severity%3A+security%22208 Servers

Load older messages

SenderMessageTime
31 Mar 2026
@prince213:matrix.orgprince213https://github.com/NixOS/nixpkgs/pull/50534413:10:37
@prince213:matrix.orgprince2131 medium13:12:14
1 Apr 2026
@pyrox:pyrox.devdish [Fox/It/She] https://github.com/jellyfin/jellyfin/releases/tag/v10.11.7 01:50:10
@pyrox:pyrox.devdish [Fox/It/She]4 security issues fixed, JF team says they're critical to get fixed and details to be released in 14 days01:50:52
@pyrox:pyrox.devdish [Fox/It/She] pr created https://github.com/NixOS/nixpkgs/pull/505528 02:06:57
@nrbray:matrix.orgNigel joined the room.06:39:23
@7karni:matrix.orgAzad Satkarni changed their display name from 7karni to Azad Satkarni.06:40:40
@samuel.dionne-riel:cyberus-technology.deSamuel Dionne-Riel changed their profile picture.14:01:52
@nixith:unredacted.orgnixith joined the room.15:14:59
@samuel.dionne-riel:cyberus-technology.deSamuel Dionne-RielRedacted or Malformed Event21:02:11
2 Apr 2026
@vcunat:matrix.orgvcunatlibpng, mentioned above, now done in https://github.com/NixOS/nixpkgs/pull/50575105:05:08
4 Apr 2026
@vcunat:matrix.orgvcunatQuick note: I see quite a lot of security-tagged pull requests open for weeks without getting merged (and without any visible problem preventing that). I merged several right now.12:06:11
@kuflierl:matrix.orgkuflierl joined the room.15:26:01
7 Apr 2026
@l00n:4d2.orgajk changed their profile picture.08:11:22
@joerg:thalheim.ioMic92https://github.com/NixOS/nixpkgs/pull/50766617:27:26
@joerg:thalheim.ioMic92 hexa: nix security update 17:27:36
@joerg:thalheim.ioMic92 vcunat: do we need to something to kick of an eval? 17:28:25
@joerg:thalheim.ioMic92for nixos-unstable small?17:28:34
@joerg:thalheim.ioMic92github advisory comes in a minute17:29:48
@winter:catgirl.cloudWintercommit messages are wrong?17:30:01
@joerg:thalheim.ioMic92 Winter: yeah, wrong cve number 17:30:20
@winter:catgirl.cloudWinteri assume it’s GHSA-g3g9-5vj6-r3gj17:30:43
@joerg:thalheim.ioMic92copy and paste error17:30:44
@winter:catgirl.cloudWinteryour commit descriptions also seems wrong17:31:05
@winter:catgirl.cloudWinterplease fix :(17:31:17
@emilazy:matrix.orgemily consider merging via staging-nixos (and immediately staging-nixos into master) to pick up other test rebuilds 17:32:41
@emilazy:matrix.orgemily(will need separate 25.11 backport I guess?)17:32:58
@joerg:thalheim.ioMic92originally the landlock patch also was supposed to parts of the old cve.17:33:39
@joerg:thalheim.ioMic92but this will require another linux patch17:33:46
@joerg:thalheim.ioMic92 emily: is there a staging-nixos also for backports? 17:44:02

Show newer messages

Back to Room ListRoom Version: 6