| 15 Jul 2025 |
|  ginkogruen joined the room. | 22:54:11 |
|  Chris Norman joined the room. | 22:54:12 |
| 16 Jul 2025 |
 teutat3s | https://github.com/electron/electron/releases/tag/v37.2.2 | Updated Chromium to 138.0.7204.100
https://github.com/NixOS/nixpkgs/pull/425750 | 10:45:31 |
| teutat3s | https://github.com/NLnetLabs/unbound/releases/tag/release-1.23.1 | fixes the Rebirthday Attack CVE-2025-5994 | 11:35:11 |
 hexa | ECS is disabled by default in nixpkgs | 11:38:48 |
| hexa | * ECS is not compiled in by default in nixpkgs | 11:38:56 |
 emily | 25.05 is still vulnerable to the zero-day from 2025-06-30 for which electron released https://github.com/electron/electron/releases/tag/v37.2.0 on 2025-07-02. meaning electron_37 on 25.05 is affected by two different chromium zero-days. one zero-day that should have landed two weeks ago and another, the newer one, for which electron upstream no release yet.
just to be clear, 138.0.7204.100, the release and PR you linked to, does not fix the newer zero-day from yesterday.
this is a reoccurring pattern with electron in nixpkgs. do you want me to flag electron_37 on 25.05 as vulnerable until you find the time to fix the zero-day from two weeks ago? | 13:14:31 |
|  @winston:milli.ng left the room. | 13:36:59 |
 leona | matrix (servers+maybe clients) security update on 2025-07-22 https://matrix.org/blog/2025/07/security-predisclosure/ | 16:16:40 |
 Grimmauld (migrated to @grimmauld:m.grimmauld.de) | https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.14.5
More libxml2! YAY.... | 16:40:51 |
|  lennart joined the room. | 17:23:22 |
| Grimmauld (migrated to @grimmauld:m.grimmauld.de) | https://github.com/NixOS/nixpkgs/pull/425863
Fixes CVE-2025-49794, CVE-2025-49796, CVE-2025-49795, CVE-2025-6170
Four CVEs this time!! | 18:14:20 |
| Grimmauld (migrated to @grimmauld:m.grimmauld.de) | * https://github.com/NixOS/nixpkgs/pull/425863
Fixes CVE-2025-49794, CVE-2025-49796, CVE-2025-49795, CVE-2025-6170
Four CVEs this time :) | 18:14:32 |
