!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

714 Members
Coordination and triage of security issues in nixpkgs219 Servers

Load older messages

SenderMessageTime
1 Apr 2026
@nixith:unredacted.orgnixith joined the room.15:14:59
@samuel.dionne-riel:cyberus-technology.deSamuel Dionne-RielRedacted or Malformed Event21:02:11
2 Apr 2026
@vcunat:matrix.orgvcunatlibpng, mentioned above, now done in https://github.com/NixOS/nixpkgs/pull/50575105:05:08
4 Apr 2026
@vcunat:matrix.orgvcunatQuick note: I see quite a lot of security-tagged pull requests open for weeks without getting merged (and without any visible problem preventing that). I merged several right now.12:06:11
@kuflierl:matrix.orgkuflierl joined the room.15:26:01
7 Apr 2026
@l00n:4d2.orgajk changed their profile picture.08:11:22
@joerg:thalheim.ioMic92https://github.com/NixOS/nixpkgs/pull/50766617:27:26
@joerg:thalheim.ioMic92 hexa: nix security update 17:27:36
@joerg:thalheim.ioMic92 vcunat: do we need to something to kick of an eval? 17:28:25
@joerg:thalheim.ioMic92for nixos-unstable small?17:28:34
@joerg:thalheim.ioMic92github advisory comes in a minute17:29:48
@winter:catgirl.cloudWintercommit messages are wrong?17:30:01
@joerg:thalheim.ioMic92 Winter: yeah, wrong cve number 17:30:20
@winter:catgirl.cloudWinteri assume itโ€™s GHSA-g3g9-5vj6-r3gj17:30:43
@joerg:thalheim.ioMic92copy and paste error17:30:44
@winter:catgirl.cloudWinteryour commit descriptions also seems wrong17:31:05
@winter:catgirl.cloudWinterplease fix :(17:31:17
@emilazy:matrix.orgemily consider merging via staging-nixos (and immediately staging-nixos into master) to pick up other test rebuilds 17:32:41
@emilazy:matrix.orgemily(will need separate 25.11 backport I guess?)17:32:58
@joerg:thalheim.ioMic92originally the landlock patch also was supposed to parts of the old cve.17:33:39
@joerg:thalheim.ioMic92but this will require another linux patch17:33:46
@joerg:thalheim.ioMic92 emily: is there a staging-nixos also for backports? 17:44:02
@leona:leona.isleonan17:44:51
@leona:leona.isleona* no17:44:52
@hexa:lossy.networkhexasecurity team was looped in from the start17:50:23
@joerg:thalheim.ioMic92I know, I just didn't knew the time17:50:43
@joerg:thalheim.ioMic92* I know, I just didn't knew if you were knew the time17:51:04
@hexa:lossy.networkhexaremember when we modified the builders? ๐Ÿ˜‰17:51:06
@joerg:thalheim.ioMic92* I know, I just didn't knew if you knew the time17:52:01
@emilazy:matrix.orgemilyI think we just go direct to release branches for that (if it's kernel updates / urgent like this)20:23:26

Show newer messages

Back to Room ListRoom Version: 6