| 9 Oct 2024 |
 Scrumplex | Oh I just realized that LibreWolf is obviously following Mozilla's versioning ^^ | 20:55:12 |
 hexa | dotlambda: ^ | 20:55:13 |
| Scrumplex | librewolf-bin needs a bump too, but there is no AppImage release yet: https://gitlab.com/librewolf-community/browser/appimage/-/releases | 20:57:56 |
 emily | In reply to @scrumplex:duckhub.io
Latest Floorp release is from 30. September 2024, so I guess there is no patched version
https://floorp.app/en/download?platform=linux time for knownVulnerabilities | 20:58:26 |
| emily | unless they act soon | 20:58:34 |
| emily | not going to join their Discord, but from GitHub I don't see any sign they're even aware of the vulnerability | 20:59:05 |
| emily | uh, thought this was #security-discuss:nixos.org though | 20:59:15 |
| emily | Scrumplex: (maybe join ^?) | 21:03:26 |
| Scrumplex | in the process of joining | 21:03:34 |
|  @ereslibre:ereslibre.social joined the room. | 23:21:58 |
| @ereslibre:ereslibre.social left the room. | 23:24:07 |
|  schuelermine changed their profile picture. | 23:46:36 |
| 10 Oct 2024 |
|  @cf11:0x2c.org left the room. | 05:03:56 |
 magic_rb | In reply to @scrumplex:duckhub.io
librewolf-bin needs a bump too, but there is no AppImage release yet: https://gitlab.com/librewolf-community/browser/appimage/-/releases App images are out, currently not at a computer and wont be for a while | 08:03:23 |
| emily | it's knownVulnerabilities already, so no rush. | 08:03:46 |
| magic_rb | Fixing > knownVulnerabilities imho, so not a critical rush, but still would be nice to get it in asap
| 08:04:40 |
| Scrumplex | I can create a PR right away ^^ | 08:04:57 |
| Scrumplex | In reply to @scrumplex:duckhub.io
I can create a PR right away ^^ https://github.com/NixOS/nixpkgs/pull/347690 | 08:12:56 |
| Scrumplex | Also, I have built the new Floorp version here: https://github.com/NixOS/nixpkgs/pull/347677
Should be ready to merge | 08:13:30 |
| 14 Oct 2024 |
| Scrumplex | https://github.com/NixOS/nixpkgs/pull/347342 | 19:50:04 |
| 15 Oct 2024 |
|  dish [Fox/It/She] joined the room. | 07:35:53 |
 teutat3s | https://github.com/NixOS/nixpkgs/pull/348779 | 12:14:33 |
| 16 Oct 2024 |
|  @eisfunke:eisfunke.com left the room. | 13:35:57 |
| 17 Oct 2024 |
|  Mic92 changed their display name from Mic92 to Mic3000. | 06:51:17 |
| Mic92 changed their display name from Mic3000 to Mic3000 🌋. | 06:51:46 |
| Mic92 changed their display name from Mic3000 🌋 to Mic92. | 12:22:31 |
 Tom | Looks like Grafana is doing some sort of securtiy update https://github.com/grafana/grafana/releases https://github.com/grafana/grafana/tags
Usually it takes them a few hours until all tags have releases. Haven't looked into what they've fixed | 17:46:51 |
| Scrumplex | The mentioned vulnerability hasn't been disclosed yet it seems
https://nvd.nist.gov/vuln/detail/CVE-2024-9264 | 17:48:09 |
 ma27 | (grafana maintainer here) seen it and keeping an eye on my notifications. | 17:49:20 |
| Scrumplex | While we are at the topic of upcoming security fixes. OpenSSL has disclosed a low severity issue here: https://openssl-library.org/news/secadv/20241016.txt
They haven't released an update yet as the issue isn't deemed important. | 17:51:05 |
