!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

660 Members
Coordination and triage of security issues in nixpkgs | Discussions in #security-discuss:nixos.org | Open PRs: https://github.com/NixOS/nixpkgs/pulls?q=is%3Apr+is%3Aopen+sort%3Aupdated-desc+label%3A%221.severity%3A+security%22205 Servers

Load older messages

SenderMessageTime
9 Aug 2024
@emilazy:matrix.orgemily(also in gogs, but we have that marked as insecure already)09:58:05
@emilazy:matrix.orgemilyto 0.7.6 rather I guess09:58:25
@emilazy:matrix.orgemilyhttps://github.com/NixOS/nixpkgs/pull/33138609:58:49
@yaya:uwu.isyayahttps://www.postgresql.org/support/security/CVE-2024-7348/11:33:11
@hexa:lossy.networkhexa cc ma27 11:35:02
@ma27:nicht-so.sexyma27 oh dang right when I'm on vacation.
can you please ping wolfgangwalther (not sure if they have matrix though, obly interacted on github). 		11:57:17
@ma27:nicht-so.sexyma27sowwy11:58:11
@hexa:lossy.networkhexaenjoy!12:02:50
@hexa:lossy.networkhexavia https://github.com/NixOS/nixpkgs/issues/33343012:04:45
10 Aug 2024
@rosscomputerguy:matrix.orgTristan Ross changed their profile picture.03:13:13
@vcunat:matrix.orgvcunat(still needs a manual backport to 24.05, apparently)05:30:55
12 Aug 2024
@sandro:supersandro.deSandro 🐧https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.009:47:15
@sandro:supersandro.deSandro 🐧https://github.com/NixOS/nixpkgs/pull/33404809:51:33
@sandro:supersandro.deSandro 🐧https://github.com/NixOS/nixpkgs/pull/33409910:40:29
@sandro:supersandro.deSandro 🐧CVE-2024-7589 in openssh is freebsd specific and doesn't apply to us.12:07:18
@emilazy:matrix.orgemilyit has been [0] heck of a long times since the last remote hole in the default install12:17:23
@emilazy:matrix.orgemilyoh, FreeBSD not OpenBSD12:17:35
13 Aug 2024
@nam3l33ss:matrix.org·☽•Nameless☆•777 · ± changed their profile picture.04:07:57
14 Aug 2024
@hexa:lossy.networkhexahttps://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-2024081301:06:32
@hexa:lossy.networkhexahttps://github.com/NixOS/nixpkgs/pull/33450501:07:59
@von.dev:matrix.orgvon.dev joined the room.03:51:22
@sandro:supersandro.deSandro 🐧https://github.com/flatpak/flatpak/security/advisories/GHSA-7hgv-f2j8-xw8719:23:26
@sandro:supersandro.deSandro 🐧https://github.com/containers/bubblewrap/releases/tag/v0.10.019:23:29
@sandro:supersandro.deSandro 🐧doing one combined PR right now19:26:26
@sandro:supersandro.deSandro 🐧https://github.com/NixOS/nixpkgs/pull/33470119:33:13
15 Aug 2024
@teutat3s:pub.solarteutat3shttps://github.com/NixOS/nixpkgs/pull/320479 just stumbled over this one, open since 2024-06-17.07:43:32
@amythegay:161.rocks@amythegay:161.rocks joined the room.16:38:16
@jblackwell:matrix.orgjblackwell joined the room.19:50:28
16 Aug 2024
@shortcutz:matrix.orgshortcutz joined the room.10:09:47
@philiptaron:matrix.orgPhilip Taron (UTC-8)https://github.com/NixOS/nixpkgs/pull/335213 -- I'm security dumb with regard to nixpkgs process. I'm merging this into staging, but the PR author requests that it go to stable.23:38:59

Show newer messages

Back to Room ListRoom Version: 6