| 1 Jul 2024 |
 emily | do we care about waiting for Gentoo's fix backport for stable or should we just do the major bump? | 08:56:03 |
| emily | https://github.com/gentoo/gentoo/commit/1633ef45475afb9eea04e9cf27021c9d994af338 | 08:56:24 |
| emily | ah, the backport is already here | 08:56:27 |
| emily | and is from upstream | 08:56:38 |
| emily | will defer to others' judgement as to how we want to do the stable fixes | 08:57:15 |
 Alyssa Ross | if there's a backport available that probably makes sense | 08:57:27 |
| emily | I'll do it that way then | 08:58:39 |
| emily | I don't have merge permissions btw so feel free to hit the button on the master PR when you're confident | 08:59:23 |
| emily | we probably need to mark _hpn as insecure or see if the patch applies also | 08:59:59 |
| Alyssa Ross | merged | 09:00:42 |
 K900 | Thanks whoever started unstable-small | 09:02:45 |
| emily | I'll look at the HPN nonsense once the stable stuff is done | 09:04:12 |
| Alyssa Ross | (finished building on aarch64-linux) | 09:04:27 |
| Alyssa Ross | oh, should we move out of the triage channel? | 09:04:43 |
| emily | I'll move to the discussion room | 09:06:15 |
|  fadenb joined the room. | 10:09:53 |
|  @vincenttc:matrix.org joined the room. | 12:05:28 |
|  @vengmark2:matrix.org joined the room. | 15:05:10 |
| @vengmark2:matrix.org left the room. | 15:05:28 |
|  @annaaurora:artemislena.eu joined the room. | 21:52:04 |
| 2 Jul 2024 |
|  chreekat joined the room. | 09:16:36 |
|  tlaurion aka Insurgo [ Timezone: ET ] changed their display name from tlaurion aka Insurgo [UTC-4] (Canadian Dominion holiday, back July 2nd) to tlaurion aka Insurgo [UTC-4]. | 12:36:49 |
|  @david:matrix.galvanix.com joined the room. | 17:50:15 |
|  @ity:itycodes.org changed their display name from Tranquil Ity to Tranquil Ity (eepy/cutie). | 20:49:29 |
| @ity:itycodes.org changed their display name from Tranquil Ity (eepy/cutie) to Tranquil Ity. | 20:50:51 |
 ris_ | sigh https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/ | 21:26:14 |
 tgerbet | https://github.com/NixOS/nixpkgs/commit/2dcfa4787b6fb9fb9e6cb087db382f9ce8556f99 | 21:32:15 |
| emily | (don't expose unsandboxed ghostscript to untrusted input folks) | 21:34:09 |
| ris_ | In reply to @tgerbet:matrix.org
https://github.com/NixOS/nixpkgs/commit/2dcfa4787b6fb9fb9e6cb087db382f9ce8556f99 oh awesome we don't even have to backport | 21:41:00 |
 hexa | https://httpd.apache.org/security/vulnerabilities_24.html | 22:08:47 |
