!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

665 Members
Coordination and triage of security issues in nixpkgs | Discussions in #security-discuss:nixos.org | Open PRs: https://github.com/NixOS/nixpkgs/pulls?q=is%3Apr+is%3Aopen+sort%3Aupdated-desc+label%3A%221.severity%3A+security%22206 Servers

You have reached the beginning of time (for this room).

SenderMessageTime
16 Oct 2025
@spiralp:matrix.orgSpiralP left the room.18:54:23
@spiralp:matrix.orgSpiralP joined the room.18:55:06
18 Oct 2025
@kevincox:matrix.org@kevincox:matrix.org left the room.10:23:21
@joerg:thalheim.ioMic92https://github.com/NixOS/nixpkgs/pull/452376 libgit20:59:30
@grimmauld:grapevine.grimmauld.deGrimmauld (migrated to @grimmauld:m.grimmauld.de)

binutils 2.45 has a few CVEs, though as we are still on 2.44 it is unclear whether we are affected (likely the answer is yes, but i didn't go look).
Patches seem to exist though, not sure whether they apply on 2.44 base though.

https://nvd.nist.gov/vuln/detail/CVE-2025-11412
https://nvd.nist.gov/vuln/detail/CVE-2025-11413
https://nvd.nist.gov/vuln/detail/CVE-2025-11414
https://nvd.nist.gov/vuln/detail/CVE-2025-11494
https://nvd.nist.gov/vuln/detail/CVE-2025-11495

cc John Ericson i guess

21:08:08

Show newer messages

Back to Room ListRoom Version: 6