!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

685 Members
Coordination and triage of security issues in nixpkgs214 Servers

Load older messages

SenderMessageTime
2 Apr 2025
@hexa:lossy.networkhexahttps://github.com/NixOS/nixpkgs/pull/39245723:03:04
3 Apr 2025
@mjolnir:nixos.orgNixOS Moderation Bot banned @cafkafk:fem.ggcafkafk (<no reason supplied>).11:42:00
@2xsaiko:tchncs.de@2xsaiko:tchncs.de changed their display name from 2xsaiko to 2xsaiko (moved! @saiko:knifepoint.net).12:52:04
@hexa:lossy.networkhexaxz https://www.openwall.com/lists/oss-security/2025/04/03/117:21:28
@dantefromhell:matrix.orgdantefromhell changed their display name from dantefromhell to MATRIX dantefromhell.22:34:39
@dantefromhell:matrix.orgdantefromhell changed their display name from MATRIX dantefromhell to dantefromhell.22:36:28
4 Apr 2025
@vcunat:matrix.orgvcunatxz staged via https://github.com/NixOS/nixpkgs/pull/393310#event-17120398189 But it's not addressed for 24.11 yet. Maybe simply patch from the upstream advisory: https://tukaani.org/xz/threaded-decoder-early-free.html05:52:06
@vcunat:matrix.orgvcunat* xz staged via https://github.com/NixOS/nixpkgs/pull/393310#event-17120398189 But it's not addressed for 24.11 yet. Maybe simply patch from the upstream advisory: https://tukaani.org/xz/threaded-decoder-early-free.html (because a bigger update happened in the meantime)05:53:02
@mjolnir:nixos.orgNixOS Moderation Bot unbanned @cafkafk:fem.ggcafkafk.06:13:16
@qbit:tapenet.org@qbit:tapenet.org left the room.16:10:41
@hexa:lossy.networkhexa Jan Tojnar: https://gitlab.gnome.org/GNOME/yelp/-/issues/221 19:27:59
@hexa:lossy.networkhexahttps://www.pgadmin.org/docs/pgadmin4/9.2/release_notes_9_2.html20:52:23
@bdd:mozilla.orgbdd left the room.23:19:02
@bdd:mozilla.orgbdd joined the room.23:21:47
5 Apr 2025
@tinybronca:sibnsk.net@tinybronca:sibnsk.net left the room.15:47:08
@transcaffeine:finallycoffee.eutranscaffeine joined the room.19:48:29
@amy:netzschleife.deamy joined the room.19:48:37
@transcaffeine:finallycoffee.eutranscaffeine

https://github.com/NixOS/nixpkgs/pull/396414

Fix validation of API parameters to FFmpeg [GHSA-2c3c-r7gp-q32m], by @Shadowghost
Fix trusting forward headers if none are configured [GHSA-qcmf-gmhm-rfv9], by @JPVenson

19:49:01
@transcaffeine:finallycoffee.eutranscaffeine *

jellyfin: https://github.com/NixOS/nixpkgs/pull/396414

Fix validation of API parameters to FFmpeg [GHSA-2c3c-r7gp-q32m], by @Shadowghost
Fix trusting forward headers if none are configured [GHSA-qcmf-gmhm-rfv9], by @JPVenson

19:51:15
7 Apr 2025
@hexa:lossy.networkhexa https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-01.html Mic92 14:21:51
@hexa:lossy.networkhexa* https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-01.html 14:22:06
@hexa:lossy.networkhexarnhmjoj 🤔14:22:29
@hexa:lossy.networkhexa https://webkitgtk.org/security/WSA-2025-0003.html Jan Tojnar 14:22:57
@jtojnar:matrix.orgJan TojnarThanks, opened https://github.com/NixOS/nixpkgs/pull/396865, currently building17:20:25
8 Apr 2025
@hexa:lossy.networkhexahttps://github.com/c-ares/c-ares/releases/tag/v1.34.513:13:37
@hexa:lossy.networkhexahttps://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v13:14:27
@nam3l33ss:matrix.org·☽•Nameless☆•777 · ± changed their profile picture.17:39:57
9 Apr 2025
@hexa:lossy.networkhexahttps://github.com/openwrt/packages/issues/26277 😢21:43:25
@hexa:lossy.networkhexahttps://www.openwall.com/lists/oss-security/2025/04/09/4 https://github.com/NixOS/nixpkgs/pull/39750322:11:12
@emilazy:matrix.orgemily (sounds like we should use libxml2 instead per new upstream defaults?) 22:13:55

Show newer messages

Back to Room ListRoom Version: 6