!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

687 Members
Coordination and triage of security issues in nixpkgs216 Servers

Load older messages

SenderMessageTime
25 Oct 2025
@sigmasquadron:matrix.orgSigmaSquadronWhoops, yes. I wrote a 5 when I should've written a 2. Sorry about that; it was late and I went to bed shortly after posting.03:18:37
@sigmasquadron:matrix.orgSigmaSquadron * 03:18:50
26 Oct 2025
@tgerbet:matrix.orgtgerbethttps://github.com/NixOS/nixpkgs/pull/45594317:42:44
@tgerbet:matrix.orgtgerbetDisputed https://github.com/NixOS/nixpkgs/pull/45594517:43:13
@robert:funklause.dedotlambdahttps://github.com/NixOS/nixpkgs/pull/455984 fixes two undisclosed vulnerabilities in ImageMagick19:40:54
27 Oct 2025
@robert:funklause.dedotlambdahttps://github.com/NixOS/nixpkgs/pull/456046 probably fixes a vulnerability in Postfix but there is no official announcement yet01:55:21
@robert:funklause.dedotlambda* https://github.com/NixOS/nixpkgs/pull/455984 fixes two undisclosed vulnerabilities in ImageMagick EDIT: the vulnerability reports were now published01:56:01
@robert:funklause.dedotlambda* https://github.com/NixOS/nixpkgs/pull/455984 fixes two undisclosed vulnerabilities in ImageMagick EDIT: the vulnerability reports are now published01:56:16
@dp:anarchyislove.xyzDustin Plattner changed their display name from Dustin to Dustin Plattner.02:57:36
@amadaluzia:tchncs.de➡️@amadaluzia:unredacted.org joined the room.23:56:26
28 Oct 2025
@k900:0upti.meK900https://www.phoronix.com/news/X.Org-Server-3-Vuln-Oct-2025 Xorg again13:49:07
@k900:0upti.meK900xwayland: https://github.com/NixOS/nixpkgs/pull/456494 Someone else do xorgserver please my brain is very mush16:47:49
@zitrone:utwente.iozitrone joined the room.23:41:42
29 Oct 2025
@mdaniels5757:matrix.orgmdaniels5757Backport, approved by maintainer and containing security fixes: https://github.com/NixOS/nixpkgs/pull/45557000:54:25
2 Nov 2025
@amadaluzia:unredacted.orgamadaluzia (🇹🇷 til 25th) joined the room.22:34:47
@amadaluzia:tchncs.de➡️@amadaluzia:unredacted.org changed their display name from amadaluzia to ➡️@amadaluzia:unredacted.org.22:48:07
4 Nov 2025
@cafkafk:gitter.imcafkafk changed their profile picture.08:22:52
@hexa:lossy.networkhexahttps://seclists.org/oss-sec/2025/q4/127 curl13:24:04
@grimmauld:grapevine.grimmauld.deGrimmauld (any/all) 8.17.0 is scheduled to be released tomorrow, i don't think we can do anything yet 13:26:52
@k900:0upti.meK900Do we yeet the cycle again then13:27:48
@vcunat:matrix.orgvcunatSeverity isn't mentioned yet?13:38:00
@vcunat:matrix.orgvcunat* Severity isn't mentioned yet? (I fail to see it)13:38:06
@vcunat:matrix.orgvcunatAh, now I see "Moderate".13:39:04
@vcunat:matrix.orgvcunatEither way, 25.05 seems more of a concern than master/unstable.13:40:37
@somasis:matrix.orgsomasis joined the room.19:08:23
@whispers:catgirl.cloudwhispers (it/fae) joined the room.20:15:04
@letgamer:tchncs.deAlex Stephan joined the room.20:17:01
@philipdb:matrix.orgPhiliPdB joined the room.22:13:31
@ncfavier:matrix.orgnf changed their profile picture.23:55:16
9 Nov 2025
@robert:funklause.dedotlambdahttps://github.com/NixOS/nixpkgs/pull/452743 arguably patches a denial of service vulnerability, no CVE assigned though05:59:45

Show newer messages

Back to Room ListRoom Version: 6