| 5 Nov 2024 |
 Alois | In reply to @aleksana:mozilla.org
Someone reported on hacker news that yt-dlp 2024.10.22 (which we are also using) has malicious behavior: https://news.ycombinator.com/item?id=42040600 * | 00:18:09 |
|  @grossmap:in.tum.de left the room. | 14:15:08 |
| 6 Nov 2024 |
 Scrumplex | https://github.com/NixOS/nixpkgs/pull/353968 | 08:12:13 |
| 7 Nov 2024 |
 emily | https://github.com/NixOS/nixpkgs/pull/354139 https://github.com/NixOS/nixpkgs/pull/354140 | 05:22:44 |
 vcunat | Missing expat triage for 24.05:
https://github.com/NixOS/nixpkgs/pull/354155#issuecomment-2461795245 | 10:29:35 |
| vcunat | Though it's only a NULL dereference and 24.05 won't live very long anyway. | 10:34:08 |
 leona | it seems quite trivial to backport, so I'd do it | 11:13:18 |
 teutat3s | https://github.com/NixOS/nixpkgs/pull/352689 | 17:26:39 |
| 8 Nov 2024 |
|  jschvz joined the room. | 02:57:52 |
| 10 Nov 2024 |
|  ChrisOboe removed their profile picture. | 11:56:25 |
| 11 Nov 2024 |
 K900 | https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.4 uh oh | 04:11:39 |
| K900 | Doing the update, it's probably not quite as bad because the vault is E2EE but still ba | 04:27:20 |
| K900 | * Doing the update, it's probably not quite as bad because the vault is E2EE but still bad | 04:27:21 |
| K900 | Merged, will run unstable-small now | 04:53:18 |
 dish [Fox/It/She] | i have my suspicions about what the actual security issues were, just reading the code won't speculate though | 04:53:47 |
| dish [Fox/It/She] | i have my suspicions about what the actual security issues were, just reading the code changes won't speculate though | 04:54:03 |
| dish [Fox/It/She] | though the comments in one part of the new code do explicitly mention now sanitizing against HTML/XSS injection attacks | 04:54:32 |
 hexa | https://github.com/NixOS/nixpkgs/pull/355240 | 17:51:40 |
| 12 Nov 2024 |
| teutat3s | https://github.com/NixOS/nixpkgs/pull/355400 | 11:38:01 |
 ma27 | https://github.com/grafana/grafana/releases/tag/v11.3.0%2Bsecurity-01
going to prepare & test a PR in about 5min | 16:26:16 |
| hexa | https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20241112 | 17:25:19 |
| hexa | @flx-:matrix.org ^ | 17:25:31 |
 flx | Oh jesus. | 17:44:57 |
| ma27 | In reply to @ma27:nicht-so.sexy
https://github.com/grafana/grafana/releases/tag/v11.3.0%2Bsecurity-01
going to prepare & test a PR in about 5min distracted in between, now opened https://github.com/NixOS/nixpkgs/pull/355481 . | 18:10:34 |
|  azahi changed their profile picture. | 18:51:18 |
|  Shaderoit left the room. | 22:01:44 |
| 13 Nov 2024 |
|  @yajo:matrix.org joined the room. | 07:50:25 |
| @yajo:matrix.org left the room. | 07:51:40 |
| hexa | https://about.gitlab.com/releases/2024/11/13/patch-release-gitlab-17-5-2-released/ | 17:44:49 |
| Scrumplex | https://github.com/NixOS/nixpkgs/pull/355733 | 20:49:59 |
