| 25 May 2021 |
 sumner | OK, I updated the backport commit, and rebased on the latest release-21.05 branch for good measure. | 15:23:39 |
 hexa | will merge when ofborg eval is happy | 15:24:20 |
|  binaryoctopus joined the room. | 15:42:22 |
|  meet joined the room. | 16:06:36 |
|  georgyo joined the room. | 16:54:06 |
| hexa | https://github.com/NixOS/nixpkgs/pull/124400 | 18:31:19 |
| hexa | needs porting to both stable branches | 18:31:30 |
| hexa |
A security issue in nginx resolver was identified, which might allow an
attacker to cause 1-byte memory overwrite by using a specially crafted
DNS response, resulting in worker process crash or, potentially, in
arbitrary code execution (CVE-2021-23017).
| 18:31:53 |
| hexa | https://security.googleblog.com/2021/05/introducing-half-double-new-hammering.html 😒 | 18:39:03 |
 kevincox | You mean DRAM manufacturers didn't really fix the problem? surprised-pikachu | 18:48:07 |
| hexa | https://github.com/NixOS/nixpkgs/pull/124433 | 22:20:58 |
| hexa | please review | 22:21:07 |
| hexa | thanks for the quick response everbody 🥳 | 22:40:09 |
