gchristensen changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh
Synthetica has quit [Quit: Connection closed for inactivity]
pie__ has quit [Ping timeout: 258 seconds]
Synthetica has joined #nixos-security
justanotheruser has quit [Ping timeout: 268 seconds]
pie__ has joined #nixos-security
pie__ has quit [Ping timeout: 255 seconds]
Guest99428 is now known as LnL
Synthetica has quit [Quit: Connection closed for inactivity]
justanotheruser has joined #nixos-security
pie__ has joined #nixos-security
Synthetica has joined #nixos-security
andi- has quit [Ping timeout: 250 seconds]
<samueldr> which as I suspected, rather involved being on the other side of the airtight hatch :)
andi- has joined #nixos-security
<pie__> samueldr, thanks needed clarification on that :P
<samueldr> clarification on the saying or on the CVE? :)
<samueldr> (the series of blog posts is fun, always someone figuring out that once admin on their windows system, can do admin things, thinking they are security issues)
<pie__> the saying
<pie__> but i havent quite made the connection to the cve
andi- has quit [Excess Flood]
<samueldr> AFAICT the main issue is that it is insecure if you have arbitrary execution going on (and those packages)
<samueldr> I'm probably mistaken due to unfamiliarity with docker, but at that point you're already in a dire situation
<pie__> i guess
<pie__> something something exploit _chain_
andi- has joined #nixos-security
Profpatsch has left #nixos-security ["WeeChat 0.4.3"]
andi- has quit [Ping timeout: 246 seconds]
andi- has joined #nixos-security
pie__ has quit [Ping timeout: 246 seconds]
pie__ has joined #nixos-security