andi- changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh | Currently supported releases: unstable (master), 20.09, 20.03 (until 27th of November)
lukegb has quit [Quit: ~~lukegb out~~]
lukegb has joined #nixos-security
ris has quit []
red[evilred] has joined #nixos-security
<red[evilred]> I guess we gotta pushh and backport that on Monday then
tilpner_ has joined #nixos-security
tilpner has quit [Ping timeout: 256 seconds]
tilpner_ is now known as tilpner
rajivr has joined #nixos-security
justanotheruser has quit [Quit: WeeChat 2.9]
justanotheruser has joined #nixos-security
red[evilred] has quit [Quit: Idle timeout reached: 10800s]
justanotheruser has quit [Ping timeout: 264 seconds]
zarel_ has joined #nixos-security
zarel has quit [Ping timeout: 260 seconds]
justanotheruser has joined #nixos-security
FRidh has joined #nixos-security
blitzclone[m] has joined #nixos-security
<blitzclone[m]> hello everyone. I've seen https://github.com/NixOS/patchelf crash on some of our binaries that we produce at work and I thought it's a good thing to hunt these crashes down. I assume that bugs (incl memory unsafety) in patchelf is not a security issue and I can just open issues with example files on github. If someone thinks this is a poor idea, please ping me :)
FRidh has quit [Quit: Konversation terminated!]
ris has joined #nixos-security
<andi-> blitzclone[m]: just open it up. I am sure eelco will respond accordingly :-)
<MichaelRaskin> Most uses of patchelf imply execution of the resulting binary in isolation no stricter than patchelf had, so should not be too highly sensitive
<MichaelRaskin> (which does not make it any less serious if it can be triggered inadvertently, of course — just reduces disclosure considerations)
ninjin has joined #nixos-security
stigo has quit [*.net *.split]
vesper11 has quit [*.net *.split]
tv has quit [*.net *.split]
pie_ has quit [*.net *.split]
ivan has quit [*.net *.split]
flx has quit [*.net *.split]
ivan_ has joined #nixos-security
tv has joined #nixos-security
stigo has joined #nixos-security
pie_ has joined #nixos-security
bbigras has quit [*.net *.split]
feepo has quit [*.net *.split]
kgz has quit [*.net *.split]
ehmry has quit [*.net *.split]
star_cloud has quit [Ping timeout: 249 seconds]
flx has joined #nixos-security
bbigras has joined #nixos-security
feepo has joined #nixos-security
kgz has joined #nixos-security
ehmry has joined #nixos-security
kgz has quit [Max SendQ exceeded]
kgz has joined #nixos-security
thefloweringash has quit [Ping timeout: 244 seconds]
blitzclone[m] has quit [Ping timeout: 240 seconds]
danielrf[m] has quit [Ping timeout: 244 seconds]
Yakulu[m] has quit [Ping timeout: 246 seconds]
Ox4A6F has quit [Ping timeout: 240 seconds]
aanderse has quit [Ping timeout: 268 seconds]
colemickens has quit [Ping timeout: 246 seconds]
bbigras has quit [Ping timeout: 246 seconds]
danielrf[m] has joined #nixos-security
thefloweringash has joined #nixos-security
Yakulu[m] has joined #nixos-security
blitzclone[m] has joined #nixos-security
<blitzclone[m]> MichaelRaskin: yes, that's what I thought as well
Ox4A6F has joined #nixos-security
aanderse has joined #nixos-security
bbigras has joined #nixos-security
colemickens has joined #nixos-security
rajivr has quit [Quit: Connection closed for inactivity]
ivan_ is now known as ivan
vesper11 has joined #nixos-security