andi- changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh | Currently supported releases: unstable (master), 20.09, 20.03 (until 27th of November)
supersandro2000 has quit [Disconnected by services]
supersandro2000 has joined #nixos-security
{^_^} has quit [Remote host closed the connection]
{^_^} has joined #nixos-security
rajivr has joined #nixos-security
rajivr has quit [Ping timeout: 264 seconds]
raboof has quit [Ping timeout: 260 seconds]
feepo has quit [Write error: Connection reset by peer]
davidtwco has quit [Read error: Connection reset by peer]
rajivr has joined #nixos-security
feepo has joined #nixos-security
davidtwco has joined #nixos-security
raboof has joined #nixos-security
justanotheruser has joined #nixos-security
justan0theruser has quit [Ping timeout: 265 seconds]
<julm> > Firejail: Insecure Use of OverlayFS as Sandbox File System
<{^_^}> <LAMBDA>
<stigo> julm: thx, updated #112439
<{^_^}> https://github.com/NixOS/nixpkgs/pull/112439 (by 0x4A6F, 10 hours ago, open): firejail: 0.9.64.2 -> 0.9.64.4
Foxboron has quit [Ping timeout: 265 seconds]
Foxboron has joined #nixos-security
<julm> stigo++ :)
<{^_^}> stigo's karma got increased to 6
cole-h has quit [Ping timeout: 256 seconds]
davidtwco has quit [Read error: Connection reset by peer]
davidtwco has joined #nixos-security
justanotheruser has quit [Ping timeout: 258 seconds]
davidtwco has quit [Write error: Connection reset by peer]
davidtwco has joined #nixos-security
justanotheruser has joined #nixos-security
ris has quit []
_ris has joined #nixos-security
feepo has quit [Read error: Connection reset by peer]
feepo has joined #nixos-security
gchristensen has quit [Quit: WeeChat 2.9]
<raboof> had a quick look at #109190 but from those CVE's it's not super clear those bugs indeed apply to pre-5.4.0 versions, something to check...
<{^_^}> https://github.com/NixOS/nixpkgs/issues/109190 (by ckauhaus, 3 weeks ago, open): Vulnerability roundup 98: lua-5.3.6: 3 advisories [8.8]
gchristensen has joined #nixos-security
<stigo> #112537
<{^_^}> https://github.com/NixOS/nixpkgs/pull/112537 (by stigtsp, 48 seconds ago, open): [20.09] firejail: 0.9.62 -> 0.9.64.4
<hexa-> waiting for ofborg to complete
<Ox4A6F> Thanks stigo++ for backporting.
<{^_^}> stigo's karma got increased to 7
<stigo> hexa-: was missing a commit "fixing the 'xdg-dbus-proxy' dependency" ffeb2af, adding now
<hexa-> whoops
rajivr has quit [Quit: Connection closed for inactivity]
cole-h has joined #nixos-security
adisbladis has quit [Quit: ZNC 1.8.2 - https://znc.in]
adisbladis has joined #nixos-security
<qyliss> I love that they published the exploit but made further discussion of the bug private
<ivan> haha
<eyJhb> I am currently resisting the urge to pop it in #debian etc.
<gchristensen> I'm sure they're all doing the best they can
<qyliss> yeah
<eyJhb> Just think of all the minecraft servers one could take over...And combining it with the sudo bug (or IRC + screen exploit + sudo - if exploitable)
star_cloud has quit [Remote host closed the connection]
star_cloud has joined #nixos-security
<lukegb> oh, the screen thing crashes xterm too
star_cloud has quit [Excess Flood]
star_cloud has joined #nixos-security
<gchristensen> wow
justanotheruser has quit [Ping timeout: 260 seconds]
_ris is now known as ris
danderson has quit [Quit: leaving]