andi- changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh | Currently supported releases: unstable (master), 20.09, 20.03 (until 27th of November)
<{^_^}> #116568 (by mweinelt, 2 days ago, open): [20.09] python3Packages.aiohttp: 3.6.2 -> 3.6.3; patch CVE-2021-21330
<{^_^}> #115310 (by mweinelt, 1 week ago, open): grub: 2.0.4 -> 2.0.6-rc1
<{^_^}> #116280 (by mweinelt, 5 days ago, open): [20.09] libtiff: fix two security issues
justanotheruser has quit [Ping timeout: 265 seconds]
supersandro2000 has quit [Disconnected by services]
supersandro2000 has joined #nixos-security
rajivr has joined #nixos-security
ADISBLADIS is now known as adisbladis
<{^_^}> #116431 (by dasJ, 4 days ago, open): [staging-20.09] openssh: 8.4p1 -> 8.5p1 and mark CVE-2021-28041
<hexa-> this looks like quite the extensive backport
<supersandro2000> IIRC the packages that depend on openssh did not receive an update at the time and they needed to be split out
<supersandro2000> I tried a smaller PR but it ended up being more or less the same
ris has quit [Ping timeout: 246 seconds]
cole-h has joined #nixos-security
justanotheruser has joined #nixos-security
cole-h has quit [Ping timeout: 264 seconds]
enick_326 is now known as JJJollyjim
PIE_ is now known as pie_
aanderse has quit [Ping timeout: 240 seconds]
prusnak_ has joined #nixos-security
aanderse has joined #nixos-security
prusnak has quit [Ping timeout: 240 seconds]
prusnak_ is now known as prusnak
FRidh has joined #nixos-security
FLOKLI is now known as flokli
ris has joined #nixos-security
cole-h has joined #nixos-security
rajivr has quit [Quit: Connection closed for inactivity]
supersandro2000 has quit [Quit: The Lounge - https://thelounge.chat]
supersandro2000 has joined #nixos-security
simpson has quit [Ping timeout: 260 seconds]
simpson has joined #nixos-security
FRidh has quit [Quit: Konversation terminated!]