#nixos-security on 2021-03-24

2020-11-04 15:50 andi- changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh | Currently supported releases: unstable (master), 20.09, 20.03 (until 27th of November)

00:40 cjb has joined #nixos-security

00:40 cjb has quit [Remote host closed the connection]

00:41 cjb has joined #nixos-security

00:41 cjb is now known as Guest96467

00:41 Guest96467 is now known as asdf1234asd

00:42 asdf1234asd is now known as cjbayliss

00:42 supersandro2000 has quit [Disconnected by services]

00:43 supersandro2000 has joined #nixos-security

00:43 cjbayliss is now known as cjb

00:57 cjb has quit [Quit: hopefully fixed SASL]

01:10 ris has quit [Ping timeout: 246 seconds]

01:28 rajivr has joined #nixos-security

01:34 cjb has joined #nixos-security

01:40 cjb has quit []

01:41 cjb has joined #nixos-security

01:57 lukeg is now known as lukegb

01:58 cjb has quit []

02:00 cjb has joined #nixos-security

02:02 cole-h has quit [Quit: Goodbye]

02:03 cole-h has joined #nixos-security

03:22 ajs124 has quit [Quit: Bridge terminating on SIGTERM]

03:23 ajs124 has joined #nixos-security

05:24 cjb has quit []

07:23 midchildan has quit [Ping timeout: 240 seconds]

07:25 midchildan has joined #nixos-security

09:14 cole-h has quit [Ping timeout: 264 seconds]

09:57 ztzg```` has joined #nixos-security

10:46 FRidh has joined #nixos-security

15:04 Synthetica has joined #nixos-security

15:14 <hexa-> https://support2.windriver.com/index.php?page=security-notices&on=view&id=7055

15:14 <hexa-> Openssl will release new update on 2021/03/25, it will fix two "High" severity issues. These issues does not affect OpenSSL versions before 1.1.1:

15:14 <hexa-> CVE-2021-3449: NULL pointer deref in signature_algorithms processing

15:14 <hexa-> CVE-2021-3450: CA certificate check bypass with X509_V_FLAG_X509_STRICT

15:14 <gchristensen> oh fucking god

15:14 <hexa-> thank you Wind River Linux LTS 17

15:15 <gchristensen> hm?

15:15 <gchristensen> oh

15:15 <hexa-> the embargo is valid until tomorrow

15:15 <Foxboron> Shouldnt that be under embargo

15:15 <gchristensen> welp

15:15 <simpson> It is Wednesday my dudes

15:15 <gchristensen> yeah I realized the embargo was broken but didn't realize windriver wasn't win driver, but wind river and ... well here we go

15:16 <supersandro2000> also thought since when windows is interesting for nixos

15:17 <supersandro2000> just in case :) https://web.archive.org/web/20210324105700/https://support2.windriver.com/index.php?page=security-notices&on=view&id=7055

15:18 <hexa-> fair

15:35 <hexa-> the release for 1.1.1k is scheduled for 13:00 - 17:00 UTC tomorrow

15:36 <gchristensen> thanks hexa-

15:36 <hexa-> guess I'll take care of it if noone beats me to it

15:36 <gchristensen> that would be great :)

16:47 bbigras has quit [Ping timeout: 268 seconds]

16:47 cemguresci[m] has quit [Ping timeout: 268 seconds]

16:47 Yakulu[m] has quit [Ping timeout: 268 seconds]

16:48 SushiDude[m] has quit [Ping timeout: 260 seconds]

17:01 bbigras has joined #nixos-security

17:03 cemguresci[m] has joined #nixos-security

17:03 Yakulu[m] has joined #nixos-security

17:06 SushiDude[m] has joined #nixos-security

17:06 <aanderse> hexa-++

17:06 <{^_^}> hexa-'s karma got increased to 24

17:10 <FRidh> staging-20.09 is almost finished, just in time for another round tomorrow with those fixes...

17:10 <gchristensen> please don't merge staging until after openssl is released in to channels

17:18 <FRidh> gchristensen: https://github.com/NixOS/nixpkgs/pull/117191#issuecomment-806009321

17:18 <gchristensen> thank you a lot :)

17:19 <FRidh> robert and vcunat mostly take care of 20.09

17:40 rajivr has quit [Quit: Connection closed for inactivity]

18:40 cole-h has joined #nixos-security

18:51 ris has joined #nixos-security

19:20 FRidh has quit [Quit: Konversation terminated!]