#nixos-security on 2021-04-20

2020-11-04 15:50 andi- changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh | Currently supported releases: unstable (master), 20.09, 20.03 (until 27th of November)

00:31 star_cloud has quit [Ping timeout: 240 seconds]

00:56 rajivr has joined #nixos-security

02:50 star_cloud has joined #nixos-security

06:54 cole-h has quit [Ping timeout: 240 seconds]

07:59 cjb has quit [Quit: end of day]

09:48 Synthetica has joined #nixos-security

12:20 star_cloud has quit [Ping timeout: 240 seconds]

12:33 star_cloud has joined #nixos-security

14:15 cole-h has joined #nixos-security

18:24 star_cloud has quit [Ping timeout: 240 seconds]

19:14 <ris> hmm considering how to handle https://nvd.nist.gov/vuln/detail/CVE-2021-27219 for 20.09

19:15 <ris> it has been backported to glib 2.66 https://gitlab.gnome.org/GNOME/glib/-/merge_requests/1927 but 20.09 is on 2.64

20:41 star_cloud has joined #nixos-security

22:32 lassulus has quit [Ping timeout: 245 seconds]

22:37 lassulus has joined #nixos-security

22:58 <hexa-> https://github.com/NixOS/nixpkgs/pull/119910

22:58 <{^_^}> #119910 (by mweinelt, 23 hours ago, open): [20.09] firefox: 87.0 -> 88.0; firefox-esr: 78.9.0esr -> 78.10.0esr

23:18 <lukegb> hexa-: want to include firefox-bin in that backport?

23:19 <lukegb> oh wait, wrong one

23:28 supersandro2000 has quit [Remote host closed the connection]

23:29 supersandro2000 has joined #nixos-security

23:37 supersandro2000 is now known as Guest17333

23:37 supersandro2000 has joined #nixos-security

23:41 Guest17333 has quit [Ping timeout: 260 seconds]

23:52 Synthetica has quit [Quit: Connection closed for inactivity]

23:59 <hexa-> lukegb: #119935

23:59 <{^_^}> https://github.com/NixOS/nixpkgs/pull/119935 (by taku0, 13 hours ago, open): [20.09] firefox-bin: 87.0 -> 88.0