Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[20.03] crispyDoom: fixed CVE-2020-14983 #92358

Merged
merged 1 commit into from Jul 5, 2020
Merged

[20.03] crispyDoom: fixed CVE-2020-14983 #92358

merged 1 commit into from Jul 5, 2020

Conversation

danieldk
Copy link
Contributor

@danieldk danieldk commented Jul 5, 2020

Motivation for this change

Fixes CVE-2020-14983.

(cherry picked from commit 2d24b8b)

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@neonfuz @danieldk
crispyDoom: fixed CVE-2020-14983
ed42149 
(cherry picked from commit 2d24b8b)
@veprbl veprbl merged commit 74f2559 into NixOS:release-20.03 Jul 5, 2020
dfinity-bot added a commit to dfinity/motoko that referenced this pull request Jul 6, 2020
@dfinity-bot
niv nixpkgs: update 210d7a17 -> 41aa2272
cc1f009 
## Changelog for nixpkgs:
Commits: [NixOS/nixpkgs@210d7a17...41aa2272](NixOS/nixpkgs@210d7a1...41aa227)

* [`8134bd1a`](NixOS/nixpkgs@8134bd1) re2c: 1.2.1 -> 1.3
* [`9c14030f`](NixOS/nixpkgs@9c14030) re2c: add patch for CVE-2020-11958
* [`580abb25`](NixOS/nixpkgs@580abb2) mesa: 19.3.3 -> 19.3.5
* [`4ac4a236`](NixOS/nixpkgs@4ac4a23) chromedriver: 81.0.4044.69 -> 83.0.4103.39
* [`7ccfe75b`](NixOS/nixpkgs@7ccfe75) tendermint: 0.32.3 -> 0.32.10
* [`dbfb40ef`](NixOS/nixpkgs@dbfb40e) systemd: apply patch for CVE-2020-13776
* [`7e37d805`](NixOS/nixpkgs@7e37d80) root5: fix CVE-2017-1000203
* [`e5959057`](NixOS/nixpkgs@e595905) python3Packages.zconfig: unmark as broken
* [`f499b39f`](NixOS/nixpkgs@f499b39) python3Packages.zodb: unmark as broken
* [`5bc40483`](NixOS/nixpkgs@5bc4048) linux: 5.5-rc7 -> 5.6-rc1
* [`87a110ff`](NixOS/nixpkgs@87a110f) linux: 5.6-rc1 -> 5.6-rc2
* [`7dabe08a`](NixOS/nixpkgs@7dabe08) linux: 5.6-rc2 -> 5.6-rc3
* [`3328c69d`](NixOS/nixpkgs@3328c69) linux: 5.6-rc3 -> 5.6-rc5
* [`61e1b66b`](NixOS/nixpkgs@61e1b66) linux: 5.6-rc5 -> 5.6-rc7
* [`48c7203e`](NixOS/nixpkgs@48c7203) linux_testing: 5.6-rc7 -> 5.7-rc2
* [`760436a0`](NixOS/nixpkgs@760436a) linux: 5.7-rc2 -> 5.7-rc3
* [`392f8e12`](NixOS/nixpkgs@392f8e1) linux: 5.7-rc3 -> 5.7-rc4
* [`62c2df45`](NixOS/nixpkgs@62c2df4) linux: 5.7-rc4 -> 5.7-rc6
* [`86a96898`](NixOS/nixpkgs@86a9689) linux_5_7: init at 5.7.1
* [`e268676f`](NixOS/nixpkgs@e268676) linux: fix kernel config options for 5.7
* [`1bc943ec`](NixOS/nixpkgs@1bc943e) linux: 5.7.1 -> 5.7.2
* [`18253518`](NixOS/nixpkgs@1825351) linux: 5.7-rc6 -> 5.8-rc1
* [`979b757b`](NixOS/nixpkgs@979b757) linux: 5.7.2 -> 5.7.3
* [`58f3e7b8`](NixOS/nixpkgs@58f3e7b) linux: 5.7.3 -> 5.7.4
* [`13c15f26`](NixOS/nixpkgs@13c15f2) buildGoModule: remove strictDeps
* [`9c42eb70`](NixOS/nixpkgs@9c42eb7) gitea: 1.11.6 -> 1.11.8
* [`d30ddfda`](NixOS/nixpkgs@d30ddfd) moodle: 3.8.2 -> 3.8.3
* [`86810c46`](NixOS/nixpkgs@86810c4) ansible: v2.9.9 -> v2.9.10
* [`7d1c0e70`](NixOS/nixpkgs@7d1c0e7) ansible: add myself as maintainer
* [`f9fd435a`](NixOS/nixpkgs@f9fd435) qemu: patch CVE-2020-1711
* [`348503b6`](NixOS/nixpkgs@348503b) Update nixUnstable and nixFlakes
* [`df3bafff`](NixOS/nixpkgs@df3baff) lxqt.pcmanfm-qt: fix default wallpaper
* [`c078dab3`](NixOS/nixpkgs@c078dab) nomachine-client: 6.10.12 -> 6.11.2
* [`1fb5b2cc`](NixOS/nixpkgs@1fb5b2c) riot-web: 1.6.5 -> 1.6.6
* [`39da4240`](NixOS/nixpkgs@39da424) riot-desktop: 1.6.5 -> 1.6.6
* [`4a38da50`](NixOS/nixpkgs@4a38da5) linux: 5.4.46 -> 5.4.47
* [`abd7eb85`](NixOS/nixpkgs@abd7eb8) linux: 4.14.184 -> 4.14.185
* [`779f7018`](NixOS/nixpkgs@779f701) linux: 4.19.128 -> 4.19.129
* [`de5c1423`](NixOS/nixpkgs@de5c142) linux: 4.4.227 -> 4.4.228
* [`907e1ae7`](NixOS/nixpkgs@907e1ae) linux: 4.9.227 -> 4.9.228
* [`b3dcc2bf`](NixOS/nixpkgs@b3dcc2b) linux: 5.4.47 -> 5.4.48
* [`390742eb`](NixOS/nixpkgs@390742e) qgis: 3.10.4 -> 3.10.7
* [`78e2687d`](NixOS/nixpkgs@78e2687) mp4v2: 2.0.0 -> 4.1.3
* [`91881715`](NixOS/nixpkgs@9188171) curl: 7.68.0 -> 7.69.1
* [`f1693d6c`](NixOS/nixpkgs@f1693d6) curl: 7.69.1 -> 7.70.0
* [`2599ba38`](NixOS/nixpkgs@2599ba3) pcre: 8.43 -> 8.44
* [`039c3c9e`](NixOS/nixpkgs@039c3c9) curl: apply patches for CVE-2020-8169 and CVE-2020-8177
* [`6460602e`](NixOS/nixpkgs@6460602) gns3-gui: Add the missing qt5Full runtime dependency
* [`1b9ed4ff`](NixOS/nixpkgs@1b9ed4f) chromium: 83.0.4103.106 -> 83.0.4103.116
* [`f2cdade6`](NixOS/nixpkgs@f2cdade) texlive: fix build for scheme-infraonly
* [`f8248ab6`](NixOS/nixpkgs@f8248ab) hydra-unstable: 2020-06-01 -> 2020-06-23
* [`29f44d00`](NixOS/nixpkgs@29f44d0) wolfssl: v4.3.0 -> v4.4.0
* [`ec75f825`](NixOS/nixpkgs@ec75f82) openssh: don’t include fido2 on musl
* [`4f0e4023`](NixOS/nixpkgs@4f0e402) django: update version 2.2.10 to 2.2.11
* [`f31e6027`](NixOS/nixpkgs@f31e602) pythonPackages.django2_2: 2.2.11 -> 2.2.13
* [`6da23f10`](NixOS/nixpkgs@6da23f1) php: 7.2.29 -> 7.2.31, 7.3.16 -> 7.3.19, 7.4.6 -> 7.4.7
* [`b879e5a0`](NixOS/nixpkgs@b879e5a) linux: 5.4.48 -> 5.4.49
* [`c1f9fb3e`](NixOS/nixpkgs@c1f9fb3) linux: 5.7.4 -> 5.7.5
* [`46c4fbd6`](NixOS/nixpkgs@46c4fbd) linux: 5.7.5 -> 5.7.6
* [`05c44414`](NixOS/nixpkgs@05c4441) libtomcrypt: fix CVE-2019-17362 (security)
* [`3c24d548`](NixOS/nixpkgs@3c24d54) wordpress: 5.3.3 -> 5.3.4
* [`4c8a1df3`](NixOS/nixpkgs@4c8a1df) wordpress: add passthru.tests
* [`0ba9fdc1`](NixOS/nixpkgs@0ba9fdc) rtl8821ce: 5.2.5_1.26055.20180108 -> 5.5.2_34066.20200325
* [`81ddbc41`](NixOS/nixpkgs@81ddbc4) signal-desktop: 1.34.2 -> 1.34.3
* [`ee774dba`](NixOS/nixpkgs@ee774db) linux: 4.14.185 -> 4.14.186
* [`cce092c1`](NixOS/nixpkgs@cce092c) linux: 4.19.129 -> 4.19.130
* [`bf210d80`](NixOS/nixpkgs@bf210d8) ceph: apply patch for CVE-2020-10753
* [`0dde2ec1`](NixOS/nixpkgs@0dde2ec) neomutt: 20200619 -> 20200626
* [`43b480d8`](NixOS/nixpkgs@43b480d) cargo-make: 0.31.0 -> 0.31.1
* [`5b5b3176`](NixOS/nixpkgs@5b5b317) linuxPackages.wireguard: 1.0.20200611 -> 1.0.20200623
* [`ae6ebbec`](NixOS/nixpkgs@ae6ebbe) nvidia_x11.legacy_340: 340.107 -> 340.108
* [`f23eee9c`](NixOS/nixpkgs@f23eee9) nvidia_x11.legacy_390: 390.132 -> 390.138
* [`69cce691`](NixOS/nixpkgs@69cce69) nvidia_x11: 440.82 -> 440.100
* [`8fbacd2c`](NixOS/nixpkgs@8fbacd2) libvncserver: 0.9.12 -> 0.9.13 (security)
* [`40eaa8fb`](NixOS/nixpkgs@40eaa8f) sysdig: 0.26.5 -> 0.26.6
* [`20c43300`](NixOS/nixpkgs@20c4330) linuxPackages.sysdig: 0.26.6 -> 0.26.7
* [`63bd666c`](NixOS/nixpkgs@63bd666) keepassxc: 2.5.2 -> 2.5.4
* [`0c486cfa`](NixOS/nixpkgs@0c486cf) docker: 19.03.11 -> 19.03.12
* [`b3d20c3d`](NixOS/nixpkgs@b3d20c3) docker: use git tags instead of revs
* [`0c74b2f4`](NixOS/nixpkgs@0c74b2f) kubernetes: 1.17.5 -> 1.17.8
* [`c5299e9d`](NixOS/nixpkgs@c5299e9) linux_latest-libre: 17402 -> 17537
* [`062362bd`](NixOS/nixpkgs@062362b) epson-escpr2: 1.1.12 -> 1.1.13
* [`11b5bde1`](NixOS/nixpkgs@11b5bde) riot-desktop: 1.6.6 -> 1.6.7
* [`560e3b7d`](NixOS/nixpkgs@560e3b7) riot-web: 1.6.6 -> 1.6.7
* [`9e30519c`](NixOS/nixpkgs@9e30519) nomad: 0.10.2 -> 0.10.5
* [`ec3103e3`](NixOS/nixpkgs@ec3103e) openafs_1_8: 1.8.5 -> 1.8.6
* [`30fb4e1e`](NixOS/nixpkgs@30fb4e1) linux: 5.8-rc1 -> 5.8-rc2
* [`a1a8e7b0`](NixOS/nixpkgs@a1a8e7b) vault: 1.3.2 -> 1.3.6
* [`0023aaef`](NixOS/nixpkgs@0023aae) lorri: 1.0 -> 1.1
* [`214d063d`](NixOS/nixpkgs@214d063) yaru-theme: fix NixOS/nixpkgs#91710
* [`630c219e`](NixOS/nixpkgs@630c219) targetcli: 2.1.51 -> 2.1.53
* [`065fd73d`](NixOS/nixpkgs@065fd73) linux: 4.14.186 -> 4.14.187
* [`b91ee380`](NixOS/nixpkgs@b91ee38) linux: 4.19.130 -> 4.19.131
* [`17d2195b`](NixOS/nixpkgs@17d2195) linux: 4.4.228 -> 4.4.229
* [`ead3c71b`](NixOS/nixpkgs@ead3c71) linux: 4.9.228 -> 4.9.229
* [`bf59e152`](NixOS/nixpkgs@bf59e15) linux: 5.4.49 -> 5.4.50
* [`9a3e34ae`](NixOS/nixpkgs@9a3e34a) linux: 5.7.6 -> 5.7.7
* [`b1a39c0e`](NixOS/nixpkgs@b1a39c0) [20.03] ceph: 14.2.9 -> 14.2.10
* [`b5120fe6`](NixOS/nixpkgs@b5120fe) sane-backends: 1.0.28 -> 1.0.30
* [`e1afc39b`](NixOS/nixpkgs@e1afc39) libreswan: 3.31 -> 3.32
* [`d695d9bd`](NixOS/nixpkgs@d695d9b) freerdp: 2.1.0 -> 2.1.1
* [`ba7a81a0`](NixOS/nixpkgs@ba7a81a) freerdp: 2.1.1 -> 2.1.2
* [`4d9dcce8`](NixOS/nixpkgs@4d9dcce) owncloud-client: add libsecret dependency
* [`83659411`](NixOS/nixpkgs@8365941) matrix-synapse: 1.15.1 -> 1.15.2 [security]
* [`e497cff1`](NixOS/nixpkgs@e497cff) postfix: 3.4.13 -> 3.4.14 (NixOS/nixpkgs#91772)
* [`c2eca910`](NixOS/nixpkgs@c2eca91) graylog: 3.3.1 -> 3.3.2
* [`f761c14f`](NixOS/nixpkgs@f761c14) nixos/test-driver: Specify /bin/sh shell when running a bourne shell script as the user
* [`5f739b61`](NixOS/nixpkgs@5f739b6) teams: 1.3.00.958 -> 1.3.00.5153
* [`97f81818`](NixOS/nixpkgs@97f8181) teams: 1.3.00.5152 -> 1.3.00.16851
* [`519151fd`](NixOS/nixpkgs@519151f) mautrix-whatsapp: 0.1.1 -> 0.1.2
* [`75e0bd3a`](NixOS/nixpkgs@75e0bd3) mattermost-desktop: 4.3.1 -> 4.5.0
* [`88b7aedd`](NixOS/nixpkgs@88b7aed) ell: 0.31 -> 0.32
* [`afa9ca61`](NixOS/nixpkgs@afa9ca6) iwd: 1.7 -> 1.8
* [`b705ed44`](NixOS/nixpkgs@b705ed4) firefox-bin: 77.0.1 -> 78.0.1 (PR NixOS/nixpkgs#92043)
* [`be007538`](NixOS/nixpkgs@be00753) firefox-beta-bin: 76.0b8 -> 79.0b2 (PR NixOS/nixpkgs#92043)
* [`b008a050`](NixOS/nixpkgs@b008a05) firefox-esr-68: 68.9.0esr -> 68.10.0esr (PR NixOS/nixpkgs#92043)
* [`74f2559a`](NixOS/nixpkgs@74f2559) crispyDoom: fixed CVE-2020-14983 (NixOS/nixpkgs#92358)
* [`1d56d73a`](NixOS/nixpkgs@1d56d73) roundcube: 1.4.6 -> 1.4.7
@dfinity-bot dfinity-bot mentioned this pull request Jul 6, 2020
Merged
mergify bot pushed a commit to dfinity/motoko that referenced this pull request Jul 6, 2020
@dfinity-bot
niv nixpkgs: update 210d7a17 -> 41aa2272 (#1685)
00ac430 
## Changelog for nixpkgs:
Commits: [NixOS/nixpkgs@210d7a17...41aa2272](NixOS/nixpkgs@210d7a1...41aa227)

* [`8134bd1a`](NixOS/nixpkgs@8134bd1) re2c: 1.2.1 -> 1.3
* [`9c14030f`](NixOS/nixpkgs@9c14030) re2c: add patch for CVE-2020-11958
* [`580abb25`](NixOS/nixpkgs@580abb2) mesa: 19.3.3 -> 19.3.5
* [`4ac4a236`](NixOS/nixpkgs@4ac4a23) chromedriver: 81.0.4044.69 -> 83.0.4103.39
* [`7ccfe75b`](NixOS/nixpkgs@7ccfe75) tendermint: 0.32.3 -> 0.32.10
* [`dbfb40ef`](NixOS/nixpkgs@dbfb40e) systemd: apply patch for CVE-2020-13776
* [`7e37d805`](NixOS/nixpkgs@7e37d80) root5: fix CVE-2017-1000203
* [`e5959057`](NixOS/nixpkgs@e595905) python3Packages.zconfig: unmark as broken
* [`f499b39f`](NixOS/nixpkgs@f499b39) python3Packages.zodb: unmark as broken
* [`5bc40483`](NixOS/nixpkgs@5bc4048) linux: 5.5-rc7 -> 5.6-rc1
* [`87a110ff`](NixOS/nixpkgs@87a110f) linux: 5.6-rc1 -> 5.6-rc2
* [`7dabe08a`](NixOS/nixpkgs@7dabe08) linux: 5.6-rc2 -> 5.6-rc3
* [`3328c69d`](NixOS/nixpkgs@3328c69) linux: 5.6-rc3 -> 5.6-rc5
* [`61e1b66b`](NixOS/nixpkgs@61e1b66) linux: 5.6-rc5 -> 5.6-rc7
* [`48c7203e`](NixOS/nixpkgs@48c7203) linux_testing: 5.6-rc7 -> 5.7-rc2
* [`760436a0`](NixOS/nixpkgs@760436a) linux: 5.7-rc2 -> 5.7-rc3
* [`392f8e12`](NixOS/nixpkgs@392f8e1) linux: 5.7-rc3 -> 5.7-rc4
* [`62c2df45`](NixOS/nixpkgs@62c2df4) linux: 5.7-rc4 -> 5.7-rc6
* [`86a96898`](NixOS/nixpkgs@86a9689) linux_5_7: init at 5.7.1
* [`e268676f`](NixOS/nixpkgs@e268676) linux: fix kernel config options for 5.7
* [`1bc943ec`](NixOS/nixpkgs@1bc943e) linux: 5.7.1 -> 5.7.2
* [`18253518`](NixOS/nixpkgs@1825351) linux: 5.7-rc6 -> 5.8-rc1
* [`979b757b`](NixOS/nixpkgs@979b757) linux: 5.7.2 -> 5.7.3
* [`58f3e7b8`](NixOS/nixpkgs@58f3e7b) linux: 5.7.3 -> 5.7.4
* [`13c15f26`](NixOS/nixpkgs@13c15f2) buildGoModule: remove strictDeps
* [`9c42eb70`](NixOS/nixpkgs@9c42eb7) gitea: 1.11.6 -> 1.11.8
* [`d30ddfda`](NixOS/nixpkgs@d30ddfd) moodle: 3.8.2 -> 3.8.3
* [`86810c46`](NixOS/nixpkgs@86810c4) ansible: v2.9.9 -> v2.9.10
* [`7d1c0e70`](NixOS/nixpkgs@7d1c0e7) ansible: add myself as maintainer
* [`f9fd435a`](NixOS/nixpkgs@f9fd435) qemu: patch CVE-2020-1711
* [`348503b6`](NixOS/nixpkgs@348503b) Update nixUnstable and nixFlakes
* [`df3bafff`](NixOS/nixpkgs@df3baff) lxqt.pcmanfm-qt: fix default wallpaper
* [`c078dab3`](NixOS/nixpkgs@c078dab) nomachine-client: 6.10.12 -> 6.11.2
* [`1fb5b2cc`](NixOS/nixpkgs@1fb5b2c) riot-web: 1.6.5 -> 1.6.6
* [`39da4240`](NixOS/nixpkgs@39da424) riot-desktop: 1.6.5 -> 1.6.6
* [`4a38da50`](NixOS/nixpkgs@4a38da5) linux: 5.4.46 -> 5.4.47
* [`abd7eb85`](NixOS/nixpkgs@abd7eb8) linux: 4.14.184 -> 4.14.185
* [`779f7018`](NixOS/nixpkgs@779f701) linux: 4.19.128 -> 4.19.129
* [`de5c1423`](NixOS/nixpkgs@de5c142) linux: 4.4.227 -> 4.4.228
* [`907e1ae7`](NixOS/nixpkgs@907e1ae) linux: 4.9.227 -> 4.9.228
* [`b3dcc2bf`](NixOS/nixpkgs@b3dcc2b) linux: 5.4.47 -> 5.4.48
* [`390742eb`](NixOS/nixpkgs@390742e) qgis: 3.10.4 -> 3.10.7
* [`78e2687d`](NixOS/nixpkgs@78e2687) mp4v2: 2.0.0 -> 4.1.3
* [`91881715`](NixOS/nixpkgs@9188171) curl: 7.68.0 -> 7.69.1
* [`f1693d6c`](NixOS/nixpkgs@f1693d6) curl: 7.69.1 -> 7.70.0
* [`2599ba38`](NixOS/nixpkgs@2599ba3) pcre: 8.43 -> 8.44
* [`039c3c9e`](NixOS/nixpkgs@039c3c9) curl: apply patches for CVE-2020-8169 and CVE-2020-8177
* [`6460602e`](NixOS/nixpkgs@6460602) gns3-gui: Add the missing qt5Full runtime dependency
* [`1b9ed4ff`](NixOS/nixpkgs@1b9ed4f) chromium: 83.0.4103.106 -> 83.0.4103.116
* [`f2cdade6`](NixOS/nixpkgs@f2cdade) texlive: fix build for scheme-infraonly
* [`f8248ab6`](NixOS/nixpkgs@f8248ab) hydra-unstable: 2020-06-01 -> 2020-06-23
* [`29f44d00`](NixOS/nixpkgs@29f44d0) wolfssl: v4.3.0 -> v4.4.0
* [`ec75f825`](NixOS/nixpkgs@ec75f82) openssh: don’t include fido2 on musl
* [`4f0e4023`](NixOS/nixpkgs@4f0e402) django: update version 2.2.10 to 2.2.11
* [`f31e6027`](NixOS/nixpkgs@f31e602) pythonPackages.django2_2: 2.2.11 -> 2.2.13
* [`6da23f10`](NixOS/nixpkgs@6da23f1) php: 7.2.29 -> 7.2.31, 7.3.16 -> 7.3.19, 7.4.6 -> 7.4.7
* [`b879e5a0`](NixOS/nixpkgs@b879e5a) linux: 5.4.48 -> 5.4.49
* [`c1f9fb3e`](NixOS/nixpkgs@c1f9fb3) linux: 5.7.4 -> 5.7.5
* [`46c4fbd6`](NixOS/nixpkgs@46c4fbd) linux: 5.7.5 -> 5.7.6
* [`05c44414`](NixOS/nixpkgs@05c4441) libtomcrypt: fix CVE-2019-17362 (security)
* [`3c24d548`](NixOS/nixpkgs@3c24d54) wordpress: 5.3.3 -> 5.3.4
* [`4c8a1df3`](NixOS/nixpkgs@4c8a1df) wordpress: add passthru.tests
* [`0ba9fdc1`](NixOS/nixpkgs@0ba9fdc) rtl8821ce: 5.2.5_1.26055.20180108 -> 5.5.2_34066.20200325
* [`81ddbc41`](NixOS/nixpkgs@81ddbc4) signal-desktop: 1.34.2 -> 1.34.3
* [`ee774dba`](NixOS/nixpkgs@ee774db) linux: 4.14.185 -> 4.14.186
* [`cce092c1`](NixOS/nixpkgs@cce092c) linux: 4.19.129 -> 4.19.130
* [`bf210d80`](NixOS/nixpkgs@bf210d8) ceph: apply patch for CVE-2020-10753
* [`0dde2ec1`](NixOS/nixpkgs@0dde2ec) neomutt: 20200619 -> 20200626
* [`43b480d8`](NixOS/nixpkgs@43b480d) cargo-make: 0.31.0 -> 0.31.1
* [`5b5b3176`](NixOS/nixpkgs@5b5b317) linuxPackages.wireguard: 1.0.20200611 -> 1.0.20200623
* [`ae6ebbec`](NixOS/nixpkgs@ae6ebbe) nvidia_x11.legacy_340: 340.107 -> 340.108
* [`f23eee9c`](NixOS/nixpkgs@f23eee9) nvidia_x11.legacy_390: 390.132 -> 390.138
* [`69cce691`](NixOS/nixpkgs@69cce69) nvidia_x11: 440.82 -> 440.100
* [`8fbacd2c`](NixOS/nixpkgs@8fbacd2) libvncserver: 0.9.12 -> 0.9.13 (security)
* [`40eaa8fb`](NixOS/nixpkgs@40eaa8f) sysdig: 0.26.5 -> 0.26.6
* [`20c43300`](NixOS/nixpkgs@20c4330) linuxPackages.sysdig: 0.26.6 -> 0.26.7
* [`63bd666c`](NixOS/nixpkgs@63bd666) keepassxc: 2.5.2 -> 2.5.4
* [`0c486cfa`](NixOS/nixpkgs@0c486cf) docker: 19.03.11 -> 19.03.12
* [`b3d20c3d`](NixOS/nixpkgs@b3d20c3) docker: use git tags instead of revs
* [`0c74b2f4`](NixOS/nixpkgs@0c74b2f) kubernetes: 1.17.5 -> 1.17.8
* [`c5299e9d`](NixOS/nixpkgs@c5299e9) linux_latest-libre: 17402 -> 17537
* [`062362bd`](NixOS/nixpkgs@062362b) epson-escpr2: 1.1.12 -> 1.1.13
* [`11b5bde1`](NixOS/nixpkgs@11b5bde) riot-desktop: 1.6.6 -> 1.6.7
* [`560e3b7d`](NixOS/nixpkgs@560e3b7) riot-web: 1.6.6 -> 1.6.7
* [`9e30519c`](NixOS/nixpkgs@9e30519) nomad: 0.10.2 -> 0.10.5
* [`ec3103e3`](NixOS/nixpkgs@ec3103e) openafs_1_8: 1.8.5 -> 1.8.6
* [`30fb4e1e`](NixOS/nixpkgs@30fb4e1) linux: 5.8-rc1 -> 5.8-rc2
* [`a1a8e7b0`](NixOS/nixpkgs@a1a8e7b) vault: 1.3.2 -> 1.3.6
* [`0023aaef`](NixOS/nixpkgs@0023aae) lorri: 1.0 -> 1.1
* [`214d063d`](NixOS/nixpkgs@214d063) yaru-theme: fix NixOS/nixpkgs#91710
* [`630c219e`](NixOS/nixpkgs@630c219) targetcli: 2.1.51 -> 2.1.53
* [`065fd73d`](NixOS/nixpkgs@065fd73) linux: 4.14.186 -> 4.14.187
* [`b91ee380`](NixOS/nixpkgs@b91ee38) linux: 4.19.130 -> 4.19.131
* [`17d2195b`](NixOS/nixpkgs@17d2195) linux: 4.4.228 -> 4.4.229
* [`ead3c71b`](NixOS/nixpkgs@ead3c71) linux: 4.9.228 -> 4.9.229
* [`bf59e152`](NixOS/nixpkgs@bf59e15) linux: 5.4.49 -> 5.4.50
* [`9a3e34ae`](NixOS/nixpkgs@9a3e34a) linux: 5.7.6 -> 5.7.7
* [`b1a39c0e`](NixOS/nixpkgs@b1a39c0) [20.03] ceph: 14.2.9 -> 14.2.10
* [`b5120fe6`](NixOS/nixpkgs@b5120fe) sane-backends: 1.0.28 -> 1.0.30
* [`e1afc39b`](NixOS/nixpkgs@e1afc39) libreswan: 3.31 -> 3.32
* [`d695d9bd`](NixOS/nixpkgs@d695d9b) freerdp: 2.1.0 -> 2.1.1
* [`ba7a81a0`](NixOS/nixpkgs@ba7a81a) freerdp: 2.1.1 -> 2.1.2
* [`4d9dcce8`](NixOS/nixpkgs@4d9dcce) owncloud-client: add libsecret dependency
* [`83659411`](NixOS/nixpkgs@8365941) matrix-synapse: 1.15.1 -> 1.15.2 [security]
* [`e497cff1`](NixOS/nixpkgs@e497cff) postfix: 3.4.13 -> 3.4.14 (NixOS/nixpkgs#91772)
* [`c2eca910`](NixOS/nixpkgs@c2eca91) graylog: 3.3.1 -> 3.3.2
* [`f761c14f`](NixOS/nixpkgs@f761c14) nixos/test-driver: Specify /bin/sh shell when running a bourne shell script as the user
* [`5f739b61`](NixOS/nixpkgs@5f739b6) teams: 1.3.00.958 -> 1.3.00.5153
* [`97f81818`](NixOS/nixpkgs@97f8181) teams: 1.3.00.5152 -> 1.3.00.16851
* [`519151fd`](NixOS/nixpkgs@519151f) mautrix-whatsapp: 0.1.1 -> 0.1.2
* [`75e0bd3a`](NixOS/nixpkgs@75e0bd3) mattermost-desktop: 4.3.1 -> 4.5.0
* [`88b7aedd`](NixOS/nixpkgs@88b7aed) ell: 0.31 -> 0.32
* [`afa9ca61`](NixOS/nixpkgs@afa9ca6) iwd: 1.7 -> 1.8
* [`b705ed44`](NixOS/nixpkgs@b705ed4) firefox-bin: 77.0.1 -> 78.0.1 (PR NixOS/nixpkgs#92043)
* [`be007538`](NixOS/nixpkgs@be00753) firefox-beta-bin: 76.0b8 -> 79.0b2 (PR NixOS/nixpkgs#92043)
* [`b008a050`](NixOS/nixpkgs@b008a05) firefox-esr-68: 68.9.0esr -> 68.10.0esr (PR NixOS/nixpkgs#92043)
* [`74f2559a`](NixOS/nixpkgs@74f2559) crispyDoom: fixed CVE-2020-14983 (NixOS/nixpkgs#92358)
* [`1d56d73a`](NixOS/nixpkgs@1d56d73) roundcube: 1.4.6 -> 1.4.7
github-actions bot added a commit to pbogdan/nix-hie that referenced this pull request Jul 7, 2020
@github-actions
niv stable: update afa9ca61 -> 41aa2272
f5b0f2d 
## Motivation

Dependencies should be up to date.

## Changelog for stable:
Commits: [NixOS/nixpkgs@afa9ca61...41aa2272](NixOS/nixpkgs@afa9ca6...41aa227)

* [`7ccfe75b`](NixOS/nixpkgs@7ccfe75) tendermint: 0.32.3 -> 0.32.10
* [`b705ed44`](NixOS/nixpkgs@b705ed4) firefox-bin: 77.0.1 -> 78.0.1 (PR NixOS/nixpkgs#92043)
* [`be007538`](NixOS/nixpkgs@be00753) firefox-beta-bin: 76.0b8 -> 79.0b2 (PR NixOS/nixpkgs#92043)
* [`b008a050`](NixOS/nixpkgs@b008a05) firefox-esr-68: 68.9.0esr -> 68.10.0esr (PR NixOS/nixpkgs#92043)
* [`74f2559a`](NixOS/nixpkgs@74f2559) crispyDoom: fixed CVE-2020-14983 (NixOS/nixpkgs#92358)
* [`1d56d73a`](NixOS/nixpkgs@1d56d73) roundcube: 1.4.6 -> 1.4.7
@github-actions github-actions bot mentioned this pull request Jul 7, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
1.severity: security 10.rebuild-darwin: 1-10 10.rebuild-darwin: 1 10.rebuild-linux: 1-10 10.rebuild-linux: 1
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@danieldk @veprbl @neonfuz