New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
xorg.libX11: 1.6.8 -> 1.6.12 (CVE-2020-14363, CVE-2020-14344) #99158
Conversation
Considering this is |
cd4fe95
to
3e07983
Compare
Ugh! Is there a way to rebase without having GitHub erroneously request review? |
You have to time it just right, I did it once. But never since. I usually close and open up another PR. However, most codeowners are used to it now |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Sounds unlikely to break anything. I glanced at the announcements and built many packages depending on it. There are no API/ABI changes.
I'm not sure what we should do about stable releases, though (the same or just patch CVEs or ...).
My review was requested, |
Trying more NixOS rebuilds seems unlikely to help. Perhaps darwin but that's harder to get. |
(cherry picked from commit b623690) I trust this is regression-free with sufficient probability. https://lists.x.org/archives/xorg-announce/2020-August/003056.html https://lists.x.org/archives/xorg-announce/2020-July/003050.html
Motivation for this change
https://lists.x.org/archives/xorg-announce/2020-August/003056.html
https://lists.x.org/archives/xorg-announce/2020-July/003050.html
Fixes CVE-2020-14363 and CVE-2020-14344.
Things done
sandbox
innix.conf
on non-NixOS linux)