New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[18.03] procps-ng: 3.3.12 -> 3.3.15 #41326
Conversation
No attempt on x86_64-darwin (full log) The following builds were skipped because they don't evaluate on x86_64-darwin: procps-ng Partial log (click to expand)
|
Failure on aarch64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
Failure on x86_64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
413a3a2
to
8e6d4fb
Compare
No attempt on x86_64-darwin (full log) The following builds were skipped because they don't evaluate on x86_64-darwin: procps-ng Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
Thank you. |
This doesn't fix all the security issues, does it? https://www.freelists.org/post/procps/Procps-3315-Security-Update This kind of change can go directly to 18.03 – it's a few thousand rebuilds but security... |
We'd probably have to bump it from 3.3.12 -> 3.3.15 to include all fixes. Easy to do, no extra patches required, but at a higher risk of breakage. |
8e6d4fb
to
589636a
Compare
I get some strange download problem
|
No attempt on x86_64-darwin (full log) The following builds were skipped because they don't evaluate on x86_64-darwin: procps-ng Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: procps-ng Partial log (click to expand)
|
The download seems to work again. Probably should be fine. At least master will have the same problem, because it uses the same url. |
OK, let's wait a while for this version on master/staging; Hydra is overwhelmed ATM anyway. |
Motivation for this change
fix CVE-2018-1124 and others
Things done
sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)cc #41324 @xeji