On Sat, Jan 30, 2016 at 04:20:50PM -0500, Leo Famulari wrote:
> I set out to apply the fix for CVE-2016-1867 to jasper and found that
> our package had many unpatched CVEs dating back to 2008 [0].
When this is pushed, I will have to remember to add copyright
attribution for myself. I forgot to inc
Here are the slides for my talk today:
* “A gentle introduction to functional package management with GNU Guix”
https://fosdem.org/2016/schedule/event/guix/attachments/slides/1073/export/events/attachments/guix/slides/1073/rekado_guix_intro_slides.pdf
And here are the slides for tomorrow’s tal
I set out to apply the fix for CVE-2016-1867 to jasper and found that
our package had many unpatched CVEs dating back to 2008 [0].
Most of these patches are copied from Fedora [1] but the patch for
CVE-2016-1867 is copied from SUSE [2].
I copied one non-CVE patch from Fedora because the patch for
* gnu/packages/patches/jasper-CVE-2008-3520.patch,
gnu/packages/patches/jasper-CVE-2011-4516-and-CVE-2011-4517.patch,
gnu/packages/patches/jasper-CVE-2014-8137.patch,
gnu/packages/patches/jasper-CVE-2014-8138.patch,
gnu/packages/patches/jasper-CVE-2014-8157.patch,
gnu/packages/patches/jasper-CVE-20
On Sat, Jan 30, 2016 at 05:32:28PM +0100, Pjotr Prins wrote:
> Slides of our talk
>
> Foreign packages in GNU Guix, Examples from Ruby gems, Python modules and
> R/CRAN
> by Pjotr Prins & David Thompson, FOSDEM, January 30th, 2016
>
> https://fosdem.org/2016/schedule/event/guixmodules/attachment
Slides of our talk
Foreign packages in GNU Guix, Examples from Ruby gems, Python modules and R/CRAN
by Pjotr Prins & David Thompson, FOSDEM, January 30th, 2016
https://fosdem.org/2016/schedule/event/guixmodules/attachments/slides/1035/export/events/attachments/guixmodules/slides/1035/slides.pdf
