Have ya'll seen the news about the openssh vulnerablity?

Heyo, Have you all seen this new openssh vulnerability? Is guix affected? https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server Thanks, Joshua

Re: Codifying/Documenting Guix commit message conventions?

Hi Liliana, Liliana Marie Prikler writes: > Am Samstag, dem 29.06.2024 um 21:11 -0400 schrieb Maxim Cournoyer: >> Hi Liliana, >> >> Liliana Marie Prikler writes: >> > I think we should use a "Fixes: [short description] " footer >> > for both Guix and upstream bugs, that can easily be parsed –

[PATCH] gnu: ci: Cross-build for fewer platforms.

* gnu/ci.scm (%dead-platform-triplets): New variable. (cross-jobs): Also don't build for systems listed in %dead-platform-triplets. Change-Id: Ic31ae6d307f2d243c098ec050bdb9d09060466ac --- gnu/ci.scm | 8 1 file changed, 8 insertions(+) diff --git a/gnu/ci.scm b/gnu/ci.scm index 95c6306

Re: Have ya'll seen the news about the openssh vulnerablity?

Hi Joshua, On Mon, Jul 01 2024, jbra...@dismail.de wrote: > Is guix affected? Yes, our version is affected. While the vulnerability is "critical," however, the note also states that the exploit has not yet been demostrated on 64-bit systems, which are the most common today. Also, this release

Re: Proposal: nss updates

Hi Maxim, Maxim Cournoyer writes: Hi Ian, Ian Eure writes: [...] Concretely: The current nss package should stay how it is. When the next ESR happens, it should update to that (ungrafting nss at the same time), and track ESR releases only from that point forward. I don’t think it wo

Re: Proposal: nss updates

Hi Ian, On Mon, Jul 01 2024, Ian Eure wrote: > if you have strong feelings about -next vs. -latest How about nss-rapid? It provides the clue about what was packaged to someone who knows libnss. Kind regards Felix

Re: Codifying/Documenting Guix commit message conventions?

Hi Maxim, Maxim Cournoyer writes: > Would someone be available/motivated to prepare a patch with these new > suggested guidelines, added to our 'Contributing' section? Heads up to all that I plan on taking a crack at this as time allows (hopefully a week or so). If anyone starts on it first fe

Re: Proposal: nss updates

Felix Lechner writes: Hi Ian, On Mon, Jul 01 2024, Ian Eure wrote: if you have strong feelings about -next vs. -latest How about nss-rapid? It provides the clue about what was packaged to someone who knows libnss. I like it. I’ll update the package descriptions to make this clear

Re: Proposal: nss updates

Hi, Ian Eure writes: > Felix Lechner writes: > >> Hi Ian, >> >> On Mon, Jul 01 2024, Ian Eure wrote: >> >>> if you have strong feelings about -next vs. -latest >> >> How about nss-rapid? It provides the clue about what was packaged >> to >> someone who knows libnss. >> > > I like it. I’ll upd

Re: Codifying/Documenting Guix commit message conventions?

Hi Richard, Richard Sent writes: > Hi Maxim, > > Maxim Cournoyer writes: > >> Would someone be available/motivated to prepare a patch with these new >> suggested guidelines, added to our 'Contributing' section? > > Heads up to all that I plan on taking a crack at this as time allows > (hopefull