mirror of
https://github.com/NixOS/nixpkgs.git
synced 2025-11-10 01:33:11 +01:00
76b41b119e
See https://github.com/NixOS/nixpkgs/pull/312251#issuecomment-3416076466 I think it's frankly careless to merge something into nixpkgs that's two patch-releases behind the current patch-level of the _legacy branch_ of a software. Especially for security-sensitive things. On top, this got never updated even though there are two high-rated CVEs in this, i.e. CVE-2025-27773[1] and CVE-2024-52596[2]. [1] https://github.com/advisories/GHSA-46r4-f8gj-xg56 [2] https://github.com/advisories/GHSA-2x65-fpch-2fcm |
||
|---|---|---|
| .. | ||
| release-notes.md | ||
| rl-1310.section.md | ||
| rl-1404.section.md | ||
| rl-1412.section.md | ||
| rl-1509.section.md | ||
| rl-1603.section.md | ||
| rl-1609.section.md | ||
| rl-1703.section.md | ||
| rl-1709.section.md | ||
| rl-1803.section.md | ||
| rl-1809.section.md | ||
| rl-1903.section.md | ||
| rl-1909.section.md | ||
| rl-2003.section.md | ||
| rl-2009.section.md | ||
| rl-2105.section.md | ||
| rl-2111.section.md | ||
| rl-2205.section.md | ||
| rl-2211.section.md | ||
| rl-2305.section.md | ||
| rl-2311.section.md | ||
| rl-2405.section.md | ||
| rl-2411.section.md | ||
| rl-2505.section.md | ||
| rl-2511.section.md | ||