nixpkgs

History

edef 09325d24b6 nixos/security/wrappers: use musl rather than glibc and explicitly unset insecure env vars This mitigates CVE-2023-4911, crucially without a mass-rebuild. We drop insecure environment variables explicitly, including glibc-specific ones, since musl doesn't do this by default. Change-Id: I591a817e6d4575243937d9ccab51c23a96bed6f9		2023-10-05 22:04:05 +00:00
..
acme	nixos/acme: rename option credentialsFile to environmentFile	2023-09-11 16:34:20 +00:00
apparmor	nixos/apparmor: support custom i18n glibc locales	2023-07-12 21:38:31 +02:00
wrappers	nixos/security/wrappers: use musl rather than glibc and explicitly unset insecure env vars	2023-10-05 22:04:05 +00:00
apparmor.nix
audit.nix
auditd.nix
ca.nix
chromium-suid-sandbox.nix
dhparams.nix
doas.nix
duosec.nix
google_oslogin.nix
ipa.nix	treewide: stop using types.string	2023-08-08 21:31:21 +08:00
lock-kernel-modules.nix
misc.nix
oath.nix
pam_mount.nix
pam_usb.nix
pam.nix	nixos/pam: fix typo in fscrypt enable option	2023-09-11 12:06:39 +02:00
please.nix
polkit.nix
rngd.nix
rtkit.nix
sudo-rs.nix	nixos/sudo-rs: add crossCompile 'fix'	2023-09-22 15:14:14 +02:00
sudo.nix	nixos/sudo: revert sudo-rs `922926cfbc` (partial #253876 )	2023-09-22 15:13:56 +02:00
systemd-confinement.nix
tpm2.nix

No results found.