guix/guix
3
5
Fork 0
mirror of git://git.savannah.gnu.org/guix.git synced 2023-12-14 03:33:07 +01:00
Code Issues Releases Wiki Activity

news: Update erratum for '--keep-failed' vulnerability.

Browse source 
* etc/news.scm: Change commit to behave in a (hopefully) more expected
manner.  Change http:// to https:// URL whilst here.
This commit is contained in:
Tobias Geerinckx-Rice 2021-03-18 22:13:52 +01:00
parent f62633a527
commit 79f9091b0f
No known key found for this signature in database
GPG key ID: 0DB0FF884F556D79
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
etc/news.scm
View file

@ -20,7 +20,7 @@
(channel-news
(version 0)
(entry (commit "ec7fb669945bfb47c5e1fdf7de3a5d07f7002ccf")
(entry (commit "9ade2b720af91acecf76278b4d9b99ace406781e")
(title
(en "Update on previous @command{guix-daemon} local privilege escalation"))
(body
@ -33,7 +33,7 @@ This is not entirely correct. Exploiting the bug on such systems is harder,
but not impossible. To avoid unpleasant surprises, all users are advised to
upgrade @command{guix-daemon}. Run @command{info \"(guix) Upgrading Guix\"}
for info on how to do that. See
@uref{http://guix.gnu.org/en/blog/2021/risk-of-local-privilege-escalation-via-guix-daemon/}
@uref{https://guix.gnu.org/en/blog/2021/risk-of-local-privilege-escalation-via-guix-daemon/}
for more information on this bug.")))
(entry (commit "ec7fb669945bfb47c5e1fdf7de3a5d07f7002ccf")