mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-25 03:17:13 +00:00
Code Issues Wiki Activity
292647 commits 204 branches 125 tags 10 GiB
Commit graph

292647 commits

This branch
This branch
All branches
Author SHA1 Message Date
Martin Weinelt 724ed08df0
nixos/wordpress: regenerate secret keys if misspelled key name is found 
A secret key generated by the nixos module was misspelled, which could
possibly impact the security of session cookies.

To recover from this situation we will wipe all security keys that were
previously generated by the NixOS module, when the misspelled one is
found. This will result in all session cookies being invalidated. This
is confirmed by the wordpress documentation:

> You can change these at any point in time to invalidate all existing
> cookies. This does mean that all users will have to login again.

https://wordpress.org/support/article/editing-wp-config-php/#security-keys

Meanwhile this issue shouldn't be too grave, since the salting function
of wordpress will rely on the concatenation of both the user-provided
and automatically generated values, that are stored in the database.

> Secret keys are located in two places: in the database and in the
> wp-config.php file. The secret key in the database is randomly
> generated and will be appended to the secret keys in wp-config.php.

https://developer.wordpress.org/reference/functions/wp_salt/

Fixes: 2adb03fdae ("nixos/wordpress:
generate secrets locally")

Reported-by: Moritz Hedtke <Moritz.Hedtke@t-online.de>
 2021-05-29 04:24:42 +02:00
Fabian Affolter acf171303e
Merge pull request #124744 from r-ryantm/auto-update/cbonsai 
cbonsai: 1.0.4 -> 1.1.1
 2021-05-28 23:45:42 +02:00
Fabian Affolter 18583884a5
Merge pull request #124761 from r-ryantm/auto-update/exploitdb 
exploitdb: 2021-05-22 -> 2021-05-26
 2021-05-28 23:02:04 +02:00
Pavol Rusnak 4141877804
Merge pull request #124795 from TredwellGit/electron 
Update Electron
 2021-05-28 22:54:02 +02:00
Fabian Affolter fe9f49ec56 home-assistant: enable roon tests 2021-05-28 13:38:20 -07:00
Fabian Affolter 0aa2c0c6a3 home-assistant: update component-packages 2021-05-28 13:38:20 -07:00
Fabian Affolter 16fc720da3 python3Packages.pyroon: init at 0.0.37 2021-05-28 13:38:20 -07:00
Maximilian Bosch 68011a2494
Merge pull request #124764 from 0x4A6F/master-promscale 
promscale: 0.3.0 -> 0.4.1
 2021-05-28 22:33:53 +02:00
Maximilian Bosch bf10de7690
Merge pull request #124742 from r-ryantm/auto-update/cargo-deb 
cargo-deb: 1.29.2 -> 1.30.0
 2021-05-28 22:29:15 +02:00
Maximilian Bosch 6ec090d868
Merge pull request #124748 from fabaff/bump-ugrep 
ugrep: 3.1.7 -> 3.2.2
 2021-05-28 22:22:38 +02:00
Ryan Mulligan b8f0e1d87e
Merge pull request #124459 from r-ryantm/auto-update/goreleaser 
goreleaser: 0.165.0 -> 0.166.0
 2021-05-28 13:22:25 -07:00
Maximilian Bosch 9ffd1e0413
Merge pull request #124739 from SFrijters/doc-fetchpatch 
doc/coding-conventions: Add documentation for fetchpatch optional arguments
 2021-05-28 22:13:11 +02:00
Maximilian Bosch 190d0579fb
Merge pull request #124790 from baloo/baloo/diffoscope/176 
diffoscope: 175 -> 176
 2021-05-28 21:35:09 +02:00
Maximilian Bosch 21cc0bc652
Merge pull request #124121 from LeSuisse/libreoffice-still-7.0.6.2 
libreoffice-still: 7.0.4.2 -> 7.0.6.2
 2021-05-28 21:22:05 +02:00
TredwellGit f8fbfa538b electron_10: 10.4.5 -> 10.4.7 
https://github.com/electron/electron/releases/tag/v10.4.6
https://github.com/electron/electron/releases/tag/v10.4.7
 2021-05-28 19:20:08 +00:00
TredwellGit 505298f812 electron_11: 11.4.6 -> 11.4.7 
https://github.com/electron/electron/releases/tag/v11.4.7
 2021-05-28 19:20:06 +00:00
TredwellGit a0426609c8 electron_12: 12.0.7 -> 12.0.9 
https://github.com/electron/electron/releases/tag/v12.0.8
https://github.com/electron/electron/releases/tag/v12.0.9
 2021-05-28 19:20:03 +00:00
TredwellGit d6cbf3a701 electron_13: init at 13.0.1 
https://github.com/electron/electron/releases/tag/v13.0.0
https://github.com/electron/electron/releases/tag/v13.0.1
 2021-05-28 19:19:57 +00:00
fortuneteller2k f451461e9d fetchutils: remove DESTDIR, use PREFIX, change owner 2021-05-28 11:57:06 -07:00
Arthur Gautier fd2e675e7c diffoscope: 175 -> 176 
Signed-off-by: Arthur Gautier <baloo@superbaloo.net>
 2021-05-28 18:54:51 +00:00
Guillaume Girol c04a5dea73
Merge pull request #124703 from evils/element-wayland 
Revert "element-desktop: set dbus default for firefox"
 2021-05-28 18:44:27 +00:00
Domen Kožar 25e34de487
Merge pull request #124754 from domenkozar/patray 
Patray: Yet another tray pulseaudio frontend
 2021-05-28 20:43:05 +02:00
Domen Kožar 4758dd4814
patray: Yet another tray pulseaudio frontend 2021-05-28 20:41:22 +02:00
Domen Kožar 184b453090
pythonPackages.google-api-python-client: 2.0.2 -> 2.6.0 2021-05-28 20:41:19 +02:00
Domen Kožar 45c81a11c2
Merge pull request #124760 from domenkozar/backport-permission-fix 
Backport action: permission fix
 2021-05-28 20:40:59 +02:00
Sandro 1b9699931c
Merge pull request #123644 from michaeladler/update-sanoid 2021-05-28 20:36:26 +02:00
Nikolay Korotkiy c79e3ded4b gmnisrv: fix security vulnerability 2021-05-28 20:28:20 +02:00
Mark Vainomaa ad256a077b docker: bump runc to 1.0-rc95, fixing CVE-2021-30465 2021-05-28 11:28:02 -07:00
Mark Vainomaa beab9f0322 docker: use commit hashes instead of tags, fix containerd sha256 2021-05-28 11:28:02 -07:00
Mark Vainomaa 8baf7189b0 docker: drop unused argument, use pname instead of name 2021-05-28 11:28:02 -07:00
Mark Vainomaa 9868aa6050 docker: 20.10.2 -> 20.10.6 2021-05-28 11:28:02 -07:00
Mark Vainomaa 5826e90206 dnsname-cni: init at 1.1.1 2021-05-28 11:27:06 -07:00
Reed 24507d7346 nq: fix tq 2021-05-28 11:24:52 -07:00
Mark Vainomaa 2980b1c4f4 imgcrypt: init at 1.1.1 2021-05-28 11:22:14 -07:00
Mark Vainomaa f830b000fc maintainers: add mikroskeem 2021-05-28 11:22:14 -07:00
Maximilian Bosch 992d5ce56f
Merge pull request #124190 from Mic92/rspamd 
rspamd: enable pie
 2021-05-28 20:10:37 +02:00
Fabián Heredia Montiel cc855b1331 pgsync: 0.6.6 → 0.6.7 2021-05-28 11:01:39 -07:00
Ethan Edwards d1fe6418cc piston-cli: 1.3.0 -> 1.4.1 2021-05-28 10:58:15 -07:00
Antoine R. Dumont (@ardumont) 38cfb84ff0 mediatomb/gerbera: Add release note information for 21.03 
Note that it made into 2 entries, one about new options in the first section.
Another in the breaking compatibility section due to the openFirewall option
which changes the behavior.

Co-authored-by: schmittlauch <t.schmittlauch+nixos@orlives.de>
 2021-05-28 10:56:19 -07:00
Martin Weinelt 299451e424
Merge pull request #124516 from mohe2015/update/wordpress 
wordpress: 5.7.1 -> 5.7.2
 2021-05-28 19:18:48 +02:00
Ryan Mulligan 9b0647f93b
Merge pull request #124769 from r-ryantm/auto-update/gnome-shell-extension-freon 
gnomeExtensions.freon: 40 -> 44
 2021-05-28 09:54:18 -07:00
Fabian Affolter c2247d37ec
Merge pull request #124763 from 0x4A6F/master-zellij 
zellij: 0.12.0 -> 0.12.1
 2021-05-28 18:49:02 +02:00
Wout Mertens d0063d5aff
Merge pull request #124563 from acowley/handbrake-ffmpeg-4_4 
handbrake: fix audio when linking with ffmpeg-4.4
 2021-05-28 18:27:51 +02:00
R. RyanTM 1e4c81cc69 gnomeExtensions.freon: 40 -> 44 2021-05-28 15:57:52 +00:00
0x4A6F 5cd69bbe7c
promscale: 0.3.0 -> 0.4.1 2021-05-28 17:21:10 +02:00
0x4A6F ab2e8afb29
zellij: 0.12.0 -> 0.12.1 2021-05-28 17:01:58 +02:00
Ryan Mulligan 7c3a6621a4
Merge pull request #124725 from r-ryantm/auto-update/exoscale-cli 
exoscale-cli: 1.29.0 -> 1.30.0
 2021-05-28 07:57:04 -07:00
R. RyanTM 698d79fd76 exploitdb: 2021-05-22 -> 2021-05-26 2021-05-28 14:41:21 +00:00
Domen Kožar 9a80dbab1f
backport: trigger also if label is set after the merge 2021-05-28 16:36:02 +02:00
Domen Kožar 95fa2dda18
backport: set correct permissions 2021-05-28 16:35:13 +02:00