From: "Michał Górny" <mgorny@gentoo.org>
To: gentoo-dev@lists.gentoo.org
Subject: Re: [gentoo-dev] Update on the 23.0 profiles
Date: Sun, 07 Apr 2024 16:48:12 +0200 [thread overview]
Message-ID: <a99a71cb6a8751a2d303dbe732a6a3d617043ea7.camel@gentoo.org> (raw)
In-Reply-To: <c90efee4eca8cbca4731a10392d480c1b5ba950c.camel@gentoo.org>
[-- Attachment #1: Type: text/plain, Size: 800 bytes --]
On Sun, 2024-04-07 at 08:51 -0400, Michael Orlitzky wrote:
> On Sun, 2024-04-07 at 14:35 +0200, Andreas K. Huettel wrote:
> >
> > Uhh, I dont really remember, I think some Chinese-sounding guy asked
> > me for it... (j/k)
>
> It is remarkably bad timing. How it looks: Gentoo's response to the xz
> incident is to have me rebuild my entire system with everything that
> could possibly be linked to liblzma, linked to liblzma. Even on the
> hardened profiles, and with no easy way to prevent it.
So, what you're basically saying, is that the best Gentoo response right
now would be to frantically remove LZMA support everywhere? I'm sure
that would be so much better than our response of masking vulnerable
versions and issuing a statement.
--
Best regards,
Michał Górny
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 512 bytes --]
next prev parent reply other threads:[~2024-04-07 14:48 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-04-06 15:06 [gentoo-dev] Update on the 23.0 profiles Andreas K. Huettel
2024-04-07 2:03 ` Michael Orlitzky
2024-04-07 12:35 ` Andreas K. Huettel
2024-04-07 12:51 ` Michael Orlitzky
2024-04-07 13:07 ` Andreas K. Huettel
2024-04-08 6:40 ` [gentoo-dev] " Duncan
2024-04-08 12:00 ` [gentoo-dev] " Michael Orlitzky
2024-04-08 15:16 ` Eddie Chapman
2024-04-07 14:48 ` Michał Górny [this message]
2024-04-07 21:09 ` Michael Orlitzky
2024-04-08 0:22 ` Alex Boag-Munroe
2024-04-08 3:07 ` Michał Górny
2024-04-07 11:35 ` Florian Schmaus
2024-04-07 12:31 ` [gentoo-dev] " Madhu
2024-04-07 13:27 ` Andreas K. Huettel
2024-04-11 16:37 ` [gentoo-dev] " Madhu
2024-04-07 12:32 ` [gentoo-dev] " Andreas K. Huettel
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=a99a71cb6a8751a2d303dbe732a6a3d617043ea7.camel@gentoo.org \
--to=mgorny@gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox