diff options
| author | Vladimír Čunát <v@cunat.cz> | 2023-05-13 19:23:59 +0200 |
|---|---|---|
| committer | Vladimír Čunát <v@cunat.cz> | 2023-05-13 19:23:59 +0200 |
| commit | 1ba92fc952861092e46d708634eab59cf728e399 (patch) | |
| tree | 514966c1a2091c5e75386737aa93d4f3348adb7f /pkgs/top-level | |
| parent | 51e24f4508ee56c893203a79473c48d984874f28 (diff) | |
| parent | ae94255445a3bab94677625ead704c899b45223a (diff) | |
Merge branch 'master' into staging-next
Diffstat (limited to 'pkgs/top-level')
| -rw-r--r-- | pkgs/top-level/all-packages.nix | 18 | ||||
| -rw-r--r-- | pkgs/top-level/linux-kernels.nix | 9 |
2 files changed, 9 insertions, 18 deletions
diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index 119df1283127f..fe8f1af63dada 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -2012,9 +2012,7 @@ with pkgs; git-secrets = callPackage ../applications/version-management/git-secrets { }; - git-series = callPackage ../applications/version-management/git-series { - openssl = openssl_1_1; - }; + git-series = callPackage ../applications/version-management/git-series { }; git-sizer = callPackage ../applications/version-management/git-sizer { }; @@ -10960,10 +10958,7 @@ with pkgs; paperless-ngx = callPackage ../applications/office/paperless-ngx { }; - paperoni = callPackage ../tools/text/paperoni { - inherit (darwin.apple_sdk.frameworks) Security; - openssl = openssl_1_1; - }; + paperoni = callPackage ../tools/text/paperoni { }; paperwork = callPackage ../applications/office/paperwork/paperwork-gtk.nix { }; @@ -22835,10 +22830,7 @@ with pkgs; mono-addins = callPackage ../development/libraries/mono-addins { }; - movine = callPackage ../development/tools/database/movine { - inherit (darwin.apple_sdk.frameworks) Security; - openssl = openssl_1_1; - }; + movine = callPackage ../development/tools/database/movine { }; movit = callPackage ../development/libraries/movit { }; @@ -33819,9 +33811,7 @@ with pkgs; spike = callPackage ../applications/virtualization/spike { }; - tensorman = callPackage ../tools/misc/tensorman { - openssl = openssl_1_1; - }; + tensorman = callPackage ../tools/misc/tensorman { }; spideroak = callPackage ../applications/networking/spideroak { }; diff --git a/pkgs/top-level/linux-kernels.nix b/pkgs/top-level/linux-kernels.nix index ddf588b5a277d..077f6ecb023a5 100644 --- a/pkgs/top-level/linux-kernels.nix +++ b/pkgs/top-level/linux-kernels.nix @@ -54,6 +54,11 @@ let }; kernelPatches = kernel.kernelPatches ++ [ kernelPatches.hardened.${kernel.meta.branch} + ] ++ lib.optionals (lib.versionAtLeast version "5.15") [ + # Needed as long as hardened kernels are behind the first patch release + # containing the fix for CVE-2023-32233. Can most likely be removed after the + # next hardened kernel update. + kernelPatches.CVE-2023-32233 ]; isHardened = true; }; @@ -158,7 +163,6 @@ in { kernelPatches.bridge_stp_helper kernelPatches.request_key_helper kernelPatches.fix-em-ice-bonding - kernelPatches.CVE-2023-32233 ]; }; @@ -175,7 +179,6 @@ in { kernelPatches.bridge_stp_helper kernelPatches.request_key_helper kernelPatches.fix-em-ice-bonding - kernelPatches.CVE-2023-32233 ]; }; @@ -194,7 +197,6 @@ in { kernelPatches.bridge_stp_helper kernelPatches.request_key_helper kernelPatches.fix-em-ice-bonding - kernelPatches.CVE-2023-32233 ]; }; @@ -203,7 +205,6 @@ in { kernelPatches.bridge_stp_helper kernelPatches.request_key_helper kernelPatches.fix-em-ice-bonding - kernelPatches.CVE-2023-32233 ]; }; |