tjh.dev
commits
Remove optional builtins prefixes from prelude functions by running:
builtins=(
abort
baseNameOf
break
derivation
derivationStrict
dirOf
false
fetchGit
fetchMercurial
fetchTarball
fetchTree
fromTOML
import
isNull
map
null
placeholder
removeAttrs
scopedImport
throw
toString
true
)
fd --type file --exec-batch sed --in-place --regexp-extended "
s/\<builtins\.($(
printf '%s\n' "${builtins[@]}" |
paste --delimiter '|' --serial -
))\>/\1/g
"
nix fmt
(cherry picked from commit dec908b169b25e4eee5cd694f1a073894654135f)
(cherry picked from commit d17f0c1bf89bcffad26838bbe0278250656659bd)
Fixes CVE-2025-61962.
(cherry picked from commit 3886232a1c7e3da5415d60360dd9eff7d0641cb0)
Fixes CVE-2025-61962.
https://sourceforge.net/p/fetchmail/git/ci/6.5.6/tree/NEWS
(cherry picked from commit 49314339f51950017816aac9d50bdd3a5fe430f5)
(cherry picked from commit 9b1586e48056354efe75a66c825dcee549683b77)
https://community.brave.app/t/release-channel-1-83-109/643427
(cherry picked from commit 807cd6919afc13c8913d7ea549b4e9797159984b)
(cherry picked from commit 096771ab625f4c31f43ae88fae180e7bbff314c4)
(cherry picked from commit d3ad5c595abf68f073310cc8234ec49a0e0bb6ed)
(cherry picked from commit a5f11947f99956c8cd3efd476dfff926f0e388ac)
- Changelog: https://dl.xanmod.org/changelog/6.16/ChangeLog-6.16.10-xanmod1.gz
- Diff: https://gitlab.com/xanmod/linux/-/compare/6.16.9-xanmod1..6.16.10-xanmod1?from_project_id=51590166
(cherry picked from commit 09fafc11e2efd565c5b9e4ab4e1c55253c980001)
- Changelog: https://dl.xanmod.org/changelog/6.12/ChangeLog-6.12.50-xanmod1.gz
- Diff: https://gitlab.com/xanmod/linux/-/compare/6.12.49-xanmod1..6.12.50-xanmod1?from_project_id=51590166
(cherry picked from commit cd785795d56750b0ef2ff94329e7af3a761438f7)
(cherry picked from commit 994329f595b848468e86c7ba449f76107e02b815)
ChangeLog: https://github.com/grafana/grafana/releases/tag/v12.0.5
ChangeLog: https://www.php.net/ChangeLog-8.php#8.4.13
(cherry picked from commit 9fefb7cdc44667d1eaa639b271c59b3edeeea2bd)
- adjust ordering
Co-authored-by: Fabian Affolter <mail@fabian-affolter.ch>
(cherry picked from commit 01f6ea84ce00935f936ad2cf620a1a47ed46a364)
Co-authored-by: R. Ryantm <ryantm-bot@ryantm.com>
(cherry picked from commit d8500118d489361884b135fc4987cadbeea704e3)
(cherry picked from commit de1de0eb13c999d2f2517f24b262484adf9e08a2)
(cherry picked from commit 11ca5ce7c0da30ef2106795a5b12c6ee8e73897a)
menu dir doesn't exist anymore
(cherry picked from commit 04f09a5ef73ca78dbf4fd6d161e4e91040e7abdd)
(cherry picked from commit 5e61077d833b8306d8a0d704450dfe4162fa57e9)
ChangeLog: https://github.com/element-hq/synapse/releases/tag/v1.139.0
(cherry picked from commit a8a9f6dd7f6a7cafc2e8ca6b8d1848bba576b400)
(cherry picked from commit 65dd3d27fbc8bbedf2bc1fcdc885653dd0cf6810)
The current supported versions are 4.0 and 4.1. 3.9 is no longer
supported, and has not received the fix for CVE-2025-9230 that 4.0 and
4.1 did receive. I think it's better to remove it at this point.
(cherry picked from commit 2277092388c1d317e05a8948a2657a42db0fbd7b)
Includes a fix for CVE-2025-9230, see the release notes at
https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-4.1.1-relnotes.txt
(cherry picked from commit a0b7ed298ac2965639eb7eb2f82946d702e47962)
Includes a fix for CVE-2025-9230, see the release notes at
https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-4.0.1-relnotes.txt
(cherry picked from commit 60d7923ecec0a1db1df48d6df57695ab17156707)
see https://www.libressl.org/releases.html#:~:text=w64%20and%20Cygwin-,Support%20Schedule,-LibreSSL%20transitions%20to
(cherry picked from commit 45bbfd7c49617fa7d100b08d9e76b8000857f4b1)
(cherry picked from commit 332a5130e4ca343fd7482c6f9c077e7859c4e082)
Changes: https://gitlab.com/muttmua/mutt/-/blob/mutt-2-2-15-rel/UPDATING?ref_type=tags
(cherry picked from commit b27c2da6b8bc09064a7a1eb30d1381c5e4714301)
(cherry picked from commit 928af85c843949d065fe7ef242471af5cd0b1948)
(cherry picked from commit a087a5760b89244c19505541f5ca060e712634b8)
https://developer.chrome.com/blog/new-in-chrome-141
https://developer.chrome.com/release-notes/141
https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
This update includes 21 security fixes.
CVEs:
CVE-2025-11205 CVE-2025-11206 CVE-2025-11207 CVE-2025-11208
CVE-2025-11209 CVE-2025-11210 CVE-2025-11211 CVE-2025-11212
CVE-2025-11213 CVE-2025-11215 CVE-2025-11216 CVE-2025-11219
(cherry picked from commit 9c768f1f9317a9394c400abb88e2adce89b73c28)
Remove optional builtins prefixes from prelude functions by running:
builtins=(
abort
baseNameOf
break
derivation
derivationStrict
dirOf
false
fetchGit
fetchMercurial
fetchTarball
fetchTree
fromTOML
import
isNull
map
null
placeholder
removeAttrs
scopedImport
throw
toString
true
)
fd --type file --exec-batch sed --in-place --regexp-extended "
s/\<builtins\.($(
printf '%s\n' "${builtins[@]}" |
paste --delimiter '|' --serial -
))\>/\1/g
"
nix fmt
(cherry picked from commit dec908b169b25e4eee5cd694f1a073894654135f)
(cherry picked from commit 5e61077d833b8306d8a0d704450dfe4162fa57e9)
https://developer.chrome.com/blog/new-in-chrome-141
https://developer.chrome.com/release-notes/141
https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
This update includes 21 security fixes.
CVEs:
CVE-2025-11205 CVE-2025-11206 CVE-2025-11207 CVE-2025-11208
CVE-2025-11209 CVE-2025-11210 CVE-2025-11211 CVE-2025-11212
CVE-2025-11213 CVE-2025-11215 CVE-2025-11216 CVE-2025-11219
(cherry picked from commit 9c768f1f9317a9394c400abb88e2adce89b73c28)