tjh.dev
commits
fix failing install_name_tool not having enough space to write the path
into the binary
> error: install_name_tool: changing install names or rpaths can't be redone for: /nix/store/.../git-rustfmt (for architecture x86_64) because larger updated load commands do not fit (the program must be relinked, and you may need to use -headerpad or -headerpad_max_install_names)
(cherry picked from commit c00441e179bbd9ff8ca764a70e3886ccfe490913)
https://hydra.nixos.org/build/283051644/nixlog/2/tail
(cherry picked from commit 30a99d46e872611a84745ecd52bc67ab970e58f9)
(cherry picked from commit 3cc672a90ca8c5435fb7599e5c74f28ec9b40052)
(cherry picked from commit 15d17d906602c5ffe27da4d81a0fbe5df3bd7623)
(cherry picked from commit a60c2319f95600aa0e8c3deb8b6d380c3056053c)
(cherry picked from commit eefc9e46723e41e1412e9419ff82f2b4c49ca16c)
(cherry picked from commit 8e60cfc23b856139aa3d7239761f7c3b4d683038)
Conflict in the "mail" app resolved by picking the latest package
version (4.0.9 -> 4.1.1).
(cherry picked from commit b23171b4d826cbcc59deb5a90c7c02274c0bad05)
(cherry picked from commit 245ff4f757e19bb360189a9df48049315e16bbe4)
Fixes: 34f5abab7a2e7b02d4ca67bf4ea1b0979f061dcf
(cherry picked from commit 2cb56f387af6364695f4d5b2dd779bcd3849d89b)
Fixes the build for me.
(cherry picked from commit 79d0f5d2ea333d213cda64ec129ddb87cd8f7ed1)
(cherry picked from commit e94db5feff365f6f24302a72c053febe5e5e430c)
(cherry picked from commit eac567d371ca82ecf849c23766bb89b9cc9a64ec)
https://github.com/pallets/jinja/releases/tag/3.1.5
https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h
https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699
Fixes: CVE-2024-56326, CVE-2024-56201
(cherry picked from commit 143eb2efc7b644bc8d / PR #367410)
Fixes CVE-2024-52616 / https://github.com/avahi/avahi/security/advisories/GHSA-r9j3-vjjh-p8vm
(cherry picked from commit a7e9d5524b2e5ecca81c41752907096b0f5c14fd)
Fixes CVE-2024-53985, CVE-2024-53986, CVE-2024-53987, CVE-2024-53988 and CVE-2024-53989.
https://discuss.rubyonrails.org/t/rails-html-sanitizer-v1-6-1-addresses-multiple-cves/88092
https://github.com/rails/rails-html-sanitizer/releases/tag/v1.6.1
(cherry picked from commit 886af9cde4dbde4ccad7cad2ea6c87f666e5930a)
(cherry picked from commit 8ed2a63e0a0337d61299818ce4f5184825159eb5)
(cherry picked from commit b6373a59c82fb6d3c645f26254c9cb14d6e14433)
https://debbugs.gnu.org/cgi/bugreport.cgi?bug=67916
(cherry picked from commit 189830782f722286489071cf9cfeb55d11437330)
https://vikunja.io/changelog/vikunja-v0.24.6-was-released
(cherry picked from commit fde464d1c466203813e6ffd2491774ca4236e5c4)
Announcement: https://lists.gnu.org/archive/html/emacs-devel/2024-12/msg00869.html
diff: https://github.com/emacs-mirror/emacs/compare/emacs-30.0.92...emacs-30.0.93
(cherry picked from commit 4a80300bc965adbad890aaa1875636a52e95eed5)
https://about.gitlab.com/releases/2024/12/11/patch-release-gitlab-17-6-2-released/
(cherry picked from commit 887e7d91ba8e9514f0e68ef95573ca8083df133f)
(cherry picked from commit b7eae8cb6ad3dcde8c6a9d19e0a81004c94e2a50)
ChangeLog: https://www.php.net/ChangeLog-8.php#8.3.15
(cherry picked from commit 1f57576570725394c1f22eec4ec863338b426202)
(cherry picked from commit 213d47367cf094c9afc6ef22659990d24b87b708)
fix failing install_name_tool not having enough space to write the path
into the binary
> error: install_name_tool: changing install names or rpaths can't be redone for: /nix/store/.../git-rustfmt (for architecture x86_64) because larger updated load commands do not fit (the program must be relinked, and you may need to use -headerpad or -headerpad_max_install_names)
Fixes CVE-2024-53985, CVE-2024-53986, CVE-2024-53987, CVE-2024-53988 and CVE-2024-53989.
https://discuss.rubyonrails.org/t/rails-html-sanitizer-v1-6-1-addresses-multiple-cves/88092
https://github.com/rails/rails-html-sanitizer/releases/tag/v1.6.1
(cherry picked from commit 886af9cde4dbde4ccad7cad2ea6c87f666e5930a)