From mboxrd@z Thu Jan 1 00:00:00 1970 From: Christopher Allan Webber Subject: Re: IMPORTANT: glibc security update Date: Fri, 19 Feb 2016 10:14:22 -0800 Message-ID: <87a8mwpnx9.fsf@dustycloud.org> References: <87povsn7u4.fsf@netris.org> Mime-Version: 1.0 Content-Type: text/plain Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:53108) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aWpa4-00072p-HD for guix-devel@gnu.org; Fri, 19 Feb 2016 13:15:05 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aWpa0-0004MK-GP for guix-devel@gnu.org; Fri, 19 Feb 2016 13:15:04 -0500 Received: from dustycloud.org ([50.116.34.160]:44592) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aWpa0-0004M5-Br for guix-devel@gnu.org; Fri, 19 Feb 2016 13:15:00 -0500 In-reply-to: <87povsn7u4.fsf@netris.org> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org To: Mark H Weaver Cc: guix-devel@gnu.org Mark H Weaver writes: > Hello Guix! > > I've pushed a fix for CVE-2015-7547 to the master branch, although Hydra > has not fully rebuilt it. I directed Hydra to build the most popular > packages first, and with greater effort devoted to x86_64, so my hope is > that most of what typical desktop users need is already built on x86_64. > Still, it is likely that you'll need to compile some things locally. > > i686 is not as fully built, so users will probably need to do some more > compiling, but hopefully it is manageable. I was able to fully update > my Xfce desktop system on i686 anyway. > > As I write this, the rebuilds of armhf and mips64el are considerably > less advanced, so be prepared for a significant amount of local > recompilation. Thank you Mark, and everyone who works on getting Hydra in order so we can be safe. We really appreciate your hard work! > We'll prioritize getting grafts working properly soon, so that we can > deploy security updates to core libraries much more quickly in the > future. Yay!