[Nix-dev] Chromium: Unpatched CVEs or Missing Features?
Shea Levy
shea at shealevy.com
Mon Nov 7 14:52:46 CET 2016
Arbitrary code execution by visiting a web page trumps, IMO. Maybe add
an assert if flash or widevine are enabled so the eval fails with a
useful message?
Graham Christensen <graham at grahamc.com> writes:
>> It would be great to have clarity on the situation, so if anyone wants to
>> test, you can grab a build on aszlig's hydra, instead of building your own,
>> by `nix-install-package --non-interactive --url
>> https://headcounter.org/hydra/build/1418328/nix/pkg/chromium-54.0.2840.90-x86_64-linux.nixpkg`
>
>
> I built Chromium with pepper flash and with widevine enabled, and still
> find myself with broken Netflix, and no WideVine or Flash reporting in
> the chromium://components pages. Not sure what to make of this.
>
>> Yeah, please merge this immediately.
>
> I would normally agree, but shipping users updates that break one of
> their most important tools seems pretty wrong to me.
>
> Graham
> _______________________________________________
> nix-dev mailing list
> nix-dev at lists.science.uu.nl
> http://lists.science.uu.nl/mailman/listinfo/nix-dev
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 800 bytes
Desc: not available
URL: <http://lists.science.uu.nl/pipermail/nix-dev/attachments/20161107/8e8a7fde/attachment.sig>
More information about the nix-dev
mailing list