Skip to content

glibc: 2.42-58 -> 2.42-61, fixes CVE-2026-4438#506517

Merged
vcunat merged 1 commit intoNixOS:stagingfrom
Ma27:bump-glibc-cve-2026-4438
Apr 4, 2026
Merged

glibc: 2.42-58 -> 2.42-61, fixes CVE-2026-4438#506517
vcunat merged 1 commit intoNixOS:stagingfrom
Ma27:bump-glibc-cve-2026-4438

Conversation

@Ma27
Copy link
Copy Markdown
Member

@Ma27 Ma27 commented Apr 4, 2026
edited
Loading

Wasn't backported to the 2.42 branch when I bumped for CVE-2026-4437 (#503779).

Things done

  • Built on platform:
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • Tested, as applicable:
  • Ran nixpkgs-review on this PR. See nixpkgs-review usage.
  • Tested basic functionality of all binary files, usually in ./result/bin/.
  • Nixpkgs Release Notes
    • Package update: when the change is major or breaking.
  • NixOS Release Notes
    • Module addition: when adding a new NixOS module.
    • Module update: when the change is significant.
  • Fits CONTRIBUTING.md, pkgs/README.md, maintainers/README.md and other READMEs.

@Ma27
glibc: 2.42-58 -> 2.42-61, fixes CVE-2026-4438
c66e479 
Wasn't backported to the 2.42 branch when I bumped for CVE-2026-4437 (NixOS#503779).
@Ma27 Ma27 added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Apr 4, 2026
@nixpkgs-ci nixpkgs-ci bot requested review from a team, ConnorBaker, Ericson2314 and balsoft and removed request for a team April 4, 2026 06:42
@nixpkgs-ci nixpkgs-ci bot added 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-darwin: 1-10 This PR causes between 1 and 10 packages to rebuild on Darwin. 10.rebuild-linux-stdenv This PR causes stdenv to rebuild on Linux and must target a staging branch. 10.rebuild-linux: 5001+ This PR causes many rebuilds on Linux and must target the staging branches. labels Apr 4, 2026
@nixpkgs-ci nixpkgs-ci bot requested a review from a team April 4, 2026 07:11
vcunat
vcunat approved these changes Apr 4, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@vcunat vcunat left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure, why not.

@vcunat vcunat added this pull request to the merge queue Apr 4, 2026
Merged via the queue into NixOS:staging with commit a8de264 Apr 4, 2026
35 of 39 checks passed
@Ma27 Ma27 deleted the bump-glibc-cve-2026-4438 branch April 4, 2026 09:41
@balsoft balsoft moved this from Needs Review to Reviewed in Nixpkgs security review Apr 4, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vcunat vcunat vcunat approved these changes

@ConnorBaker ConnorBaker Awaiting requested review from ConnorBaker

@Ericson2314 Ericson2314 Awaiting requested review from Ericson2314

@balsoft balsoft Awaiting requested review from balsoft balsoft was automatically assigned from NixOS/security-review

Assignees

No one assigned

Labels

1.severity: security Issues which raise a security issue, or PRs that fix one 10.rebuild-darwin: 1-10 This PR causes between 1 and 10 packages to rebuild on Darwin. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 5001+ This PR causes many rebuilds on Linux and must target the staging branches. 10.rebuild-linux-stdenv This PR causes stdenv to rebuild on Linux and must target a staging branch.

Projects

Nixpkgs security review
Status: Reviewed

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Ma27 @vcunat @balsoft