this post was submitted on 03 Apr 2024
35 points (88.9% liked)
Nix / NixOS
1750 readers
11 users here now
Main links
Videos
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If the issue had been critical, then the branch head could be rolled back, causing everyone to downgrade
That's a nice idea in theory but not possible in practice as the last Nixpkgs revision without a tainted version of xz is many months old. You'd trade one CVE for dozens of others.