Release 2024_015 (2024-05-15)

Impact

• [NixOS 23.11] Machines will reboot after the update to activate the changed kernel.

NixOS 23.11 platform

• Pull upstream NixOS changes, security fixes and package updates (PL-132490):

  • chromedriver: 123.0.6312.122 -> 124.0.6367.91

  • chromium: 123.0.6312.122 -> 124.0.6367.118

  • element-web: 1.11.64 -> 1.11.65

  • firefox: 124.0.2 -> 125.0.3

  • gitlab: 16.10.4 -> 16.10.5

  • glibc: 2.38-44 -> 2.38-66 (CVE-2024-2961)

  • imagemagick: 7.1.1-29 -> 7.1.1-30

  • linux_5_15: 5.15.155 -> 5.15.158

  • matrix-synapse: 1.104.0 -> 1.106.0

  • phpPackages.composer: 2.7.1 -> 2.7.6

  • qemu: add patches for CVE-2024-3446, CVE-2024-3447, CVE-2024-3567

  • webkitgtk: 2.44.0 → 2.44.1

• Production channel URL for this release: https://hydra.flyingcircus.io/build/425617/download/1/nixexprs.tar.xz

Documentation

• security: various updates for networking, software vulnerabilities and disaster recovery documentation.

Detailed Changes

• NixOS 23.11: platform code, nixpkgs/upstream changes