From 79f9091b0f2d96d829340606d3e924d175285cf1 Mon Sep 17 00:00:00 2001 From: Tobias Geerinckx-Rice Date: Thu, 18 Mar 2021 22:13:52 +0100 Subject: news: Update erratum for '--keep-failed' vulnerability. * etc/news.scm: Change commit to behave in a (hopefully) more expected manner. Change http:// to https:// URL whilst here. --- etc/news.scm | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/etc/news.scm b/etc/news.scm index f3e6bb6dff..51daaa527f 100644 --- a/etc/news.scm +++ b/etc/news.scm @@ -20,7 +20,7 @@ (channel-news (version 0) - (entry (commit "ec7fb669945bfb47c5e1fdf7de3a5d07f7002ccf") + (entry (commit "9ade2b720af91acecf76278b4d9b99ace406781e") (title (en "Update on previous @command{guix-daemon} local privilege escalation")) (body @@ -33,7 +33,7 @@ This is not entirely correct. Exploiting the bug on such systems is harder, but not impossible. To avoid unpleasant surprises, all users are advised to upgrade @command{guix-daemon}. Run @command{info \"(guix) Upgrading Guix\"} for info on how to do that. See -@uref{http://guix.gnu.org/en/blog/2021/risk-of-local-privilege-escalation-via-guix-daemon/} +@uref{https://guix.gnu.org/en/blog/2021/risk-of-local-privilege-escalation-via-guix-daemon/} for more information on this bug."))) (entry (commit "ec7fb669945bfb47c5e1fdf7de3a5d07f7002ccf") -- cgit v1.2.3