diff options
author | Martin Weinelt <hexa@darmstadt.ccc.de> | 2022-01-25 13:46:22 +0100 |
---|---|---|
committer | Martin Weinelt <hexa@darmstadt.ccc.de> | 2022-01-25 13:55:59 +0100 |
commit | 39341ed38be4695623893222b4b82873b348bb61 (patch) | |
tree | 845b525f2e116bfbe44941bb03d7d7d015d31360 /pkgs/applications/virtualization | |
parent | a147b46130a0f6f12c645e1a3ad7d4e189003ce6 (diff) | |
download | nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar.gz nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar.bz2 nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar.lz nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar.xz nixpkgs-39341ed38be4695623893222b4b82873b348bb61.tar.zst nixpkgs-39341ed38be4695623893222b4b82873b348bb61.zip |
xen: mark unsupported versions as vulnerable
Our support for Xen lacks maintenance and since Xen has monthly security advisories it is reasonable to assume our version is affected by a multitude of security problems that are fixed upstream. How many advisories? Browsing oss-security shows the following number of advisories in each of the following years: 2022: 3 2021: 53 2020: 54 2019: 46 <-- we are *here* https://xenbits.xen.org/docs/unstable/support-matrix.html
Diffstat (limited to 'pkgs/applications/virtualization')
-rw-r--r-- | pkgs/applications/virtualization/xen/generic.nix | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/pkgs/applications/virtualization/xen/generic.nix b/pkgs/applications/virtualization/xen/generic.nix index 8299304045d..0a2febd0589 100644 --- a/pkgs/applications/virtualization/xen/generic.nix +++ b/pkgs/applications/virtualization/xen/generic.nix @@ -254,5 +254,9 @@ stdenv.mkDerivation (rec { platforms = [ "x86_64-linux" ]; maintainers = with lib.maintainers; [ eelco tstrobel oxij ]; license = lib.licenses.gpl2; + # https://xenbits.xen.org/docs/unstable/support-matrix.html + knownVulnerabilities = lib.optionals (lib.versionOlder version "4.13") [ + "This version of Xen has reached its end of life. See https://xenbits.xen.org/docs/unstable/support-matrix.html" + ]; } // (config.meta or {}); } // removeAttrs config [ "xenfiles" "buildInputs" "patches" "postPatch" "meta" ]) |