mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-19 20:23:02 +00:00
e2a15cd395
Rambox hasn't had a stable release in a while and an increasing number of issues which is why I don't intend to use this anymore. While taking a closer look at the source I also realized that it uses Electron 7.2.4[1]. This is not only EOLed[2], it also contains a few security vulnerabilities which is why I decided to mark it as insecure. A few (most likely not all) vulnerabilities can be found by looking at the Electron 7 changelog[3]: after 7.2.4 there were a few more releases with security backports - mostly from Chromium. Security issues that were found later on (and are probably exploitable on the dependency chain of rambox) aren't listed here. I only added two issues that seemed applicable to `rambox`, but I haven't researched enough to check the other ones. [1] https://github.com/ramboxapp/community-edition/blob/0.7.7/package.json#L70 [2] https://www.electronjs.org/docs/tutorial/support#currently-supported-versions [3] https://www.electronjs.org/releases/stable?version=7 |
||
|---|---|---|
| .. | ||
| accessibility | ||
| audio | ||
| backup | ||
| blockchains | ||
| display-managers | ||
| editors | ||
| gis | ||
| graphics | ||
| kde | ||
| logging/humioctl | ||
| misc | ||
| networking | ||
| office | ||
| printing/pappl | ||
| qubes/qubes-core-vchan-xen | ||
| radio | ||
| science | ||
| search | ||
| system | ||
| terminal-emulators | ||
| version-management | ||
| video | ||
| virtualization | ||
| window-managers | ||