diff options
author | Andreas Rammhold <andreas@rammhold.de> | 2019-03-20 14:04:12 +0100 |
---|---|---|
committer | Andreas Rammhold <andreas@rammhold.de> | 2019-03-20 14:18:58 +0100 |
commit | 84c1b2fbd82e478f79dbc31c2eee6c57cedea0da (patch) | |
tree | 8d4f5376ebcad9b61cfc11b8cfad883f74a5581f | |
parent | de0612c46cf17a368e92eaac91fd94affbe36488 (diff) | |
download | nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar.gz nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar.bz2 nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar.lz nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar.xz nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.tar.zst nixlib-84c1b2fbd82e478f79dbc31c2eee6c57cedea0da.zip |
ldb: apply patch for CVE-2019-3824
-rw-r--r-- | pkgs/development/libraries/ldb/default.nix | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/pkgs/development/libraries/ldb/default.nix b/pkgs/development/libraries/ldb/default.nix index 5566b1f4f0e2..12f7b176bb7b 100644 --- a/pkgs/development/libraries/ldb/default.nix +++ b/pkgs/development/libraries/ldb/default.nix @@ -19,6 +19,17 @@ stdenv.mkDerivation rec { cmocka ]; + patches = [ + # CVE-2019-3824 + # downloading the patch from debian as they have ported the patch from samba to ldb but otherwise is identical to + # https://bugzilla.samba.org/attachment.cgi?id=14857 + (fetchurl { + name = "CVE-2019-3824.patch"; + url = "https://sources.debian.org/data/main/l/ldb/2:1.1.27-1+deb9u1/debian/patches/CVE-2019-3824-master-v4-5-02.patch"; + sha256 = "1idnqckvjh18rh9sbq90rr4sxfviha9nd1ca9pd6lai0y6r6q4yd"; + }) + ]; + preConfigure = '' sed -i 's,#!/usr/bin/env python,#!${python}/bin/python,g' buildtools/bin/waf ''; |