diff options
author | Sandro <sandro.jaeckel@gmail.com> | 2021-07-15 19:24:13 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-07-15 19:24:13 +0200 |
commit | e9ffb646fb7777503fd9e0de1a149a7e5d24beaa (patch) | |
tree | eb731be1b3bb7b059fa0d03282c6756eb5589e0f /pkgs/applications | |
parent | 0a14335919efb0cdf5c7183f2a7227d0ec2c0d74 (diff) | |
parent | 57aff6b0ae29df302511c60d979dfe8349bd8a92 (diff) | |
download | nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar.gz nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar.bz2 nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar.lz nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar.xz nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.tar.zst nixlib-e9ffb646fb7777503fd9e0de1a149a7e5d24beaa.zip |
Merge pull request #130290 from LeSuisse/fig2dev-CVE-2021-3561
fig2dev: apply patch for CVE-2021-3561
Diffstat (limited to 'pkgs/applications')
-rw-r--r-- | pkgs/applications/graphics/fig2dev/default.nix | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/pkgs/applications/graphics/fig2dev/default.nix b/pkgs/applications/graphics/fig2dev/default.nix index c7484f4cbfe7..31d14185dcd9 100644 --- a/pkgs/applications/graphics/fig2dev/default.nix +++ b/pkgs/applications/graphics/fig2dev/default.nix @@ -1,6 +1,7 @@ { lib , stdenv , fetchurl +, fetchpatch , ghostscript , libpng , makeWrapper @@ -20,6 +21,15 @@ stdenv.mkDerivation rec { sha256 = "1bm75lf9j54qpbjx8hzp6ixaayp1x9w4v3yxl6vxyw8g5m4sqdk3"; }; + patches = [ + (fetchpatch { + name = "CVE-2021-3561.patch"; + # Using Debian patch since it is not possible to download it directly from Sourceforge + url = "https://sources.debian.org/data/main/f/fig2dev/1:3.2.8-3/debian/patches/33_sanitize-color.patch"; + sha256 = "1bppr3li03nj4qjibnddr2f38mpk55pcn5z6k98pf00gabq33fgs"; + }) + ]; + nativeBuildInputs = [ makeWrapper ]; buildInputs = [ libpng ]; |