diff options
author | Vladimír Čunát <vcunat@gmail.com> | 2017-02-22 18:56:56 +0100 |
---|---|---|
committer | Vladimír Čunát <vcunat@gmail.com> | 2017-02-22 19:00:04 +0100 |
commit | f5eea8ba1d04c4b7f72bdd48f553585052f820f3 (patch) | |
tree | bab797d934af99efed52681a8f3667359d12ccfb /pkgs/development/libraries/libevent | |
parent | 838e29d236f78cc171a53aaf5eea4b2bbd2a4fe8 (diff) | |
download | nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar.gz nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar.bz2 nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar.lz nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar.xz nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.tar.zst nixlib-f5eea8ba1d04c4b7f72bdd48f553585052f820f3.zip |
libevent: apply security patches from Debian
/cc #23072. As with curl, it's nontrivial rebuild but security... https://lwn.net/Alerts/714571/
Diffstat (limited to 'pkgs/development/libraries/libevent')
-rw-r--r-- | pkgs/development/libraries/libevent/default.nix | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/pkgs/development/libraries/libevent/default.nix b/pkgs/development/libraries/libevent/default.nix index 17aeb1d4377f..4abd0b033757 100644 --- a/pkgs/development/libraries/libevent/default.nix +++ b/pkgs/development/libraries/libevent/default.nix @@ -9,6 +9,20 @@ stdenv.mkDerivation { sha256 = "18qz9qfwrkakmazdlwxvjmw8p76g70n3faikwvdwznns1agw9hki"; }; + prePatch = let + # https://lwn.net/Vulnerabilities/714581/ + debian = fetchurl { + url = "http://http.debian.net/debian/pool/main/libe/libevent/" + + "libevent_2.0.21-stable-3.debian.tar.xz"; + sha256 = "0b2syswiq3cvfbdvi4lbca15c31lilxnahax4a4b4qxi5fcab7h5"; + }; + in '' + tar xf '${debian}' + patches="$patches $(cat debian/patches/series | grep -v '^$\|^#' \ + | grep -v '^20d6d445.patch' \ + | grep -v '^dh-autoreconf' | sed 's|^|debian/patches/|')" + ''; + outputs = [ "out" "dev" ]; outputBin = "dev"; |