summary refs log tree commit diff
path: root/pkgs/development/libraries/openssl
diff options
context:
space:
mode:
authoradisbladis <adis@blad.is>2018-01-07 06:39:08 +0800
committerRobin Gloster <mail@glob.in>2018-01-07 14:48:24 +0100
commit4cc3510a92d6d8497bcaab95efd3bc5335026e36 (patch)
tree9f464171625017547dcee534994e2c4c14b40036 /pkgs/development/libraries/openssl
parentdc84ce085f4edc53f6f7a5f8c22dd6ed11a5c133 (diff)
downloadnixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar.gz
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar.bz2
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar.lz
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar.xz
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.tar.zst
nixlib-4cc3510a92d6d8497bcaab95efd3bc5335026e36.zip
openssl_1_1_0: Fix CVE-2017-3738
Diffstat (limited to 'pkgs/development/libraries/openssl')
-rw-r--r--pkgs/development/libraries/openssl/default.nix8


1 files changed, 8 insertions, 0 deletions
diff --git a/pkgs/development/libraries/openssl/default.nix b/pkgs/development/libraries/openssl/default.nix
index 78792e5b8dc4..94c49af8c4f1 100644
--- a/pkgs/development/libraries/openssl/default.nix
+++ b/pkgs/development/libraries/openssl/default.nix
@@ -1,5 +1,6 @@
 { stdenv, fetchurl, buildPackages, perl
 , hostPlatform
+, fetchpatch
 , withCryptodev ? false, cryptodevHeaders
 , enableSSL2 ? false
 }:
@@ -114,6 +115,13 @@ in {
   openssl_1_1_0 = common {
     version = "1.1.0g";
     sha256 = "1bvka2wf33w2vxv7yw578nnjqyhz2b3chvfb0l4k2ffscw950kfy";
+    patches = [
+      (fetchpatch {
+        name = "CVE-2017-3738.patch";
+        url = "https://github.com/openssl/openssl/commit/563066.patch";
+        sha256 = "0ni9fwpxf8raw8b58pfa15akbqmxx4q64v0ldsm4b9dqhbxf8mkz";
+      })
+    ];
   };
 
 }

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-04 07:15:19 +0000