diff options
| author | Andreas Rammhold <andreas@rammhold.de> | 2017-11-08 21:19:12 +0100 |
|---|---|---|
| committer | Andreas Rammhold <andreas@rammhold.de> | 2017-11-09 12:48:21 +0100 |
| commit | 4b759a0011dd91d921ccf5c379b7291535cfc280 (patch) | |
| tree | f6ad3091228fecbd0ddad95f7447d5a45ff4f202 /pkgs/tools/compression | |
| parent | e15d6e1b3c267156453924942d426ba420f54f20 (diff) | |
| download | nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar.gz nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar.bz2 nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar.lz nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar.xz nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.tar.zst nixlib-4b759a0011dd91d921ccf5c379b7291535cfc280.zip | |
rzip: fix CVE-2017-8364
Diffstat (limited to 'pkgs/tools/compression')
| -rw-r--r-- | pkgs/tools/compression/rzip/default.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/pkgs/tools/compression/rzip/default.nix b/pkgs/tools/compression/rzip/default.nix index 2737966b83e5..ad1b80410419 100644 --- a/pkgs/tools/compression/rzip/default.nix +++ b/pkgs/tools/compression/rzip/default.nix @@ -1,4 +1,4 @@ -{stdenv, fetchurl, bzip2}: +{stdenv, fetchurl, fetchpatch, bzip2}: stdenv.mkDerivation { name = "rzip-2.1"; @@ -8,6 +8,14 @@ stdenv.mkDerivation { }; buildInputs = [ bzip2 ]; + patches = [ + (fetchpatch { + name = "CVE-2017-8364-fill-buffer.patch"; + url = https://sources.debian.net/data/main/r/rzip/2.1-4.1/debian/patches/80-CVE-2017-8364-fill-buffer.patch; + sha256 = "0jcjlx9ksdvxvjyxmyzscx9ar9992iy5icw0sc3n0p09qi4d6x1r"; + }) + ]; + meta = { homepage = http://rzip.samba.org/; description = "Compression program"; |