From cd67a0aada863e1510c0573aed03b20959dfdebb Mon Sep 17 00:00:00 2001
From: Graham Christensen <graham@grahamc.com>
Date: Wed, 2 Nov 2016 06:42:01 -0400
Subject: tre: add patch for CVE-2016-8859

---
 pkgs/development/libraries/tre/default.nix | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'pkgs/development/libraries/tre')

diff --git a/pkgs/development/libraries/tre/default.nix b/pkgs/development/libraries/tre/default.nix
index 5700a7d144e4..25d7849b1b4b 100644
--- a/pkgs/development/libraries/tre/default.nix
+++ b/pkgs/development/libraries/tre/default.nix
@@ -1,4 +1,4 @@
-{stdenv, fetchurl}:
+{stdenv, fetchurl, fetchpatch}:
 
 stdenv.mkDerivation rec {
   name = "tre-0.8.0";
@@ -7,6 +7,13 @@ stdenv.mkDerivation rec {
     sha256 = "1pd7qsa7vc3ybdc6h2gr4pm9inypjysf92kab945gg4qa6jp11my";
   };
 
+  patches = [
+    (fetchpatch {
+      url = https://sources.debian.net/data/main/t/tre/0.8.0-6/debian/patches/03-cve-2016-8859;
+      sha256 = "0navhizym6qxd4gngrsslbij8x9r3s67p1jzzhvsnq6ky49j7w3p";
+    })
+  ];
+
   meta = {
     platforms = stdenv.lib.platforms.unix;
   };
-- 
cgit 1.4.1