diff options
| author | Robert Scott <code@humanleg.org.uk> | 2022-04-15 13:07:32 +0100 |
|---|---|---|
| committer | Robert Scott <code@humanleg.org.uk> | 2022-04-15 13:11:14 +0100 |
| commit | 63e709aea1fcd9198428703872cfc03e3948e679 (patch) | |
| tree | 29bed9096d2f5ac27edb11b03909b60fb3ee053d | |
| parent | Merge pull request #168389 from NixOS/backport-168377-to-staging-21.11 (diff) | |
| download | nixpkgs-63e709aea1fcd9198428703872cfc03e3948e679.tar.gz | |
re2c: add patch for CVE-2022-23901
| -rw-r--r-- | pkgs/development/tools/parsing/re2c/default.nix | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/pkgs/development/tools/parsing/re2c/default.nix b/pkgs/development/tools/parsing/re2c/default.nix index c3b09b71d173..7d83d7efc9e3 100644 --- a/pkgs/development/tools/parsing/re2c/default.nix +++ b/pkgs/development/tools/parsing/re2c/default.nix @@ -3,6 +3,7 @@ , fetchFromGitHub , autoreconfHook , python3 +, fetchpatch }: stdenv.mkDerivation rec { @@ -16,6 +17,14 @@ stdenv.mkDerivation rec { sha256 = "0snfxk1cf2f4dy4hcxd1fx1grav3di0qjgqqn97k85zsf9f6ys78"; }; + patches = [ + (fetchpatch { + name = "CVE-2022-23901.patch"; + url = "https://github.com/skvadrik/re2c/commit/a3473fd7be829cb33907cb08612f955133c70a96.patch"; + sha256 = "1zf6fqgz4l2aggpk6y6ax038gniqd8zsdhwqfl57f45hs0cmfgv5"; + }) + ]; + nativeBuildInputs = [ autoreconfHook python3 |