diff options
| author | Thomas Gerbet <thomas@gerbet.me> | 2024-06-20 23:45:05 +0200 |
|---|---|---|
| committer | github-actions[bot] <github-actions[bot]@users.noreply.github.com> | 2024-06-29 14:23:18 +0000 |
| commit | 7548e8fc066053ebd45413cadae35ade8032c193 (patch) | |
| tree | 1542f5052ebbf711ce70ac86876b01b914dd9bec | |
| parent | Merge staging-next-23.11 into staging-23.11 (diff) | |
| download | nixpkgs-7548e8fc066053ebd45413cadae35ade8032c193.tar.gz | |
libndp: apply patch for CVE-2024-5564
(cherry picked from commit e546e8ff516328a6500b68a7ebb72882f8ff4df7)
| -rw-r--r-- | pkgs/development/libraries/libndp/default.nix | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/pkgs/development/libraries/libndp/default.nix b/pkgs/development/libraries/libndp/default.nix index 6109c48b036e..0a8984dc90aa 100644 --- a/pkgs/development/libraries/libndp/default.nix +++ b/pkgs/development/libraries/libndp/default.nix @@ -1,4 +1,4 @@ -{ lib, stdenv, fetchurl, autoreconfHook }: +{ lib, stdenv, fetchurl, fetchpatch, autoreconfHook }: stdenv.mkDerivation rec { pname = "libndp"; @@ -9,6 +9,15 @@ stdenv.mkDerivation rec { sha256 = "sha256-iP+2buLrUn8Ub1wC9cy8OLqX0rDVfrRr+6SIghqwwCs="; }; + patches = [ + (fetchpatch { + # https://github.com/jpirko/libndp/issues/26 + name = "CVE-2024-5564.patch"; + url = "https://github.com/jpirko/libndp/commit/05e4ba7b0d126eea4c04387dcf40596059ee24af.patch"; + hash = "sha256-O7AHjCqic7iUfMbKYLGgBAU+wdR9/MDWxBWJw+CFn/c="; + }) + ]; + nativeBuildInputs = [ autoreconfHook ]; meta = with lib; { |