diff options
| author | Thomas Gerbet <thomas@gerbet.me> | 2023-10-22 13:15:16 +0200 |
|---|---|---|
| committer | Thomas Gerbet <thomas@gerbet.me> | 2023-10-22 14:00:43 +0200 |
| commit | 282d9cd278480206964640c73cab2621e77300d7 (patch) | |
| tree | 6ce76c952cb2d9ab904afd83288f2a7df73a6661 | |
| parent | 6b4e45787b7362fd20f1049e4a0ea42508a05715 (diff) | |
| download | nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar.gz nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar.bz2 nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar.lz nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar.xz nixpkgs-282d9cd278480206964640c73cab2621e77300d7.tar.zst nixpkgs-282d9cd278480206964640c73cab2621e77300d7.zip | |
minizip: apply patch for CVE-2023-45853
Upstream PR: https://github.com/madler/zlib/pull/843
| -rw-r--r-- | pkgs/development/libraries/minizip/default.nix | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/pkgs/development/libraries/minizip/default.nix b/pkgs/development/libraries/minizip/default.nix index 5619fe7039e..74493a06b52 100644 --- a/pkgs/development/libraries/minizip/default.nix +++ b/pkgs/development/libraries/minizip/default.nix @@ -1,9 +1,19 @@ -{ lib, stdenv, zlib, autoreconfHook }: +{ lib, stdenv, zlib, autoreconfHook, fetchpatch }: stdenv.mkDerivation { pname = "minizip"; inherit (zlib) src version; + patches = [ + (fetchpatch { + name = "CVE-2023-45853.patch"; + url = "https://github.com/madler/zlib/commit/73331a6a0481067628f065ffe87bb1d8f787d10c.patch"; + hash = "sha256-yayfe1g9HsvgMN28WF/MYkH7dGMX4PsK53FcnfL3InM="; + }) + ]; + + patchFlags = [ "-p3" ]; + nativeBuildInputs = [ autoreconfHook ]; buildInputs = [ zlib ]; |