summary refs log tree commit diff
diff options
context:
space:
mode:
authorMoritz 'e1mo' Fromm <git@e1mo.de>2023-05-16 08:35:15 +0200
committerMoritz 'e1mo' Fromm <git@e1mo.de>2023-05-16 08:40:59 +0200
commit4341067c94e593d68c52a243c4d55532f837ebc0 (patch)
treef430101b0fceaf985698df3e0902b44b321c0a52
parent843476093e91a7da4e1b29e951e2aa6492494212 (diff)
downloadnixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar.gz
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar.bz2
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar.lz
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar.xz
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.tar.zst
nixpkgs-4341067c94e593d68c52a243c4d55532f837ebc0.zip
dokuwiki: 2023-04-04 -> 2023-04-04a
Hotfix for a discovered vulnerability (deemed as high[^1])
in the RSS parser allowing cross-site scripting via injected,
arbitrary, JavaScript.

Changes: https://github.com/dokuwiki/dokuwiki/compare/release-2023-04-04...release-2023-04-04a

[^1]: https://huntr.dev/bounties/c6119106-1a5c-464c-94dd-ee7c5d0bece0/
Diffstat
-rw-r--r--pkgs/servers/web-apps/dokuwiki/default.nix4
1 files changed, 2 insertions, 2 deletions
diff --git a/pkgs/servers/web-apps/dokuwiki/default.nix b/pkgs/servers/web-apps/dokuwiki/default.nix
index 888ca6ca239..a95a6acdfb7 100644
--- a/pkgs/servers/web-apps/dokuwiki/default.nix
+++ b/pkgs/servers/web-apps/dokuwiki/default.nix
@@ -8,13 +8,13 @@
 
 stdenv.mkDerivation rec {
   pname = "dokuwiki";
-  version = "2023-04-04";
+  version = "2023-04-04a";
 
   src = fetchFromGitHub {
     owner = "dokuwiki";
     repo = pname;
     rev = "release-${version}";
-    sha256 = "sha256-QJnXKsEhvEcE88wvfMZR2j7X/pW8+28zlEnxhvhl+44=";
+    sha256 = "sha256-PVfJfGYa2Drf4ljnnhb7kNpjfQlW4dDt5Xd5h+C8tP4=";
   };
 
   preload = writeText "preload.php" ''
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-17 02:29:56 +0000