diff options
| author | c0bw3b <c0bw3b@users.noreply.github.com> | 2019-11-11 17:50:37 +0100 |
|---|---|---|
| committer | Robert Helgesson <robert@rycee.net> | 2019-11-11 19:35:54 +0100 |
| commit | 1289606e0236ff9b3bd35a08e3560f2d1fb8bc53 (patch) | |
| tree | 820992bd906a3546ea32d4e1a44dc24a3432b1bd /pkgs/applications/audio/mpg321 | |
| parent | 92edb0610923fab5a9dcc59b94652f1e8a5ea1ed (diff) | |
| download | nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar.gz nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar.bz2 nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar.lz nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar.xz nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.tar.zst nixpkgs-1289606e0236ff9b3bd35a08e3560f2d1fb8bc53.zip | |
mpg321: fix CVE-2018-7263
Close #57154 Close #70105
Diffstat (limited to 'pkgs/applications/audio/mpg321')
| -rw-r--r-- | pkgs/applications/audio/mpg321/default.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/pkgs/applications/audio/mpg321/default.nix b/pkgs/applications/audio/mpg321/default.nix index 65dfe3484b6..fdefcf7e77d 100644 --- a/pkgs/applications/audio/mpg321/default.nix +++ b/pkgs/applications/audio/mpg321/default.nix @@ -1,4 +1,4 @@ -{stdenv, fetchurl, libao, libmad, libid3tag, zlib, alsaLib +{stdenv, fetchurl, fetchpatch, libao, libmad, libid3tag, zlib, alsaLib # Specify default libao output plugin to use (e.g. "alsa", "pulse" …). # If null, it will use the libao system default. , defaultAudio ? null @@ -13,6 +13,14 @@ stdenv.mkDerivation rec { sha256 = "0ki8mh76bbmdh77qsiw682dvi8y468yhbdabqwg05igmwc1wqvq5"; }; + patches = [ + (fetchpatch { + name = "CVE-2018-7263.patch"; + url = "https://sources.debian.org/data/main/m/mpg321/0.3.2-3/debian/patches/handle_illegal_bitrate_value.patch"; + sha256 = "15simp5fjvm9b024ryfh441rkh2d5bcrizqkzlrh07n9sm7fkw6x"; + }) + ]; + hardeningDisable = [ "format" ]; configureFlags = |