diff options
author | Thomas Gerbet <thomas@gerbet.me> | 2023-03-18 11:51:45 +0100 |
---|---|---|
committer | Thomas Gerbet <thomas@gerbet.me> | 2023-03-18 11:51:45 +0100 |
commit | b3cf05383eb1b717011df8d752709a9ddcd7dffa (patch) | |
tree | d947b6302370a12ea8a12c6b0dd5ba848bcabec0 /pkgs/applications/graphics/jpegoptim | |
parent | 3e1d10de43c327cdd333ac9c89578178e1d94469 (diff) | |
download | nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar.gz nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar.bz2 nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar.lz nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar.xz nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.tar.zst nixpkgs-b3cf05383eb1b717011df8d752709a9ddcd7dffa.zip |
jpegoptim: apply patch for CVE-2023-27781
See https://github.com/tjko/jpegoptim/issues/132
Diffstat (limited to 'pkgs/applications/graphics/jpegoptim')
-rw-r--r-- | pkgs/applications/graphics/jpegoptim/default.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/pkgs/applications/graphics/jpegoptim/default.nix b/pkgs/applications/graphics/jpegoptim/default.nix index ff00d565f47..c7dbb39ae5b 100644 --- a/pkgs/applications/graphics/jpegoptim/default.nix +++ b/pkgs/applications/graphics/jpegoptim/default.nix @@ -1,4 +1,4 @@ -{ lib, stdenv, fetchFromGitHub, libjpeg }: +{ lib, stdenv, fetchFromGitHub, fetchpatch, libjpeg }: stdenv.mkDerivation rec { version = "1.5.2"; @@ -11,6 +11,14 @@ stdenv.mkDerivation rec { sha256 = "sha256-PROQvOqsis8we58OOZ/kuY+L/CoV7XfnY9wvrpsTJu8="; }; + patches = [ + (fetchpatch { + name = "CVE-2023-27781.patch"; + url = "https://github.com/tjko/jpegoptim/commit/29a073ad297a0954f5e865264e24755d0ffe53ed.patch"; + hash = "sha256-YUjVg0cvElhzMG3b4t5bqcqnHAuzDoNvSqe0yvlgX4E="; + }) + ]; + # There are no checks, it seems. doCheck = false; |