summary refs log tree commit diff
path: root/pkgs/development/libraries/cyrus-sasl
diff options
context:
space:
mode:
authorRobert Scott <code@humanleg.org.uk>2019-12-29 20:41:00 +0000
committerFrederik Rietdijk <freddyrietdijk@fridh.nl>2019-12-31 09:31:40 +0100
commit302a77a02cc75709bafa39953bfa84e03aa52e26 (patch)
tree8de8e18df7e97476162baef3d0d108ca66c33c52 /pkgs/development/libraries/cyrus-sasl
parentc93355bb4ab67113478c680e535d3a37b4f263ad (diff)
downloadnixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar.gz
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar.bz2
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar.lz
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar.xz
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.tar.zst
nixpkgs-302a77a02cc75709bafa39953bfa84e03aa52e26.zip
cyrus_sasl: add patch for CVE-2019-19906
sourced from debian as patch isn't even in upstream master yet.
Diffstat (limited to 'pkgs/development/libraries/cyrus-sasl')
-rw-r--r--pkgs/development/libraries/cyrus-sasl/default.nix7
1 files changed, 6 insertions, 1 deletions
diff --git a/pkgs/development/libraries/cyrus-sasl/default.nix b/pkgs/development/libraries/cyrus-sasl/default.nix
index a050dd8d9ca..68f6a7c5d8b 100644
--- a/pkgs/development/libraries/cyrus-sasl/default.nix
+++ b/pkgs/development/libraries/cyrus-sasl/default.nix
@@ -1,6 +1,6 @@
 { lib, stdenv, fetchurl, openssl, openldap, kerberos, db, gettext
 , pam, fixDarwinDylibNames, autoreconfHook, enableLdap ? false
-, buildPackages, pruneLibtoolFiles }:
+, buildPackages, pruneLibtoolFiles, fetchpatch }:
 
 with stdenv.lib;
 stdenv.mkDerivation rec {
@@ -27,6 +27,11 @@ stdenv.mkDerivation rec {
   patches = [
     ./missing-size_t.patch # https://bugzilla.redhat.com/show_bug.cgi?id=906519
     ./cyrus-sasl-ac-try-run-fix.patch
+    (fetchpatch {
+      name = "CVE-2019-19906.patch";
+      url = "https://sources.debian.org/data/main/c/cyrus-sasl2/2.1.27+dfsg-1+deb10u1/debian/patches/0021-CVE-2019-19906.patch";
+      sha256 = "1n4c5wg7l9j8rlbvx8i605j5d39xmj5wm618k8acxl4fmglcmfls";
+    })
   ];
 
   configureFlags = [
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-04 19:38:42 +0000