summary refs log tree commit diff
path: root/pkgs/development/libraries/gupnp
diff options
context:
space:
mode:
authorThomas Gerbet <thomas@gerbet.me>2021-06-03 23:25:14 +0200
committerThomas Gerbet <thomas@gerbet.me>2021-06-04 13:07:14 +0200
commit78d2a14bb8ee82f7f7d227ab473646460d874159 (patch)
tree6bb7371aa936cdb31e7c5a48e6289dac48a4ef98 /pkgs/development/libraries/gupnp
parent1e5e12d73532d926f43f0ecec6869d40f0cbc77c (diff)
downloadnixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar.gz
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar.bz2
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar.lz
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar.xz
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.tar.zst
nixpkgs-78d2a14bb8ee82f7f7d227ab473646460d874159.zip
gupnp: apply the patch for CVE-2021-33516
Fixes CVE-2021-33516.
https://discourse.gnome.org/t/security-relevant-releases-for-gupnp-issue-cve-2021-33516/6536
Diffstat (limited to 'pkgs/development/libraries/gupnp')
-rw-r--r--pkgs/development/libraries/gupnp/default.nix9
1 files changed, 9 insertions, 0 deletions
diff --git a/pkgs/development/libraries/gupnp/default.nix b/pkgs/development/libraries/gupnp/default.nix
index bd8151d603e..c91d25123f6 100644
--- a/pkgs/development/libraries/gupnp/default.nix
+++ b/pkgs/development/libraries/gupnp/default.nix
@@ -1,5 +1,6 @@
 { lib, stdenv
 , fetchurl
+, fetchpatch
 , meson
 , ninja
 , pkg-config
@@ -28,6 +29,14 @@ stdenv.mkDerivation rec {
     sha256 = "sha256-96AwfqUfXkTRuDL0k92QRURKOk4hHvhd/Zql3W6up9E=";
   };
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2021-33516.patch";
+      url = "https://gitlab.gnome.org/GNOME/gupnp/-/commit/ca6ec9dcb26fd7a2a630eb6a68118659b589afac.patch";
+      sha256 = "sha256-G7e/xNQB7Kp2fPzqVeD/cH3h1co9hZXh55QOUBnAnvU=";
+    })
+  ];
+
   nativeBuildInputs = [
     meson
     ninja
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-29 20:44:28 +0000