summary refs log tree commit diff
path: root/pkgs/development/libraries/openjpeg
diff options
context:
space:
mode:
authorTimon Stampfli <timon@timon.ch>2018-10-27 15:25:52 +0200
committerVladimír Čunát <vcunat@gmail.com>2018-11-04 11:08:00 +0100
commit058a3c0806e2148ae3d0519bcaa929b7c2486c17 (patch)
tree42d48f1763f5b2f34780a10f4a449cbf6361d662 /pkgs/development/libraries/openjpeg
parentabea6f461ae886544917e32634e5612b0fc73c13 (diff)
downloadnixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar.gz
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar.bz2
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar.lz
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar.xz
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.tar.zst
nixpkgs-058a3c0806e2148ae3d0519bcaa929b7c2486c17.zip
openjpeg: adding patch for CVE-2018-7648
(cherry picked from commit 3dc0838450ad5ec8c25adcd1c7bfe3b8b630b7e5)
Forward-picking from staging-next.  The CVE is marked as critical,
and the amount of rebuilds isn't that high (~500 linux, ~100 darwin).
Diffstat (limited to 'pkgs/development/libraries/openjpeg')
-rw-r--r--pkgs/development/libraries/openjpeg/2.x.nix8
1 files changed, 8 insertions, 0 deletions
diff --git a/pkgs/development/libraries/openjpeg/2.x.nix b/pkgs/development/libraries/openjpeg/2.x.nix
index d18c971dc11..77d9e5829a1 100644
--- a/pkgs/development/libraries/openjpeg/2.x.nix
+++ b/pkgs/development/libraries/openjpeg/2.x.nix
@@ -5,4 +5,12 @@ callPackage ./generic.nix (args // rec {
   branch = "2.3";
   revision = "v${version}";
   sha256 = "08plxrnfl33sn2vh5nwbsngyv6b1sfpplvx881crm1v1ai10m2lz";
+
+  patches = [
+    (fetchpatch {
+      name = "CVE-2018-7648.patch";
+      url = "https://github.com/uclouvain/openjpeg/commit/cc3824767bde397fedb8a1ae4786a222ba860c8d.patch";
+      sha256 = "1j5nxmlgyfkxldk2f1ij6h850xw45q3b5brxqa04dxsfsv8cdj5j";
+    })
+  ];
 })
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-08 05:53:31 +0000