diff options
author | Franz Pletz <fpletz@fnordicwalking.de> | 2016-11-10 03:49:22 +0100 |
---|---|---|
committer | Franz Pletz <fpletz@fnordicwalking.de> | 2016-11-10 03:50:43 +0100 |
commit | 14a3d2d2fff0717f12cb22a738149762bcc8a11c (patch) | |
tree | 64075d9fc0056573467b02b776853aea829079ef /pkgs/servers/ldap | |
parent | 3190a6c45208bbad97ffe056f01155a2a65ac403 (diff) | |
download | nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar.gz nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar.bz2 nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar.lz nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar.xz nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.tar.zst nixpkgs-14a3d2d2fff0717f12cb22a738149762bcc8a11c.zip |
389-ds-base: add patch to fix CVE-2016-5416
cc #20274
Diffstat (limited to 'pkgs/servers/ldap')
-rw-r--r-- | pkgs/servers/ldap/389/default.nix | 14 |
1 files changed, 11 insertions, 3 deletions
diff --git a/pkgs/servers/ldap/389/default.nix b/pkgs/servers/ldap/389/default.nix index 8d719bec4f5..6ba60ff1772 100644 --- a/pkgs/servers/ldap/389/default.nix +++ b/pkgs/servers/ldap/389/default.nix @@ -1,5 +1,5 @@ -{ stdenv, fetchurl, pkgconfig, perl, pam, nspr, nss, openldap, db, cyrus_sasl -, svrcore, icu, net_snmp, kerberos, pcre, perlPackages +{ stdenv, fetchurl, fetchpatch, pkgconfig, perl, pam, nspr, nss, openldap +, db, cyrus_sasl, svrcore, icu, net_snmp, kerberos, pcre, perlPackages }: let version = "1.3.5.4"; @@ -19,7 +19,15 @@ stdenv.mkDerivation rec { # TODO: Fix bin/ds-logpipe.py, bin/logconv, bin/cl-dump - patches = [ ./perl-path.patch ]; + patches = [ ./perl-path.patch + # https://fedorahosted.org/389/ticket/48354 + (fetchpatch { + name = "389-ds-base-CVE-2016-5416.patch"; + url = "https://fedorahosted.org/389/changeset/3c2cd48b7d2cb0579f7de6d460bcd0c9bb1157bd/?format=diff&new=3c2cd48b7d2cb0579f7de6d460bcd0c9bb1157bd"; + addPrefixes = true; + sha256 = "1kv3a3di1cihkaf8xdbb5mzvhm4c3frx8rc5mji8xgjyj9ni6xja"; + }) + ]; preConfigure = '' # Create perl paths for library imports in perl scripts |