summary refs log tree commit diff
path: root/pkgs/tools/archivers/p7zip
diff options
context:
space:
mode:
authorFranz Pletz <fpletz@fnordicwalking.de>2018-01-29 10:54:20 +0100
committerFranz Pletz <fpletz@fnordicwalking.de>2018-01-29 10:54:45 +0100
commiteaaca14c30ff539f02354b7524da8d0df491d728 (patch)
tree1e0b8bd91770848659c73c7b7e953717f839a3d5 /pkgs/tools/archivers/p7zip
parentf8c4ccd89b710522b72069868f80e078f101ca67 (diff)
downloadnixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar.gz
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar.bz2
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar.lz
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar.xz
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.tar.zst
nixpkgs-eaaca14c30ff539f02354b7524da8d0df491d728.zip
p7zip: add patch to fix CVE-2017-17969
Diffstat (limited to 'pkgs/tools/archivers/p7zip')
-rw-r--r--pkgs/tools/archivers/p7zip/default.nix5


1 files changed, 5 insertions, 0 deletions
diff --git a/pkgs/tools/archivers/p7zip/default.nix b/pkgs/tools/archivers/p7zip/default.nix
index 3550b7d7de3..886ed817909 100644
--- a/pkgs/tools/archivers/p7zip/default.nix
+++ b/pkgs/tools/archivers/p7zip/default.nix
@@ -15,6 +15,11 @@ stdenv.mkDerivation rec {
       url = "https://src.fedoraproject.org/cgit/rpms/p7zip.git/plain/${name}?id=4b3973f6a5d";
       sha256 = "09wbkzai46bwm8zmplsz0m4jck3qn7snr68i9p1gsih300zidj0m";
     })
+    (fetchpatch rec {
+      name = "CVE-2017-17969.patch";
+      url = "https://anonscm.debian.org/cgit/users/robert/p7zip.git/plain/debian/patches/13-${name}?h=debian/16.02%2bdfsg-5";
+      sha256 = "16lbf6rgyl7xwxfjgg1243jvi39yb3i5pgqfnxswyc0jzhxv81d7";
+    })
   ];
 
   # Default makefile is full of impurities on Darwin. The patch doesn't hurt Linux so I'm leaving it unconditional

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-16 21:41:01 +0000