diff options
author | Thorsten Weber <cpt.chaos83@googlemail.com> | 2019-10-19 21:15:58 +0200 |
---|---|---|
committer | Thorsten Weber <cpt.chaos83@googlemail.com> | 2019-10-20 21:03:49 +0200 |
commit | 4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56 (patch) | |
tree | 6c2815f040001d87fc925ab9ca91770fd7db3b7a /pkgs/tools/archivers/unzip | |
parent | 5b55013aa274c14df01982e4ed3e8c3c3581c744 (diff) | |
download | nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar.gz nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar.bz2 nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar.lz nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar.xz nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.tar.zst nixpkgs-4d33b41d3d1a6ab5107ff60edd16d5ea0bab1e56.zip |
unzip: CVE-2019-13232
Diffstat (limited to 'pkgs/tools/archivers/unzip')
-rw-r--r-- | pkgs/tools/archivers/unzip/default.nix | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/pkgs/tools/archivers/unzip/default.nix b/pkgs/tools/archivers/unzip/default.nix index cdf189e82df..7bbcc906292 100644 --- a/pkgs/tools/archivers/unzip/default.nix +++ b/pkgs/tools/archivers/unzip/default.nix @@ -26,6 +26,21 @@ stdenv.mkDerivation { ./CVE-2016-9844.patch ./CVE-2018-18384.patch ./dont-hardcode-cc.patch + (fetchurl { + url = "https://github.com/madler/unzip/commit/41beb477c5744bc396fa1162ee0c14218ec12213.patch"; + name = "CVE-2019-13232-1.patch"; + sha256 = "04jzd6chg9fw4l5zadkfsrfm5llrd7vhd1dgdjjd29nrvkrjyn14"; + }) + (fetchurl { + url = "https://github.com/madler/unzip/commit/47b3ceae397d21bf822bc2ac73052a4b1daf8e1c.patch"; + name = "CVE-2019-13232-2.patch"; + sha256 = "0iy2wcjyvzwrjk02iszwcpg85fkjxs1bvb9isvdiywszav4yjs32"; + }) + (fetchurl { + url = "https://github.com/madler/unzip/commit/6d351831be705cc26d897db44f878a978f4138fc.patch"; + name = "CVE-2019-13232-3.patch"; + sha256 = "1jvs7dkdqs97qnsqc6hk088alhv8j4c638k65dbib9chh40jd7pf"; + }) ] ++ stdenv.lib.optional enableNLS (fetchurl { url = "http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/app-arch/unzip/files/unzip-6.0-natspec.patch?revision=1.1"; |