swendel/nixpkgs
1
0
Fork 0
mirror of https://github.com/SebastianWendel/nixpkgs.git synced 2024-10-20 20:53:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #82552 from danderson/bug-57159-libvorbis

Browse source 
libvorbis: document that patch for CVE-2017-14160 also fixes CVE-2018-10393.
This commit is contained in:
Niklas Hambüchen 2020-03-18 02:50:23 +01:00 committed by GitHub
parent 97c40baa9c b5f90159af
commit 16516cec82
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
pkgs/development/libraries/libvorbis/default.nix
View file

@ -14,7 +14,7 @@ stdenv.mkDerivation rec {
(fetchpatch {
url = "https://gitlab.xiph.org/xiph/vorbis/uploads/a68cf70fa10c8081a633f77b5c6576b7/0001-CVE-2017-14160-make-sure-we-don-t-overflow.patch";
sha256 = "0v21p59cb3z77ch1v6q5dcrd733h91f3m8ifnd7kkkr8gzn17d5x";
name = "CVE-2017-14160";
name = "CVE-2017-14160+CVE-2018-10393.patch";
})
(fetchpatch {
url = "https://gitlab.xiph.org/xiph/vorbis/commit/112d3bd0aaa.diff";