swendel/nixpkgs
1
0
Fork 0
mirror of https://github.com/SebastianWendel/nixpkgs.git synced 2024-09-20 04:19:00 +02:00
Code Issues Packages Projects Releases Wiki Activity

rzip: fix CVE-2017-8364

Browse source
This commit is contained in:
Andreas Rammhold 2017-11-08 21:19:12 +01:00
parent e15d6e1b3c
commit 4b759a0011
1 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
pkgs/tools/compression/rzip/default.nix
View file

@ -1,4 +1,4 @@
{stdenv, fetchurl, bzip2}:
{stdenv, fetchurl, fetchpatch, bzip2}:
stdenv.mkDerivation {
name = "rzip-2.1";
@ -8,6 +8,14 @@ stdenv.mkDerivation {
};
buildInputs = [ bzip2 ];
patches = [
(fetchpatch {
name = "CVE-2017-8364-fill-buffer.patch";
url = https://sources.debian.net/data/main/r/rzip/2.1-4.1/debian/patches/80-CVE-2017-8364-fill-buffer.patch;
sha256 = "0jcjlx9ksdvxvjyxmyzscx9ar9992iy5icw0sc3n0p09qi4d6x1r";
})
];
meta = {
homepage = http://rzip.samba.org/;
description = "Compression program";