gnash: fix CVE-2012-1175 by upstream patch

This commit is contained in:
Vladimír Čunát 2014-02-06 20:09:49 +01:00
parent f4c4f121cb
commit 11914108aa

View File

@ -10,7 +10,13 @@
assert stdenv ? glibc;
let version = "0.8.10"; in
let version = "0.8.10";
patch_CVE = fetchurl {
url = "http://git.savannah.gnu.org/cgit/gnash.git/patch/?id=bb4dc77eecb6ed1b967e3ecbce3dac6c5e6f1527";
sha256 = "1g7ymbq9vxi0mwcgs2dpyd2sf30gaam7blza0ywiwj32f5wk62v1";
name = "CVE-2012-1175.patch";
};
in
stdenv.mkDerivation rec {
name = "gnash-${version}";
@ -21,6 +27,8 @@ stdenv.mkDerivation rec {
};
patchPhase = ''
patch -p1 < ${patch_CVE}
# Add all libs to `macros/libslist', a list of library search paths.
for lib in ${lib.concatStringsSep " "
(map (lib: "\"${lib}\"/lib")