cpio: fix CVE-2014-9112 by Fedora patch

This commit is contained in:
Vladimír Čunát 2014-12-10 19:20:28 +01:00
parent be2060f1e7
commit 225ddcda9a

View File

@ -1,4 +1,4 @@
{stdenv, fetchurl}:
{ stdenv, fetchurl, fetchpatch }:
stdenv.mkDerivation {
name = "cpio-2.11";
@ -8,7 +8,15 @@ stdenv.mkDerivation {
sha256 = "bb820bfd96e74fc6ce43104f06fe733178517e7f5d1cdee553773e8eff7d5bbd";
};
patches = [ ./no-gets.patch ] ++ stdenv.lib.optional stdenv.isDarwin ./darwin-fix.patch;
patches = [
./no-gets.patch
(fetchpatch {
name = "CVE-2014-9112.diff";
url = "http://pkgs.fedoraproject.org/cgit/cpio.git/plain/cpio-2.11"
+ "-CVE-2014-9112.patch?h=f21&id=b475b4d6f31c95e073edc95c742a33a39ef4ec95";
sha256 = "0c9yrysvpwbmiq7ph84dk6mv46hddiyvkgya1zsmj76n9ypb1b4i";
})
] ++ stdenv.lib.optional stdenv.isDarwin ./darwin-fix.patch;
meta = {
homepage = http://www.gnu.org/software/cpio/;