From 3bd44428cfa0a9f2fe8d1eae62b105e7a5dace86 Mon Sep 17 00:00:00 2001 From: Franz Pletz Date: Sat, 11 Mar 2017 07:09:51 +0100 Subject: [PATCH] lxc: add patch for CVE-2017-5985 --- pkgs/os-specific/linux/lxc/default.nix | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/pkgs/os-specific/linux/lxc/default.nix b/pkgs/os-specific/linux/lxc/default.nix index bf3a05f11161..bab7038aa475 100644 --- a/pkgs/os-specific/linux/lxc/default.nix +++ b/pkgs/os-specific/linux/lxc/default.nix @@ -29,6 +29,11 @@ stdenv.mkDerivation rec { patches = [ ./support-db2x.patch + (fetchurl { + name = "CVE-2017-5985.patch"; + url = "https://github.com/lxc/lxc/commit/d512bd5efb0e407eba350c4e649c464a65b712a3.patch"; + sha256 = "0v1rhlfviadsxj2wmbl7nqb64p6y2bxm9y43sc44jg3k6mkr0r5c"; + }) ]; XML_CATALOG_FILES = "${docbook_xml_dtd_45}/xml/dtd/docbook/catalog.xml";