ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-09-22 04:57:56 +03:00
Code Issues Projects Releases Wiki Activity

fuseiso: fix CVE-2015-8836 & CVE-2015-8837

Browse Source
This commit is contained in:
Franz Pletz 2016-09-25 17:22:01 +02:00
parent c049fd4a31
commit 668572753c
No known key found for this signature in database
GPG Key ID: 846FDED7792617B4
1 changed files with 22 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
pkgs/tools/filesystems/fuseiso/default.nix
View File

@ -1,15 +1,35 @@
{ stdenv, fetchurl, pkgconfig, fuse, zlib, glib }:
{ stdenv, fetchurl, fetchpatch, pkgconfig, fuse, zlib, glib }:
stdenv.mkDerivation rec {
name = "fuseiso-20070708";
src = fetchurl {
url = "mirror://sourceforge/project/fuseiso/fuseiso/20070708/fuseiso-20070708.tar.bz2";
sha1 = "fe142556ad35dd7e5dc31a16183232a6e2da7692";
sha256 = "127xql52dcdhmh7s5m9xc6q39jdlj3zhbjar1j821kb6gl3jw94b";
};
buildInputs = [ pkgconfig fuse zlib glib ];
patches = let fetchPatchFromDebian = { patch, sha256 }:
fetchpatch {
inherit sha256;
url = "https://sources.debian.net/data/main/f/fuseiso/20070708-3.2/debian/patches/${patch}";
};
in [
(fetchPatchFromDebian {
patch = "00-support_large_iso.patch";
sha256 = "1lmclb1qwzz5f4wlq693g83bblwnjjl73qhgfxbsaac5hnn2shjw";
})
(fetchPatchFromDebian { # CVE-2015-8837
patch = "02-prevent-buffer-overflow.patch";
sha256 = "1ls2pp3mh91pdb51qz1fsd8pwhbky6988bpd156bn7wgfxqzh8ig";
})
(fetchPatchFromDebian { # CVE-2015-8836
patch = "03-prevent-integer-overflow.patch";
sha256 = "100cw07fk4sa3hl7a1gk2hgz4qsxdw99y20r7wpidwwwzy463zcv";
})
];
meta = {
homepage = http://sourceforge.net/projects/fuseiso;
description = "FUSE module to mount ISO filesystem images";