mirror of
https://github.com/ilyakooo0/nixpkgs.git
synced 2024-12-29 14:57:28 +03:00
pythonPackages.pysaml2: patch against external XML entities (CVE-2016-10127)
This commit is contained in:
parent
b81d07e6e6
commit
cda11c958e
@ -19540,9 +19540,18 @@ in {
|
||||
sha256 = "0y2iw1dddcvi13xjh3l52z1mvnrbc41ik9k4nn7lwj8x5kimnk9n";
|
||||
};
|
||||
|
||||
patches = [
|
||||
(pkgs.fetchpatch {
|
||||
name = "CVE-2016-10127.patch";
|
||||
url = "https://sources.debian.net/data/main/p/python-pysaml2/3.0.0-5/debian/patches/fix-xxe-in-xml-parsing.patch";
|
||||
sha256 = "184lkwdayjqiahzsn4yp15parqpmphjsb1z7zwd636jvarxqgs2q";
|
||||
})
|
||||
];
|
||||
|
||||
propagatedBuildInputs = with self; [
|
||||
repoze_who paste cryptography pycrypto pyopenssl ipaddress six cffi idna
|
||||
enum34 pytz setuptools zope_interface dateutil requests2 pyasn1 webob decorator pycparser
|
||||
defusedxml
|
||||
];
|
||||
buildInputs = with self; [
|
||||
Mako pytest memcached pymongo mongodict pkgs.xmlsec
|
||||
|
Loading…
Reference in New Issue
Block a user