mirror of
https://github.com/ilyakooo0/nixpkgs.git
synced 2024-12-26 04:43:09 +03:00
exiv2: fix CVE-2014-9449 by upstream patch
It's just a crash fix, not a "real" vulnerability.
This commit is contained in:
parent
529e2b281a
commit
da3105d538
@ -1,15 +1,21 @@
|
||||
{stdenv, fetchurl, zlib, expat}:
|
||||
{stdenv, fetchurl, fetchpatch, zlib, expat}:
|
||||
|
||||
stdenv.mkDerivation rec {
|
||||
name = "exiv2-0.24";
|
||||
|
||||
|
||||
src = fetchurl {
|
||||
url = "http://www.exiv2.org/${name}.tar.gz";
|
||||
sha256 = "13pgvz14kyapxl89pxjaq3274k56d5lzfckpg1g9z7gvqzk4797l";
|
||||
};
|
||||
|
||||
|
||||
patches = [(fetchpatch {
|
||||
name = "CVE-2014-9449.diff";
|
||||
url = "http://dev.exiv2.org/projects/exiv2/repository/revisions/3264/diff?format=diff&rev_to=3263";
|
||||
sha256 = "02w0fksl966d4v6bkg6rq3wmvv8xjpvfp47qr0nv1xq0bphxqzag";
|
||||
})];
|
||||
|
||||
propagatedBuildInputs = [zlib expat];
|
||||
|
||||
|
||||
# configure script finds zlib&expat but it thinks that they're in /usr
|
||||
configureFlags = "--with-zlib=${zlib} --with-expat=${expat}";
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user