cpio: fix CVE-2015-1197 by Suse patch

This commit is contained in:
Vladimír Čunát 2015-02-26 21:24:45 +01:00
parent 355424724e
commit f3bf4505a9

View File

@ -18,6 +18,15 @@ stdenv.mkDerivation {
})
] ++ stdenv.lib.optional stdenv.isDarwin ./darwin-fix.patch;
postPatch = let pp =
fetchpatch {
name = "CVE-2015-1197.diff";
url = "https://marc.info/?l=oss-security&m=142289947619786&w=2";
sha256 = "0fr95bj416zfljv40fl1sh50059d18wdmfgaq8ad2fqi5cnbk859";
};
# one "<" and one "&" sign get mangled in the patch
in "cat ${pp} | sed 's/&lt;/</;s/&amp;/\\&/' | patch -p1";
meta = {
homepage = http://www.gnu.org/software/cpio/;
description = "A program to create or extract from cpio archives";