b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Merge pull request #209367 from LeSuisse/unzip-CVE-2022-0529-CVE-2022-0530

Browse source 
unzip: apply patch for CVE-2022-0529 and CVE-2022-0530
This commit is contained in:
Robert Scott 2023-01-12 22:04:11 +00:00 committed by GitHub
parent 8fea234757 0a3e68ba84
commit 58784f72d5
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
pkgs/tools/archivers/unzip/default.nix
View file

@ -51,6 +51,15 @@ stdenv.mkDerivation rec {
];
sha256 = "1h00djdvgjhwfb60wl4qrxbyfsbbnn1qw6l2hkldnif4m8f8r1zj";
})
(fetchurl {
urls = [
# original link (will be dead eventually):
"https://sources.debian.org/data/main/u/unzip/6.0-27/debian/patches/28-cve-2022-0529-and-cve-2022-0530.patch"
"https://web.archive.org/web/20230106200319/https://sources.debian.org/data/main/u/unzip/6.0-27/debian/patches/28-cve-2022-0529-and-cve-2022-0530.patch"
];
sha256 = "sha256-on79jElQ+z2ULWAq14RpluAqr9d6itHiZwDkKubBzTc=";
})
] ++ lib.optional enableNLS
(fetchurl {
url = "https://gitweb.gentoo.org/repo/gentoo.git/plain/app-arch/unzip/files/unzip-6.0-natspec.patch?id=56bd759df1d0c750a065b8c845e93d5dfa6b549d";