b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

giflib: patch to fix CVE-2022-28506

Browse source 
using the same mitigation the fedora project is using
This commit is contained in:
peter woodman 2023-01-13 07:09:05 -05:00
parent ea98d03597
commit 92535dbc02
No known key found for this signature in database
GPG key ID: E2BEB7BAA835F758
1 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
pkgs/development/libraries/giflib/default.nix
View file

@ -8,7 +8,13 @@ stdenv.mkDerivation rec {
sha256 = "1gbrg03z1b6rlrvjyc6d41bc8j1bsr7rm8206gb1apscyii5bnii";
};
patches = lib.optional stdenv.hostPlatform.isDarwin
patches = [
(fetchpatch {
name = "CVE-2022-28506.patch";
url = "https://src.fedoraproject.org/rpms/giflib/raw/2e9917bf13df114354163f0c0211eccc00943596/f/CVE-2022-28506.patch";
sha256 = "sha256-TBemEXkuox8FdS9RvjnWcTWPaHRo4crcwSR9czrUwBY=";
})
] ++ lib.optional stdenv.hostPlatform.isDarwin
(fetchpatch {
# https://sourceforge.net/p/giflib/bugs/133/
name = "darwin-soname.patch";