gnome2.vte: fix CVE-2012-2738 (just DOS)

2014-02-05 20:24:37 +01:00 · 2014-02-05 20:24:37 +01:00 · d39d5cbc16
parent eed3c8a6ec
commit d39d5cbc16
1 changed files with 8 additions and 1 deletions
--- a/pkgs/desktops/gnome-2/desktop/vte/default.nix
+++ b/pkgs/desktops/gnome-2/desktop/vte/default.nix
@ -9,7 +9,14 @@ stdenv.mkDerivation rec {
    sha256 = "00zrip28issgmz2cqk5k824cbqpbixi5x7k88zxksdqpnq1f414d";
  };

-  patches = [ ./alt.patch ];
+  patches = [
+    ./alt.patch
+    ( fetchurl { # CVE-2012-2738
+      url = "http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/x11-libs/"
+        + "vte/files/vte-0.28.2-limit-arguments.patch?revision=1.1";
+      sha256 = "1s8agx74wa7wlv9ybd5h3dp4hzf4ddg7piyan37g2ab3fnvg4jhn";
+    } )
+  ];

  buildInputs = [ intltool pkgconfig glib gtk ncurses ] ++
                stdenv.lib.optionals pythonSupport [python pygtk];