From 19916860db67aa58750fa270ab37e42c9aaf2890 Mon Sep 17 00:00:00 2001
From: Thomas Gerbet <thomas@gerbet.me>
Date: Fri, 19 May 2023 16:36:39 +0200
Subject: [PATCH] xpdf: add recent CVE IDs to the knownVulnerabilities

The package already has some known vulnerabilities. I'm adding the new
ones mostly to save future me some time so I do not have to ask myself
if this long list on unpatched issues is expected or not.

Upstream expects to to fix all of that in xpdf 5.
---
 pkgs/applications/misc/xpdf/default.nix | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/pkgs/applications/misc/xpdf/default.nix b/pkgs/applications/misc/xpdf/default.nix
index 168db4e3bd93..0205208c86ba 100644
--- a/pkgs/applications/misc/xpdf/default.nix
+++ b/pkgs/applications/misc/xpdf/default.nix
@@ -78,6 +78,27 @@ stdenv.mkDerivation rec {
       "CVE-2019-9587: loop in PDF objects"
       "CVE-2019-9588: loop in PDF objects"
       "CVE-2019-16088: loop in PDF objects"
+      "CVE-2022-38334"
+      "CVE-2022-38928"
+      "CVE-2022-41842"
+      "CVE-2022-41843"
+      "CVE-2022-41844"
+      "CVE-2022-43071"
+      "CVE-2022-43295"
+      "CVE-2022-45586"
+      "CVE-2022-45587"
+      "CVE-2023-2662"
+      "CVE-2023-2663"
+      "CVE-2023-2664"
+      "CVE-2023-26930"
+      "CVE-2023-26931"
+      "CVE-2023-26934"
+      "CVE-2023-26935"
+      "CVE-2023-26936"
+      "CVE-2023-26937"
+      "CVE-2023-26938"
+      "CVE-2023-27655"
+      "CVE-2023-31557"
     ];
   };
 }