alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity

strongswan: add patch for CVE-2017-11185

Browse source
This commit is contained in:
Jörg Thalheim 2017-08-25 22:00:29 +01:00
parent 7067c699fa
commit ad7439fbd1
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
pkgs/tools/networking/strongswan/default.nix
View file

@ -1,4 +1,4 @@
{ stdenv, fetchurl, gmp, pkgconfig, python, autoreconfHook
{ stdenv, fetchurl, fetchpatch, gmp, pkgconfig, python, autoreconfHook
, curl, trousers, sqlite, iptables, libxml2, openresolv
, ldns, unbound, pcsclite, openssl, systemd, pam
, enableTNC ? false }:
@ -21,6 +21,10 @@ stdenv.mkDerivation rec {
++ stdenv.lib.optionals stdenv.isLinux [ systemd.dev pam ];
patches = [
(fetchpatch {
url = "https://download.strongswan.org/security/CVE-2017-11185/strongswan-4.4.0-5.5.3_gmp_mpz_export.patch";
sha256 = "1vqf077dq71wai7ma3bpzv55i76b48gp2cf6507chgy4wj04gi73";
})
./ext_auth-path.patch
./firewall_defaults.patch
./updown-path.patch