jpegoptim: apply patch for CVE-2023-27781

See https://github.com/tjko/jpegoptim/issues/132
2023-03-18 11:51:45 +01:00 · 2023-03-18 11:51:45 +01:00 · b3cf05383e
parent 3e1d10de43
commit b3cf05383e
1 changed files with 9 additions and 1 deletions
--- a/pkgs/applications/graphics/jpegoptim/default.nix
+++ b/pkgs/applications/graphics/jpegoptim/default.nix
@ -1,4 +1,4 @@
-{ lib, stdenv, fetchFromGitHub, libjpeg }:
+{ lib, stdenv, fetchFromGitHub, fetchpatch, libjpeg }:

 stdenv.mkDerivation rec {
  version = "1.5.2";
@ -11,6 +11,14 @@ stdenv.mkDerivation rec {
    sha256 = "sha256-PROQvOqsis8we58OOZ/kuY+L/CoV7XfnY9wvrpsTJu8=";
  };

+  patches = [
+    (fetchpatch {
+      name = "CVE-2023-27781.patch";
+      url = "https://github.com/tjko/jpegoptim/commit/29a073ad297a0954f5e865264e24755d0ffe53ed.patch";
+      hash = "sha256-YUjVg0cvElhzMG3b4t5bqcqnHAuzDoNvSqe0yvlgX4E=";
+    })
+  ];
+
  # There are no checks, it seems.
  doCheck = false;