alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity

Merge pull request #221829 from LeSuisse/jpegoptim-CVE-2023-27781

Browse source 
jpegoptim: apply patch for CVE-2023-27781
This commit is contained in:
Martin Weinelt 2023-03-18 13:57:50 +00:00 committed by GitHub
parent 388d764544 b3cf05383e
commit c5b33803cd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
pkgs/applications/graphics/jpegoptim/default.nix
View file

@ -1,4 +1,4 @@
{ lib, stdenv, fetchFromGitHub, libjpeg }:
{ lib, stdenv, fetchFromGitHub, fetchpatch, libjpeg }:
stdenv.mkDerivation rec {
version = "1.5.2";
@ -11,6 +11,14 @@ stdenv.mkDerivation rec {
sha256 = "sha256-PROQvOqsis8we58OOZ/kuY+L/CoV7XfnY9wvrpsTJu8=";
};
patches = [
(fetchpatch {
name = "CVE-2023-27781.patch";
url = "https://github.com/tjko/jpegoptim/commit/29a073ad297a0954f5e865264e24755d0ffe53ed.patch";
hash = "sha256-YUjVg0cvElhzMG3b4t5bqcqnHAuzDoNvSqe0yvlgX4E=";
})
];
# There are no checks, it seems.
doCheck = false;