forked from mirrors/nixpkgs
4b07b00c0d
We should really avoid that people unknowingly use Adobe Reader, it has literally tens of known high-score code execution vulnerabilities, probably exploited in the wild.
37 lines
1.1 KiB
Nix
37 lines
1.1 KiB
Nix
{ stdenv, fetchurl, libX11, cups, zlib, libxml2, pango, atk, gtk2, glib
|
|
, gdk-pixbuf }:
|
|
|
|
assert stdenv.hostPlatform.system == "i686-linux";
|
|
|
|
let version = "9.5.5"; in
|
|
|
|
stdenv.mkDerivation {
|
|
name = "adobe-reader-${version}-1";
|
|
|
|
builder = ./builder.sh;
|
|
|
|
src = fetchurl {
|
|
url = "http://ardownload.adobe.com/pub/adobe/reader/unix/9.x/${version}/enu/AdbeRdr${version}-1_i486linux_enu.tar.bz2";
|
|
sha256 = "0h35misxrqkl5zlmmvray1bqf4ywczkm89n9qw7d9arqbg3aj3pf";
|
|
};
|
|
|
|
# !!! Adobe Reader contains copies of OpenSSL, libcurl, and libicu.
|
|
# We should probably remove those and use the regular Nixpkgs
|
|
# versions.
|
|
|
|
libPath = stdenv.lib.makeLibraryPath
|
|
[ stdenv.cc.cc libX11 zlib libxml2 cups pango atk gtk2 glib gdk-pixbuf ];
|
|
|
|
passthru.mozillaPlugin = "/libexec/adobe-reader/Browser/intellinux";
|
|
|
|
meta = {
|
|
description = "Adobe Reader, a viewer for PDF documents";
|
|
homepage = "http://www.adobe.com/products/reader";
|
|
license = stdenv.lib.licenses.unfree;
|
|
knownVulnerabilities = [
|
|
"Numerous unresolved vulnerabilities"
|
|
"See: https://www.cvedetails.com/product/497/Adobe-Acrobat-Reader.html?vendor_id=53"
|
|
];
|
|
};
|
|
}
|