mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-29 00:54:11 +00:00
cpio: fix CVE-2015-1197 by Suse patch
This commit is contained in:
parent
355424724e
commit
f3bf4505a9
|
@ -18,6 +18,15 @@ stdenv.mkDerivation {
|
|||
})
|
||||
] ++ stdenv.lib.optional stdenv.isDarwin ./darwin-fix.patch;
|
||||
|
||||
postPatch = let pp =
|
||||
fetchpatch {
|
||||
name = "CVE-2015-1197.diff";
|
||||
url = "https://marc.info/?l=oss-security&m=142289947619786&w=2";
|
||||
sha256 = "0fr95bj416zfljv40fl1sh50059d18wdmfgaq8ad2fqi5cnbk859";
|
||||
};
|
||||
# one "<" and one "&" sign get mangled in the patch
|
||||
in "cat ${pp} | sed 's/</</;s/&/\\&/' | patch -p1";
|
||||
|
||||
meta = {
|
||||
homepage = http://www.gnu.org/software/cpio/;
|
||||
description = "A program to create or extract from cpio archives";
|
||||
|
|
Loading…
Reference in a new issue