1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-22 21:50:55 +00:00
nixpkgs/pkgs/servers/http/jboss/default.nix
Renaud 72619a86c9 JBoss AS: list known vulnerability
CVE-2015-7501

Warning in JBoss module
2017-03-13 18:45:19 +01:00

30 lines
898 B
Nix

{ stdenv, fetchurl, unzip, jdk }:
stdenv.mkDerivation {
name = "jboss-as-7.1.1.Final";
src = fetchurl {
url = http://download.jboss.org/jbossas/7.1/jboss-as-7.1.1.Final/jboss-as-7.1.1.Final.tar.gz;
sha256 = "1bdjw0ib9qr498vpfbg8klqw6rl11vbz7vwn6gp1r5gpqkd3zzc8";
};
buildInputs = [ unzip ];
phases = [ "unpackPhase" "installPhase" "fixupPhase" ];
installPhase = ''
mv $PWD $out
find $out/bin -name \*.sh -print0 | xargs -0 sed -i -e '/#!\/bin\/sh/aJAVA_HOME=${jdk}'
'';
meta = with stdenv.lib; {
homepage = http://www.jboss.org/;
description = "Open Source J2EE application server";
license = licenses.lgpl21;
maintainers = [ maintainers.sander ];
platforms = platforms.unix;
knownVulnerabilities = [
"CVE-2015-7501: remote code execution in apache-commons-collections: InvokerTransformer during deserialisation"
];
};
}