1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-24 19:08:30 +00:00
nixpkgs/pkgs/tools/misc/mcrypt/default.nix
Martin Weinelt e24f5eab66
treewide: add CVE identifiers to patches
This allows tools like broken.sh to correctly identify the patched
status.
2020-05-06 23:18:09 +02:00

34 lines
987 B
Nix

{ stdenv, fetchurl, libmcrypt, libmhash }:
stdenv.mkDerivation rec {
version = "2.6.8";
pname = "mcrypt";
src = fetchurl {
url = "mirror://sourceforge/mcrypt/MCrypt/${version}/${pname}-${version}.tar.gz";
sha256 = "5145aa844e54cca89ddab6fb7dd9e5952811d8d787c4f4bf27eb261e6c182098";
};
patches = [
./format-string_CVE-2012-4426.patch
./overflow_CVE-2012-4409.patch
./segv.patch
./sprintf_CVE-2012-4527.patch
];
buildInputs = [ libmcrypt libmhash ];
meta = {
description = "Replacement for old UNIX crypt(1)";
longDescription = ''
mcrypt, and the accompanying libmcrypt, are intended to be replacements
for the old Unix crypt, except that they are under the GPL and support an
ever-wider range of algorithms and modes.
'';
homepage = "http://mcrypt.sourceforge.net";
license = stdenv.lib.licenses.gpl2;
platforms = stdenv.lib.platforms.all;
maintainers = [ stdenv.lib.maintainers.qknight ];
};
}