public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

bash: Fix for CVE-2014-7169

Browse Source
This commit is contained in:
Eelco Dolstra 2014-09-25 14:40:44 +02:00
parent 1c20eba035
commit 0a0ebd8c44
2 changed files with 15 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
pkgs/shells/bash/cve-2014-7169.patch Normal file
View File

@ -0,0 +1,13 @@
http://www.openwall.com/lists/oss-security/2014/09/25/10
*** ../bash-20140912/parse.y 2014-08-26 15:09:42.000000000 -0400
--- parse.y 2014-09-24 22:47:28.000000000 -0400
***************
*** 2959,2962 ****
--- 2959,2964 ----
word_desc_to_read = (WORD_DESC *)NULL;
+ eol_ungetc_lookahead = 0;
+
current_token = '\n'; /* XXX */
last_read_token = '\n';

4
pkgs/shells/bash/default.nix
View File

@ -27,14 +27,14 @@ stdenv.mkDerivation rec {
patchFlags = "-p0"; patchFlags = "-p0";
patches = patches =
let (let
patch = nr: sha256: patch = nr: sha256:
fetchurl { fetchurl {
url = "mirror://gnu/bash/bash-4.2-patches/bash42-${nr}"; url = "mirror://gnu/bash/bash-4.2-patches/bash42-${nr}";
inherit sha256; inherit sha256;
}; };
in in
import ./bash-4.2-patches.nix patch; import ./bash-4.2-patches.nix patch) ++ [ ./cve-2014-7169.patch ];
crossAttrs = { crossAttrs = {
configureFlags = baseConfigureFlags + configureFlags = baseConfigureFlags +