public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

graphviz: patch CVE-2020-18032 

(cherry picked from commit b4e8099795072dc2ba7fa39898e9bda1db4246ee)
This commit is contained in:
Robert Schütz 2021-05-28 10:59:08 +02:00
parent 8d31a9d644
commit 2899292e07
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
pkgs/tools/graphics/graphviz/base.nix
View File

@ -21,7 +21,14 @@ let
buildCommand = "sed s/dot_root/agroot/g ${raw_patch} > $out"; buildCommand = "sed s/dot_root/agroot/g ${raw_patch} > $out";
}; };
# 2.42 has the patch included # 2.42 has the patch included
patches = optional (lib.versionOlder version "2.42") patchToUse; patches = optional (lib.versionOlder version "2.42") patchToUse
++ optionals (lib.versionOlder version "2.46.0") [
(fetchpatch {
name = "CVE-2020-18032.patch";
url = "https://gitlab.com/graphviz/graphviz/-/commit/784411ca3655c80da0f6025ab20634b2a6ff696b.patch";
sha256 = "1nkw9ism8lkfvxsp5fh95i2l5s5cbjsidbb3g1kjfv10rxkyb41m";
})
];
in in
stdenv.mkDerivation { stdenv.mkDerivation {