From 3d2bd75fc2b433a6b4d2b6126f06a9009c8f3af7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Robert=20Sch=C3=BCtz?= <dev@schuetz-co.de>
Date: Sat, 3 Apr 2021 14:41:39 +0200
Subject: [PATCH] thrift: mark as insecure

See https://repology.org/project/apache-thrift/cves?version=0.13.0.
---
 pkgs/development/libraries/thrift/default.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/pkgs/development/libraries/thrift/default.nix b/pkgs/development/libraries/thrift/default.nix
index 669dff21147..0ff6112af02 100644
--- a/pkgs/development/libraries/thrift/default.nix
+++ b/pkgs/development/libraries/thrift/default.nix
@@ -56,5 +56,8 @@ stdenv.mkDerivation rec {
     license = licenses.asl20;
     platforms = platforms.linux ++ platforms.darwin;
     maintainers = [ maintainers.bjornfor ];
+    knownVulnerabilities = [
+      "CVE-2020-13949"
+    ];
   };
 }