From 9665c85f992f1a830cf3e0f32089592ba0afd032 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Vladim=C3=ADr=20=C4=8Cun=C3=A1t?= <vcunat@gmail.com>
Date: Sat, 8 Feb 2014 11:52:56 +0100
Subject: [PATCH] kde410.kde_workspace: fix CVE-2013-4132 by upstream patch

---
 pkgs/desktops/kde-4.10/kde-workspace.nix | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/pkgs/desktops/kde-4.10/kde-workspace.nix b/pkgs/desktops/kde-4.10/kde-workspace.nix
index a478dc975fe..57b2fea79b2 100644
--- a/pkgs/desktops/kde-4.10/kde-workspace.nix
+++ b/pkgs/desktops/kde-4.10/kde-workspace.nix
@@ -1,7 +1,8 @@
 { kde, kdelibs, qimageblitz, libdbusmenu_qt, xorg, shared_desktop_ontologies,
   lm_sensors, pciutils, libraw1394, libusb, libxklavier, python, libqalculate,
   xkeyboard_config, kdepimlibs, pam, boost, gpsd, prison, akonadi,
-  libjpeg, pkgconfig, libXft, libXxf86misc, kactivities, qjson, networkmanager
+  libjpeg, pkgconfig, libXft, libXxf86misc, kactivities, qjson, networkmanager,
+  fetchurl
 }:
 
 kde {
@@ -17,6 +18,12 @@ kde {
       kactivities
     ];
 
+  patches = [(fetchurl {
+    url = "https://git.reviewboard.kde.org/r/111261/diff/raw/";
+    sha256 = "0g8qjna1s0imz7801k4iy2ap5z81izi4bncvks7z3n9agji4zf40";
+    name = "CVE-2013-4132.patch";
+  })];
+
   nativeBuildInputs = [ pkgconfig ];
 
   preConfigure =