public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #72025 from risicle/ris-file-CVE-2019-18218 

file: add patch for CVE-2019-18218
This commit is contained in:
Christian Kauhaus 2019-10-28 11:30:13 +01:00 committed by GitHub
parent bf4926dd0c 99273fc555
commit 9d87889b34
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
pkgs/tools/misc/file/default.nix
View File

@ -1,4 +1,4 @@
{ stdenv, fetchurl, file, zlib, libgnurx }: { stdenv, fetchurl, fetchpatch, file, zlib, libgnurx }:
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
pname = "file"; pname = "file";
@ -12,6 +12,14 @@ stdenv.mkDerivation rec {
sha256 = "0zz0p9bqnswfx0c16j8k62ivjq1m16x10xqv4hy9lcyxyxkkkhg9"; sha256 = "0zz0p9bqnswfx0c16j8k62ivjq1m16x10xqv4hy9lcyxyxkkkhg9";
}; };
patches = [
(fetchpatch {
name = "CVE-2019-18218.patch";
url = "https://sources.debian.org/data/main/f/file/1:5.37-6/debian/patches/cherry-pick.FILE5_37-67-g46a8443f.limit-the-number-of-elements-in-a-vector-found-by-oss-fuzz.patch";
sha256 = "1i22y91yndc3n2p2ngczp1lwil8l05sp8ciicil74xrc5f91y6mj";
})
];
nativeBuildInputs = stdenv.lib.optional (stdenv.hostPlatform != stdenv.buildPlatform) file; nativeBuildInputs = stdenv.lib.optional (stdenv.hostPlatform != stdenv.buildPlatform) file;
buildInputs = [ zlib ] buildInputs = [ zlib ]
++ stdenv.lib.optional stdenv.hostPlatform.isWindows libgnurx; ++ stdenv.lib.optional stdenv.hostPlatform.isWindows libgnurx;