Merge pull request #19916 from grahamc/openslp

openslp: patch for CVE-2016-7567
2016-10-26 21:04:05 -04:00 · 2016-10-26 21:04:05 -04:00 · ad47dd09ac
parent 524d362754 0f7ac8b41f
commit ad47dd09ac
1 changed files with 14 additions and 1 deletions
--- a/pkgs/development/libraries/openslp/default.nix
+++ b/pkgs/development/libraries/openslp/default.nix
@ -1,4 +1,4 @@
-{ stdenv, fetchurl }:
+{ stdenv, fetchurl, fetchpatch }:

 stdenv.mkDerivation {
  name = "openslp-2.0.0";
@ -8,6 +8,19 @@ stdenv.mkDerivation {
    sha256 = "16splwmqp0400w56297fkipaq9vlbhv7hapap8z09gp5m2i3fhwj";
  };

+  patches = [
+    (fetchpatch {
+      name = "openslp-2.0.0-null-pointer-deref.patch";
+      url = "https://svnweb.mageia.org/packages/cauldron/openslp/current/SOURCES/openslp-2.0.0-null-pointer-deref.patch?revision=1019712&view=co";
+      sha256 = "186f3rj3z2lf5h1lpbhqk0szj2a9far1p3mjqg6422f29yjfnz6a";
+    })
+    (fetchpatch {
+      name = "openslp-2.0.0-CVE-2016-7567.patch";
+      url = "https://svnweb.mageia.org/packages/cauldron/openslp/current/SOURCES/openslp-2.0.0-CVE-2016-7567.patch?revision=1057233&view=co";
+      sha256 = "1zrgql91vjjl2v7brlibc8jqndnjz9fclqbdn0b6fklkpwznprny";
+    })
+  ];
+
  meta = with stdenv.lib; {
    homepage = "http://openslp.org/";
    description = "An open-source implementation of the IETF Service Location Protocol";