public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

strongswan: add patch for CVE-2017-11185

Browse Source
This commit is contained in:
Jörg Thalheim 2017-08-25 22:00:29 +01:00
parent 7067c699fa
commit ad7439fbd1
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkgs/tools/networking/strongswan/default.nix
View File

@ -1,4 +1,4 @@
{ stdenv, fetchurl, gmp, pkgconfig, python, autoreconfHook { stdenv, fetchurl, fetchpatch, gmp, pkgconfig, python, autoreconfHook
, curl, trousers, sqlite, iptables, libxml2, openresolv , curl, trousers, sqlite, iptables, libxml2, openresolv
, ldns, unbound, pcsclite, openssl, systemd, pam , ldns, unbound, pcsclite, openssl, systemd, pam
, enableTNC ? false }: , enableTNC ? false }:
@ -21,6 +21,10 @@ stdenv.mkDerivation rec {
++ stdenv.lib.optionals stdenv.isLinux [ systemd.dev pam ]; ++ stdenv.lib.optionals stdenv.isLinux [ systemd.dev pam ];
patches = [ patches = [
(fetchpatch {
url = "https://download.strongswan.org/security/CVE-2017-11185/strongswan-4.4.0-5.5.3_gmp_mpz_export.patch";
sha256 = "1vqf077dq71wai7ma3bpzv55i76b48gp2cf6507chgy4wj04gi73";
})
./ext_auth-path.patch ./ext_auth-path.patch
./firewall_defaults.patch ./firewall_defaults.patch
./updown-path.patch ./updown-path.patch