public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

apr: add patch for CVE-2021-35940 

(cherry picked from commit c6c39b5944d1ebc7f294ea9b78350beec67b21a8)
This commit is contained in:
Robert Scott 2021-08-30 12:34:28 +01:00 committed by github-actions[bot]
parent 4d71703763
commit ef698f793f
1 changed files with 10 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
pkgs/development/libraries/apr/default.nix
View File

@ -1,4 +1,4 @@
{ lib, stdenv, fetchurl, autoreconfHook }: { lib, stdenv, fetchurl, fetchpatch, autoreconfHook }:
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
name = "apr-1.7.0"; name = "apr-1.7.0";
@ -8,7 +8,15 @@ stdenv.mkDerivation rec {
sha256 = "1spp6r2a3xcl5yajm9safhzyilsdzgagc2dadif8x6z9nbq4iqg2"; sha256 = "1spp6r2a3xcl5yajm9safhzyilsdzgagc2dadif8x6z9nbq4iqg2";
}; };
patches = lib.optionals stdenv.isDarwin [ ./is-this-a-compiler-bug.patch ]; patches = [
(fetchpatch {
name = "CVE-2021-35940.patch";
url = "https://dist.apache.org/repos/dist/release/apr/patches/apr-1.7.0-CVE-2021-35940.patch";
sha256 = "1qd511dyqa1b7bj89iihrlbaavbzl6yyblqginghmcnhw8adymbs";
# convince fetchpatch to restore missing `a/`, `b/` to paths
extraPrefix = "";
})
] ++ lib.optionals stdenv.isDarwin [ ./is-this-a-compiler-bug.patch ];
# This test needs the net # This test needs the net
postPatch = '' postPatch = ''