diff options
author | Thomas Gerbet <thomas@gerbet.me> | 2024-03-11 23:58:29 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2024-03-11 23:58:29 +0100 |
commit | 37fe5f6f77276651104a5c7170fd0d7fde33e35c (patch) | |
tree | 7cc683793d09ca1a9ce5439b1dd5a54d64b6bc07 | |
parent | f5736d920ce778abd597e38adf69e5213736b223 (diff) | |
parent | 9d59b64009aa1b5424deffe7079035eb84c6b17e (diff) |
Merge pull request #294821 from risicle/ris-frr-CVE-2024-27913
frr: add patch for CVE-2024-27913
-rw-r--r-- | pkgs/servers/frr/default.nix | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/pkgs/servers/frr/default.nix b/pkgs/servers/frr/default.nix index 0ca256f1cbdd5..d588fee004838 100644 --- a/pkgs/servers/frr/default.nix +++ b/pkgs/servers/frr/default.nix @@ -1,6 +1,7 @@ { lib , stdenv , fetchFromGitHub +, fetchpatch # build time , autoreconfHook @@ -94,6 +95,15 @@ stdenv.mkDerivation rec { hash = "sha256-oDPr51vI+tlT1IiUPufmZh/UE0TNKWrn4RqpnGoGxNo="; }; + patches = [ + # fixes crash in OSPF TE parsing + (fetchpatch { + name = "CVE-2024-27913.patch"; + url = "https://github.com/FRRouting/frr/commit/541503eecd302d2cc8456167d130014cd2cf1134.patch"; + hash = "sha256-7NxPlQK/6lbLs/NqNi4OZ2uBWfXw99SiXDR6okNvJlg="; + }) + ]; + nativeBuildInputs = [ autoreconfHook bison |