jami: don't use main package's patches, mark with knownVulnerabilities

the patches for CVE-2022-39269 & CVE-2022-39244 won't apply to jami's pinned version of pjsip, upstream don't seem to be on top of this either
author: Robert Scott <code@humanleg.org.uk> 2022-10-26 21:23:02 +0100
committer: Robert Scott <code@humanleg.org.uk> 2022-10-26 21:23:32 +0100
commit: f6369651e563eef04a1485c7d9046b1563b3b638 (patch)
tree: 00dbaf20a8955c2bb9cf73b856219cbd8cada79e /pkgs/applications/networking/instant-messengers/jami
parent: 834a64f03983f137010a0f6f7c4e82ab915c7a6b (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/pkgs/applications/networking/instant-messengers/jami/default.nix b/pkgs/applications/networking/instant-messengers/jami/default.nix
index 690f6534e9389..5982b9b0dded0 100644
--- a/pkgs/applications/networking/instant-messengers/jami/default.nix
+++ b/pkgs/applications/networking/instant-messengers/jami/default.nix
@@ -71,10 +71,14 @@ rec {
         sha256 = "sha256-ENRfQh/HCXqInTV0tu8tGQO7+vTbST6XXpptERXMACE=";
       };
 
-      patches = old.patches ++ (map (x: patch-src + x) (readLinesToList ./config/pjsip_patches));
+      patches = (map (x: patch-src + x) (readLinesToList ./config/pjsip_patches));
 
       configureFlags = (readLinesToList ./config/pjsip_args_common)
         ++ lib.optionals stdenv.isLinux (readLinesToList ./config/pjsip_args_linux);
+
+      meta = {
+        knownVulnerabilities = [ "CVE-2022-39269" "CVE-2022-39244" ];
+      } // old.meta;
     });
 
   opendht-jami = opendht.override {
author	Robert Scott <code@humanleg.org.uk>	2022-10-26 21:23:02 +0100
committer	Robert Scott <code@humanleg.org.uk>	2022-10-26 21:23:32 +0100
commit	f6369651e563eef04a1485c7d9046b1563b3b638 (patch)
tree	00dbaf20a8955c2bb9cf73b856219cbd8cada79e /pkgs/applications/networking/instant-messengers/jami
parent	834a64f03983f137010a0f6f7c4e82ab915c7a6b (diff)