about summary refs log tree commit diff
path: root/pkgs/applications/networking/pjsip
diff options
context:
space:
mode:
authorRobert Scott <code@humanleg.org.uk>2023-01-07 15:30:31 +0000
committerRobert Scott <code@humanleg.org.uk>2023-01-07 15:30:31 +0000
commit513b8129397e8643bb8629ac098aba2bd44c2104 (patch)
treec06e072033010ddf28e728cce034a987c63da9b0 /pkgs/applications/networking/pjsip
parentac7445e754463cfcf3942c537dc31425bf9b26b6 (diff)
pjsip: add patches for CVE-2022-23537 & CVE-2022-23547
Diffstat (limited to 'pkgs/applications/networking/pjsip')
-rw-r--r--pkgs/applications/networking/pjsip/default.nix20


1 files changed, 19 insertions, 1 deletions
diff --git a/pkgs/applications/networking/pjsip/default.nix b/pkgs/applications/networking/pjsip/default.nix
index 96d0c60df1469..eae9a8a3d87a0 100644
--- a/pkgs/applications/networking/pjsip/default.nix
+++ b/pkgs/applications/networking/pjsip/default.nix
@@ -1,4 +1,12 @@
-{ lib, stdenv, fetchFromGitHub, openssl, libsamplerate, alsa-lib, AppKit }:
+{ lib
+, stdenv
+, fetchFromGitHub
+, fetchpatch
+, openssl
+, libsamplerate
+, alsa-lib
+, AppKit
+}:
 
 stdenv.mkDerivation rec {
   pname = "pjsip";
@@ -13,6 +21,16 @@ stdenv.mkDerivation rec {
 
   patches = [
     ./fix-aarch64.patch
+    (fetchpatch {
+      name = "CVE-2022-23537.patch";
+      url = "https://github.com/pjsip/pjproject/commit/d8440f4d711a654b511f50f79c0445b26f9dd1e1.patch";
+      sha256 = "sha256-7ueQCHIiJ7MLaWtR4+GmBc/oKaP+jmEajVnEYqiwLRA=";
+    })
+    (fetchpatch {
+      name = "CVE-2022-23547.patch";
+      url = "https://github.com/pjsip/pjproject/commit/bc4812d31a67d5e2f973fbfaf950d6118226cf36.patch";
+      sha256 = "sha256-bpc8e8VAQpfyl5PX96G++6fzkFpw3Or1PJKNPKl7N5k=";
+    })
   ];
 
   buildInputs = [ openssl libsamplerate ]

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-27 06:42:42 +0000