libexif: fix CVE-2017-7544

Patch application simplified during rebasing.
author: Andreas Rammhold <andreas@rammhold.de> 2017-11-09 11:49:23 +0100
committer: Vladimír Čunát <vcunat@gmail.com> 2017-11-11 13:32:09 +0100
commit: 73bec97674389da0ab5a31ad7789efc0df8596f5 (patch)
tree: 360a3bbcdc009f972bdc10ad63223f5fff03fcae /pkgs/development/libraries/libexif
parent: 4d4cd769f6e812028706d6a0e46d268c8ec224c3 (diff)
1 files changed, 10 insertions, 1 deletions
diff --git a/pkgs/development/libraries/libexif/default.nix b/pkgs/development/libraries/libexif/default.nix
index ebcba0fa15530..5a8f5126680e8 100644
--- a/pkgs/development/libraries/libexif/default.nix
+++ b/pkgs/development/libraries/libexif/default.nix
@@ -1,4 +1,4 @@
-{ stdenv, fetchurl, gettext }:
+{ stdenv, fetchurl, fetchpatch, gettext }:
 
 stdenv.mkDerivation rec {
   name = "libexif-0.6.21";
@@ -8,6 +8,15 @@ stdenv.mkDerivation rec {
     sha256 = "06nlsibr3ylfwp28w8f5466l6drgrnydgxrm4jmxzrmk5svaxk8n";
   };
 
+  patches = [
+   (fetchpatch {
+     name = "CVE-2017-7544.patch";
+     url = https://sourceforge.net/p/libexif/bugs/_discuss/thread/fc394c4b/489a/attachment/xx.pat;
+     sha256 = "1qgk8hgnxr8d63jsc4vljxz9yg33mbml280dq4a6050rmk9wq4la";
+   })
+  ];
+  patchFlags = "-p0";
+
   buildInputs = [ gettext ];
 
   meta = {
author	Andreas Rammhold <andreas@rammhold.de>	2017-11-09 11:49:23 +0100
committer	Vladimír Čunát <vcunat@gmail.com>	2017-11-11 13:32:09 +0100
commit	73bec97674389da0ab5a31ad7789efc0df8596f5 (patch)
tree	360a3bbcdc009f972bdc10ad63223f5fff03fcae /pkgs/development/libraries/libexif
parent	4d4cd769f6e812028706d6a0e46d268c8ec224c3 (diff)