diff options
| author | Robert Scott <code@humanleg.org.uk> | 2023-12-16 12:28:29 +0000 |
|---|---|---|
| committer | Robert Scott <code@humanleg.org.uk> | 2023-12-16 12:28:29 +0000 |
| commit | 38d918c0fe7b659070fd5818ab3e361807aca28b (patch) | |
| tree | 4470d0fde0edac4b42e0556bf26958038fafa76e /pkgs/development/libraries/libsass | |
| parent | 05fdbaa60295296790cddef6c2fe80e5329e06f7 (diff) | |
libsass: add patch for CVE-2022-26592, CVE-2022-43357 & CVE-2022-43358
Diffstat (limited to 'pkgs/development/libraries/libsass')
| -rw-r--r-- | pkgs/development/libraries/libsass/default.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/pkgs/development/libraries/libsass/default.nix b/pkgs/development/libraries/libsass/default.nix index 92f3853b5f719..64abe68afbe2e 100644 --- a/pkgs/development/libraries/libsass/default.nix +++ b/pkgs/development/libraries/libsass/default.nix @@ -1,4 +1,4 @@ -{ lib, stdenv, fetchFromGitHub, autoreconfHook +{ lib, stdenv, fetchFromGitHub, autoreconfHook, fetchpatch , testers }: @@ -18,6 +18,14 @@ stdenv.mkDerivation (finalAttrs: { ''; }; + patches = [ + (fetchpatch { + name = "CVE-2022-26592.CVE-2022-43357.CVE-2022-43358.patch"; + url = "https://github.com/sass/libsass/pull/3184/commits/5bb0ea0c4b2ebebe542933f788ffacba459a717a.patch"; + hash = "sha256-DR6pKFWL70uJt//drzq34LeTzT8rUqgUTpgfUHpD2s4="; + }) + ]; + preConfigure = '' export LIBSASS_VERSION=${finalAttrs.version} ''; |