libtiff: add patches for CVE-2022-0561 & CVE-2022-0562

author: Robert Scott <code@humanleg.org.uk> 2022-02-21 19:28:24 +0000
committer: Robert Scott <code@humanleg.org.uk> 2022-02-21 19:28:24 +0000
commit: 7d6abd197c1b5853d3fe57ef2202b8092f340d66 (patch)
tree: b9af3723c0dcbcbb810d1b52f0162bb822f1e993 /pkgs/development/libraries/libtiff
parent: c05bf8a9ce96f9a5882470c9549301efe54f75c0 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/pkgs/development/libraries/libtiff/default.nix b/pkgs/development/libraries/libtiff/default.nix
index a724d5f7fec34..1420b25e6b4a9 100644
--- a/pkgs/development/libraries/libtiff/default.nix
+++ b/pkgs/development/libraries/libtiff/default.nix
@@ -33,6 +33,16 @@ stdenv.mkDerivation rec {
       url = "https://gitlab.com/libtiff/libtiff/-/commit/03047a26952a82daaa0792957ce211e0aa51bc64.patch";
       sha256 = "0cfih55f5qpc84mvlwsffik80bgz6drkflkhrdyqq8m84jw3mbwb";
     })
+    (fetchpatch {
+      name = "CVE-2022-0561.patch";
+      url = "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef.patch";
+      sha256 = "0m57fdxyvhhr9cc260lvkkn2g4zr4n4v9nricc6lf9h6diagd7mk";
+    })
+    (fetchpatch {
+      name = "CVE-2022-0562.patch";
+      url = "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b.patch";
+      sha256 = "0ycirjjc1vigj03kwjb92n6jszsl9p17ccw5hry7lli9gxyyr0an";
+    })
   ];
 
   postPatch = ''
author	Robert Scott <code@humanleg.org.uk>	2022-02-21 19:28:24 +0000
committer	Robert Scott <code@humanleg.org.uk>	2022-02-21 19:28:24 +0000
commit	7d6abd197c1b5853d3fe57ef2202b8092f340d66 (patch)
tree	b9af3723c0dcbcbb810d1b52f0162bb822f1e993 /pkgs/development/libraries/libtiff
parent	c05bf8a9ce96f9a5882470c9549301efe54f75c0 (diff)