Merge pull request #321349 from LeSuisse/libndp-CVE-2024-5564

libndp: apply patch for CVE-2024-5564
author: Robert Scott <code@humanleg.org.uk> 2024-06-29 01:25:25 +0100
committer: GitHub <noreply@github.com> 2024-06-29 01:25:25 +0100
commit: 490e56703fe3225772ea112e6ba9404ed4f7ece2 (patch)
tree: 541cb03bfc9955da22ad25df8687a0e1b34196ba /pkgs/development/libraries
parent: 03cc618841e9ea63a4400c2c8fe45ec0a5cb5cd9 (diff)
parent: e546e8ff516328a6500b68a7ebb72882f8ff4df7 (diff)
1 files changed, 10 insertions, 1 deletions
diff --git a/pkgs/development/libraries/libndp/default.nix b/pkgs/development/libraries/libndp/default.nix
index 436045da89fb2..953b1101e7096 100644
--- a/pkgs/development/libraries/libndp/default.nix
+++ b/pkgs/development/libraries/libndp/default.nix
@@ -1,4 +1,4 @@
-{ lib, stdenv, fetchurl, autoreconfHook }:
+{ lib, stdenv, fetchurl, fetchpatch, autoreconfHook }:
 
 stdenv.mkDerivation rec {
   pname = "libndp";
@@ -9,6 +9,15 @@ stdenv.mkDerivation rec {
     sha256 = "sha256-iP+2buLrUn8Ub1wC9cy8OLqX0rDVfrRr+6SIghqwwCs=";
   };
 
+  patches = [
+    (fetchpatch {
+      # https://github.com/jpirko/libndp/issues/26
+      name = "CVE-2024-5564.patch";
+      url = "https://github.com/jpirko/libndp/commit/05e4ba7b0d126eea4c04387dcf40596059ee24af.patch";
+      hash = "sha256-O7AHjCqic7iUfMbKYLGgBAU+wdR9/MDWxBWJw+CFn/c=";
+    })
+  ];
+
   nativeBuildInputs = [ autoreconfHook ];
 
   configureFlags = lib.optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
author	Robert Scott <code@humanleg.org.uk>	2024-06-29 01:25:25 +0100
committer	GitHub <noreply@github.com>	2024-06-29 01:25:25 +0100
commit	490e56703fe3225772ea112e6ba9404ed4f7ece2 (patch)
tree	541cb03bfc9955da22ad25df8687a0e1b34196ba /pkgs/development/libraries
parent	03cc618841e9ea63a4400c2c8fe45ec0a5cb5cd9 (diff)
parent	e546e8ff516328a6500b68a7ebb72882f8ff4df7 (diff)