diff options
author | Vladimír Čunát <v@cunat.cz> | 2024-07-09 16:26:38 +0200 |
---|---|---|
committer | Vladimír Čunát <v@cunat.cz> | 2024-07-09 16:26:38 +0200 |
commit | 205fd4226592cc83fd4c0885a3e4c9c400efabb5 (patch) | |
tree | 914931b17da02877a482e45e3310d767bc2c2433 /pkgs/misc | |
parent | 7144d6241f02d171d25fba3edeaf15e0f2592105 (diff) | |
parent | 72f84695f83e0cd56a270890cd1eb06bfe6f2f5b (diff) |
Merge #325769: staging-next-23.11 iteration 10 release-23.11 nixos-23.11-small nixos-23.11
...into release-23.11 A bit late roundup of what's been staged during June. Most likely we'll only ever make binaries for *-linux. (darwin people hopefully use the darwin channel, so they'll get the older binaries)
Diffstat (limited to 'pkgs/misc')
-rw-r--r-- | pkgs/misc/ghostscript/default.nix | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/pkgs/misc/ghostscript/default.nix b/pkgs/misc/ghostscript/default.nix index daf7758b11843..a561dbfe53103 100644 --- a/pkgs/misc/ghostscript/default.nix +++ b/pkgs/misc/ghostscript/default.nix @@ -2,6 +2,7 @@ , stdenv , lib , fetchurl +, fetchpatch , pkg-config , zlib , expat @@ -71,6 +72,26 @@ stdenv.mkDerivation rec { patches = [ ./urw-font-files.patch ./doc-no-ref.diff + (fetchpatch { + name = "CVE-2024-33870.patch"; + url = "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/patch/?id=79aef19c685984dc3da2dc090450407d9fbcff80"; + hash = "sha256-EZOtKbAkNujqAPoD1yWTggXYTdLPPR9uC898JByQwVs="; + }) + (fetchpatch { + name = "CVE-2024-33869.part-1.patch"; + url = "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/patch/?id=5ae2e320d69a7d0973011796bd388cd5befa1a43"; + hash = "sha256-ob2c4aawUxJcsLdhHX9/7CDNnnxO8k1LTqfar5Bgdo8="; + }) + (fetchpatch { + name = "CVE-2024-33869.part-2.patch"; + url = "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/patch/?id=f5336e5b4154f515ac83bc5b9eba94302e6618d4"; + hash = "sha256-2Kx57WJvALpEjR8+uTbF3CBvO/9Ujl652L4Kf+mNRWo="; + }) + (fetchpatch { + name = "CVE-2024-33871.patch"; + url = "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/patch/?id=7145885041bb52cc23964f0aa2aec1b1c82b5908"; + hash = "sha256-a5+WY63lmu++cc8BGREWlIY4S1LEvWqeqTTfBnEY+YM="; + }) ]; outputs = [ "out" "man" "doc" ]; |