diff options
author | Raito Bezarius <masterancpp@gmail.com> | 2023-05-09 22:27:23 +0200 |
---|---|---|
committer | Raito Bezarius <masterancpp@gmail.com> | 2023-05-09 22:50:32 +0200 |
commit | 99e65bb00d18003476148d8c153e2b8721b8c335 (patch) | |
tree | 45967b2c419a163ed6c0d0111aa010fcbf9ef16f /pkgs/os-specific/linux/kernel/patches.nix | |
parent | c66d3f2affb01fd3390766089cfc63146d9a0998 (diff) |
linux_*, except testing, 4.14: apply patch for CVE-2023-32233
This applies the patch for CVE-2023-32233 from kernel 4.19 until 6.3, testing (6.4-rc1 at the moment) is excluded because it already have the fix and 4.14 doesn't have this fix queued for the next stable kernel.
Diffstat (limited to 'pkgs/os-specific/linux/kernel/patches.nix')
-rw-r--r-- | pkgs/os-specific/linux/kernel/patches.nix | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/kernel/patches.nix b/pkgs/os-specific/linux/kernel/patches.nix index 5912abf4181dd..f2225096dd5ca 100644 --- a/pkgs/os-specific/linux/kernel/patches.nix +++ b/pkgs/os-specific/linux/kernel/patches.nix @@ -62,4 +62,13 @@ name = "fix-em-ice-bonding"; patch = ./fix-em-ice-bonding.patch; }; + + CVE-2023-32233 = rec { + name = "CVE-2023-32233"; + patch = fetchpatch { + name = name + ".patch"; + url = "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=c1592a89942e9678f7d9c8030efa777c0d57edab"; + hash = "sha256-DYPWgraXPNeFkjtuDYkFXHnCJ4yDewrukM2CCAqC2BE="; + }; + }; } |