Merge pull request #255959 from delroth/hydron-known-vulnerable

hydron: mark as vulnerable to CVE-2023-4863
author: Pierre Bourdon <delroth@gmail.com> 2023-09-19 22:59:04 +0200
committer: GitHub <noreply@github.com> 2023-09-19 22:59:04 +0200
commit: 3455e899c057eaf58c0d2091b1d2c576e9f3a70a (patch)
tree: d8c100c696e1da912cde00aba1c7dcac76588562 /pkgs/servers
parent: 77d4f3bb1d14b774e5024991acc449c42d9ef0a1 (diff)
parent: fd45d4a3cbe3184240a20fa0c48d6ffa287d424d (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/pkgs/servers/hydron/default.nix b/pkgs/servers/hydron/default.nix
index d0614dec6c10a..9a3381843b556 100644
--- a/pkgs/servers/hydron/default.nix
+++ b/pkgs/servers/hydron/default.nix
@@ -31,6 +31,7 @@ buildGoModule rec {
     homepage = "https://github.com/bakape/hydron";
     description = "High performance media tagger and organizer";
     license = with licenses; [ lgpl3Plus ];
+    knownVulnerabilities = [ "CVE-2023-4863" ];  # Via https://github.com/chai2010/webp dep
     maintainers = with maintainers; [ Madouura ];
   };
 }
author	Pierre Bourdon <delroth@gmail.com>	2023-09-19 22:59:04 +0200
committer	GitHub <noreply@github.com>	2023-09-19 22:59:04 +0200
commit	3455e899c057eaf58c0d2091b1d2c576e9f3a70a (patch)
tree	d8c100c696e1da912cde00aba1c7dcac76588562 /pkgs/servers
parent	77d4f3bb1d14b774e5024991acc449c42d9ef0a1 (diff)
parent	fd45d4a3cbe3184240a20fa0c48d6ffa287d424d (diff)