diff options
author | Robert Scott <code@humanleg.org.uk> | 2021-07-24 20:07:43 +0100 |
---|---|---|
committer | Robert Scott <code@humanleg.org.uk> | 2021-07-24 22:07:09 +0100 |
commit | edc01d05a925369f518b0f3cef6f3689e561011e (patch) | |
tree | cd168366720ad2c26bb25558319ff251b269f5a1 /pkgs/tools/misc/lrzsz | |
parent | 16105403bdd843540cbef9c63fc0f16c1c6eaa70 (diff) |
lrzsz: add patch for CVE-2018-10195
provide gettext because modifying source files triggers localization regeneration
Diffstat (limited to 'pkgs/tools/misc/lrzsz')
-rw-r--r-- | pkgs/tools/misc/lrzsz/default.nix | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/pkgs/tools/misc/lrzsz/default.nix b/pkgs/tools/misc/lrzsz/default.nix index 55c11b00c93c1..09e90ca07940d 100644 --- a/pkgs/tools/misc/lrzsz/default.nix +++ b/pkgs/tools/misc/lrzsz/default.nix @@ -1,4 +1,4 @@ -{ lib, stdenv, fetchurl }: +{ lib, stdenv, gettext, fetchurl, fetchpatch }: stdenv.mkDerivation rec { name = "lrzsz-0.12.20"; @@ -8,6 +8,16 @@ stdenv.mkDerivation rec { sha256 = "1wcgfa9fsigf1gri74gq0pa7pyajk12m4z69x7ci9c6x9fqkd2y2"; }; + patches = [ + (fetchpatch { + name = "CVE-2018-10195.patch"; + url = "https://bugzilla.redhat.com/attachment.cgi?id=79507"; + sha256 = "0jlh8w0cjaz6k56f0h3a0h4wgc51axmrdn3mdspk7apjfzqcvx3c"; + }) + ]; + + nativeBuildInputs = [ gettext ]; + hardeningDisable = [ "format" ]; configureFlags = [ "--program-transform-name=s/^l//" ]; |