about summary refs log tree commit diff
path: root/pkgs/development/libraries/mbedtls/3.nix
diff options
context:
space:
mode:
Diffstat (limited to 'pkgs/development/libraries/mbedtls/3.nix')
-rw-r--r--pkgs/development/libraries/mbedtls/3.nix10
1 files changed, 9 insertions, 1 deletions
diff --git a/pkgs/development/libraries/mbedtls/3.nix b/pkgs/development/libraries/mbedtls/3.nix
index 267349ac5d7be..abba77308a61c 100644
--- a/pkgs/development/libraries/mbedtls/3.nix
+++ b/pkgs/development/libraries/mbedtls/3.nix
@@ -1,6 +1,14 @@
-{ callPackage }:
+{ callPackage, fetchpatch }:
 
 callPackage ./generic.nix {
   version = "3.5.2";
   hash = "sha256-lVGmnSYccNmRS6vfF/fDiny5cYRPc/wJBpgciFLPUvM=";
+
+  patches = [
+    (fetchpatch {
+      name = "CVE-2024-28755.patch";
+      url = "https://github.com/Mbed-TLS/mbedtls/commit/ad736991bb59211118a29fe115367c24495300c2.patch";
+      hash = "sha256-MUnGT2ptlBikpZYL6+cvoF7fOiD2vMK4cbkgevgyl60=";
+    })
+  ];
 }
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-26 12:23:55 +0000