From 03fddb139eff8d83ad279c073029872ecf4cede4 Mon Sep 17 00:00:00 2001 From: Mario Rodas Date: Sun, 16 Dec 2018 19:37:12 -0500 Subject: [PATCH] libvncserver: add CVE-2018-7225 patch --- pkgs/development/libraries/libvncserver/default.nix | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/pkgs/development/libraries/libvncserver/default.nix b/pkgs/development/libraries/libvncserver/default.nix index b325c9b246c2..0a7819743e03 100644 --- a/pkgs/development/libraries/libvncserver/default.nix +++ b/pkgs/development/libraries/libvncserver/default.nix @@ -1,4 +1,4 @@ -{stdenv, fetchurl, +{stdenv, fetchurl, fetchpatch, libtool, libjpeg, openssl, zlib, libgcrypt, autoreconfHook, pkgconfig, libpng, systemd }: @@ -18,6 +18,13 @@ stdenv.mkDerivation { src = fetchurl { inherit (s) url sha256; }; + patches = [ + # CVE-2018-7225. Remove with the next release + (fetchpatch { + url = https://salsa.debian.org/debian/libvncserver/raw/master/debian/patches/CVE-2018-7225.patch; + sha256 = "1hj1lzxsrdmzzl061vg0ncdpvfmvvkrpk8q12mp70qvszcqa7ja3"; + }) + ]; preConfigure = '' sed -e 's@/usr/include/linux@${stdenv.cc.libc}/include/linux@g' -i configure '';