JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #82552 from danderson/bug-57159-libvorbis

Browse Source 
libvorbis: document that patch for CVE-2017-14160 also fixes CVE-2018-10393.
This commit is contained in:
Niklas Hambüchen 2020-03-18 02:50:23 +01:00 committed by GitHub
commit 16516cec82
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkgs/development/libraries/libvorbis/default.nix
View File

@ -14,7 +14,7 @@ stdenv.mkDerivation rec {
(fetchpatch {
url = "https://gitlab.xiph.org/xiph/vorbis/uploads/a68cf70fa10c8081a633f77b5c6576b7/0001-CVE-2017-14160-make-sure-we-don-t-overflow.patch";
sha256 = "0v21p59cb3z77ch1v6q5dcrd733h91f3m8ifnd7kkkr8gzn17d5x";
name = "CVE-2017-14160";
name = "CVE-2017-14160+CVE-2018-10393.patch";
})
(fetchpatch {
url = "https://gitlab.xiph.org/xiph/vorbis/commit/112d3bd0aaa.diff";