strongswan: add patch for CVE-2017-11185
This commit is contained in:
parent
7067c699fa
commit
ad7439fbd1
@ -1,4 +1,4 @@
|
||||
{ stdenv, fetchurl, gmp, pkgconfig, python, autoreconfHook
|
||||
{ stdenv, fetchurl, fetchpatch, gmp, pkgconfig, python, autoreconfHook
|
||||
, curl, trousers, sqlite, iptables, libxml2, openresolv
|
||||
, ldns, unbound, pcsclite, openssl, systemd, pam
|
||||
, enableTNC ? false }:
|
||||
@ -21,6 +21,10 @@ stdenv.mkDerivation rec {
|
||||
++ stdenv.lib.optionals stdenv.isLinux [ systemd.dev pam ];
|
||||
|
||||
patches = [
|
||||
(fetchpatch {
|
||||
url = "https://download.strongswan.org/security/CVE-2017-11185/strongswan-4.4.0-5.5.3_gmp_mpz_export.patch";
|
||||
sha256 = "1vqf077dq71wai7ma3bpzv55i76b48gp2cf6507chgy4wj04gi73";
|
||||
})
|
||||
./ext_auth-path.patch
|
||||
./firewall_defaults.patch
|
||||
./updown-path.patch
|
||||
|
Loading…
Reference in New Issue
Block a user