487fb291d9
This commit fetches a patch for CVE-2019-18359 from Gentoo's repository [1]. Previously openSuSE[2] was used, but that did not work well with `fetchpatch` and having copies of patches is discouraged. This commit should also close https://github.com/NixOS/nixpkgs/issues/90893 [1]: https://gitweb.gentoo.org/repo/gentoo.git/commit/media-sound/mp3gain?id=36f8689f7903548f5d89827a6e7bdf70a9882cee [2]: https://build.opensuse.org/package/view_file/openSUSE:Factory/mp3gain/0001-fix-security-bugs.patch
36 lines
1021 B
Nix
36 lines
1021 B
Nix
{ stdenv, fetchurl, fetchpatch, unzip, mpg123 }:
|
|
|
|
stdenv.mkDerivation {
|
|
name = "mp3gain-1.6.2";
|
|
src = fetchurl {
|
|
url = "mirror://sourceforge/mp3gain/mp3gain-1_6_2-src.zip";
|
|
sha256 = "0varr6y7k8zarr56b42r0ad9g3brhn5vv3xjg1c0v19jxwr4gh2w";
|
|
};
|
|
|
|
buildInputs = [ unzip mpg123 ];
|
|
|
|
sourceRoot = ".";
|
|
|
|
patches = [
|
|
(fetchpatch {
|
|
name = "0001-fix-security-bugs.patch";
|
|
url = "https://gitweb.gentoo.org/repo/gentoo.git/plain/media-sound/mp3gain/files/mp3gain-1.6.2-CVE-2019-18359-plus.patch?id=36f8689f7903548f5d89827a6e7bdf70a9882cee";
|
|
sha256 = "10n53wm0xynlcxqlnaqfgamjzcpfz41q1jlg0bhw4kq1kzhs4yyw";
|
|
})
|
|
];
|
|
|
|
buildFlags = [ "OSTYPE=linux" ];
|
|
|
|
installPhase = ''
|
|
install -vD mp3gain "$out/bin/mp3gain"
|
|
'';
|
|
|
|
meta = with stdenv.lib; {
|
|
description = "Lossless mp3 normalizer with statistical analysis";
|
|
homepage = "http://mp3gain.sourceforge.net/";
|
|
license = licenses.lgpl21;
|
|
platforms = platforms.linux;
|
|
maintainers = with maintainers; [ devhell ];
|
|
};
|
|
}
|