pyrox.dev / nixpkgs
lol
fork atom
nixpkgs / pkgs / development / libraries / openslp / default.nix
at 23.11-beta 40 lines 1.5 kB view raw
1{ lib, stdenv, fetchurl, fetchpatch }: 2 3stdenv.mkDerivation rec { 4 pname = "openslp"; 5 version = "2.0.0"; 6 7 src = fetchurl { 8 url = "mirror://sourceforge/openslp/${version}/${version}/openslp-${version}.tar.gz"; 9 sha256 = "16splwmqp0400w56297fkipaq9vlbhv7hapap8z09gp5m2i3fhwj"; 10 }; 11 12 patches = [ 13 (fetchpatch { 14 name = "openslp-2.0.0-null-pointer-deref.patch"; 15 url = "https://src.fedoraproject.org/rpms/openslp/raw/696fd55ae4fcea7beda0a25131dca8bfb14bbdf9/f/openslp-2.0.0-null-pointer-deref.patch"; 16 sha256 = "186f3rj3z2lf5h1lpbhqk0szj2a9far1p3mjqg6422f29yjfnz6a"; 17 }) 18 (fetchpatch { 19 name = "openslp-2.0.0-CVE-2016-7567.patch"; 20 url = "https://src.fedoraproject.org/rpms/openslp/raw/696fd55ae4fcea7beda0a25131dca8bfb14bbdf9/f/openslp-2.0.0-cve-2016-7567.patch"; 21 sha256 = "0zp61axx93b7nrbsyhn2x4dnw7n9y6g4rys21hyqxk4khrnc2yr9"; 22 }) 23 ./CVE-2016-4912.patch 24 ./CVE-2019-5544.patch 25 ]; 26 27 meta = with lib; { 28 homepage = "http://www.openslp.org/"; 29 description = "An open-source implementation of the IETF Service Location Protocol"; 30 maintainers = with maintainers; [ ttuegel ]; 31 license = licenses.bsd3; 32 platforms = platforms.all; 33 # never built on aarch64-darwin since first introduction in nixpkgs 34 broken = stdenv.isDarwin && stdenv.isAarch64; 35 knownVulnerabilities = [ 36 "CVE-2023-29552: UDP Reflection Attack with ampliciation factor of up to 2200" 37 ]; 38 }; 39 40}