pyrox.dev
lol
Merge pull request #104385 from mweinelt/musl
musl: patch CVE-2020-28928
authored by
Andreas Rammhold
and committed by
GitHub
13481f2a
76587f2c
+6
+6
pkgs/os-specific/linux/musl/default.nix
+6
pkgs/os-specific/linux/musl/default.nix
···
62
62
url = "https://raw.githubusercontent.com/openwrt/openwrt/87606e25afac6776d1bbc67ed284434ec5a832b4/toolchain/musl/patches/300-relative.patch";
63
63
sha256 = "0hfadrycb60sm6hb6by4ycgaqc9sgrhh42k39v8xpmcvdzxrsq2n";
64
64
})
65
+
# wcsnrtombs destination buffer overflow, remove >= 1.2.2
66
+
(fetchurl {
67
+
name = "CVE-2020-28928.patch";
68
+
url = "https://www.openwall.com/lists/oss-security/2020/11/20/4/1";
69
+
sha256 = "077n2p165504nz9di6n8y5421591r3lsbcxgih8z26l6mvkhcs2h";
70
+
})
65
71
];
66
72
CFLAGS = [ "-fstack-protector-strong" ]
67
73
++ lib.optional stdenv.hostPlatform.isPower "-mlong-double-64";