pyrox.dev
curl: 8.6.0 -> 8.7.1
Fixes CVE-2024-2466, CVE-2024-2398, CVE-2024-2379 and CVE-2024-2004.
Changes:
https://curl.se/changes.html#8_7_1
+4
-3
pkgs/tools/networking/curl/default.nix
+4
-3
pkgs/tools/networking/curl/default.nix
···
49
49
50
50
stdenv.mkDerivation (finalAttrs: {
51
51
pname = "curl";
52
-
version = "8.6.0";
52
+
version = "8.7.1";
53
53
54
54
src = fetchurl {
55
55
urls = [
56
56
"https://curl.haxx.se/download/curl-${finalAttrs.version}.tar.xz"
57
57
"https://github.com/curl/curl/releases/download/curl-${builtins.replaceStrings [ "." ] [ "_" ] finalAttrs.version}/curl-${finalAttrs.version}.tar.xz"
58
58
];
59
-
hash = "sha256-PM1V2Rr5UWU534BiX4GMc03G8uz5utozx2dl6ZEh2xU=";
59
+
hash = "sha256-b+oqrGpGEPvQQAr7C83b5yWKZMY/H2jlhV68DGWXEM0=";
60
60
};
61
61
62
62
postPatch = ''
···
196
196
# nginx-http3 = useThisCurl nixosTests.nginx-http3;
197
197
nginx-http3 = nixosTests.nginx-http3;
198
198
pkg-config = testers.testMetaPkgConfig finalAttrs.finalPackage;
199
+
} // lib.optionalAttrs (stdenv.hostPlatform.system != "x86_64-darwin") {
199
200
static = pkgsStatic.curl;
200
201
} // lib.optionalAttrs (!stdenv.isDarwin) {
201
202
fetchpatch = tests.fetchpatch.simple.override { fetchpatch = (fetchpatch.override { fetchurl = useThisCurl fetchurl; }) // { version = 1; }; };
···
210
211
maintainers = with maintainers; [ lovek323 ];
211
212
platforms = platforms.all;
212
213
# Fails to link against static brotli or gss
213
-
broken = stdenv.hostPlatform.isStatic && (brotliSupport || gssSupport);
214
+
broken = stdenv.hostPlatform.isStatic && (brotliSupport || gssSupport || stdenv.hostPlatform.system == "x86_64-darwin");
214
215
pkgConfigModules = [ "libcurl" ];
215
216
mainProgram = "curl";
216
217
};