pyrox.dev
lol
audiofile: add many CVE patches (#433160)
authored by
Connor Baker
and committed by
GitHub
39c9d53a
90219eb5
+26
-1
+26
-1
pkgs/by-name/au/audiofile/package.nix
+26
-1
pkgs/by-name/au/audiofile/package.nix
···
16
16
}:
17
17
fetchpatch {
18
18
inherit sha256 name;
19
-
url = "https://salsa.debian.org/multimedia-team/audiofile/raw/debian/0.3.6-4/debian/patches/${debname}";
19
+
url = "https://salsa.debian.org/multimedia-team/audiofile/raw/debian/0.3.6-7/debian/patches/${debname}";
20
20
};
21
21
22
22
in
···
96
96
name = "CVE-2017-6833.patch";
97
97
debname = "10_Check-for-division-by-zero-in-BlockCodec-runPull.patch";
98
98
sha256 = "1rlislkjawq98bbcf1dgl741zd508wwsg85r37ca7pfdf6wgl6z7";
99
+
})
100
+
(fetchDebianPatch {
101
+
name = "CVE-2018-13440.patch";
102
+
debname = "11_CVE-2018-13440.patch";
103
+
sha256 = "sha256-qDfjiBJ4QXgn8588Ra1X0ViH0jBjtFS/+2zEGIUIhuo=";
104
+
})
105
+
(fetchDebianPatch {
106
+
name = "CVE-2018-17095.patch";
107
+
debname = "12_CVE-2018-17095.patch";
108
+
sha256 = "sha256-FC89EFZuRLcj5x4wZVqUlitEMTRPSZk+qzQpIoVk9xY=";
109
+
})
110
+
(fetchDebianPatch {
111
+
name = "CVE-2022-24599.patch";
112
+
debname = "0013-Fix-CVE-2022-24599.patch";
113
+
sha256 = "sha256-DHJQ4B6cvKfSlXy66ZC5RNaCMDaygj8dWLZZhJnhw1E=";
114
+
})
115
+
(fetchDebianPatch {
116
+
name = "1_CVE-2019-13147.patch";
117
+
debname = "0014-Partial-fix-of-CVE-2019-13147.patch";
118
+
sha256 = "sha256-clb/XiIZbmttPr2dT9AZsbQ97W6lwifEwMO4l2ZEh0k=";
119
+
})
120
+
(fetchDebianPatch {
121
+
name = "2_CVE-2019-13147.patch";
122
+
debname = "0015-Partial-fix-of-CVE-2019-13147.patch";
123
+
sha256 = "sha256-JOZIw962ae7ynnjJXGO29i8tuU5Dhk67DmB0o5/vSf4=";
99
124
})
100
125
];
101
126