pyrox.dev
Merge pull request #224804 from 06kellyjac/deno-patch
deno: fix CVE-2023-28446
authored by Mario Rodas and committed by GitHub 3cde9b5e 4d383f2c
+12
-2
pkgs/development/web/deno/default.nix
+12
-2
pkgs/development/web/deno/default.nix
···
2
2
, lib
3
3
, callPackage
4
4
, fetchFromGitHub
5
+
, fetchpatch
5
6
, rustPlatform
6
7
, installShellFiles
7
8
, tinycc
···
23
24
owner = "denoland";
24
25
repo = pname;
25
26
rev = "v${version}";
26
-
sha256 = "sha256-0S5BSXWnv4DMcc8cijRQx6NyDReg5aJJT65TeNFlkkw=";
27
+
hash = "sha256-0S5BSXWnv4DMcc8cijRQx6NyDReg5aJJT65TeNFlkkw=";
27
28
};
28
-
cargoSha256 = "sha256-DZICb85B9pWT8bV06FYjS604RdomB5nqtR55R00CT8c=";
29
+
cargoHash = "sha256-7Xfnc91yQiAwAF5fvtiwnELUDb7LJeye3GtXNzYkUo8=";
30
+
31
+
cargoPatches = [
32
+
# resolved in 1.31.2
33
+
(fetchpatch {
34
+
name = "CVE-2023-28446.patch";
35
+
url = "https://github.com/denoland/deno/commit/78d430103a8f6931154ddbbe19d36f3b8630286d.patch";
36
+
hash = "sha256-kXwr9wWxk1OaaubCr8pfmSp3TrJMQkbAg72nIHp/seA=";
37
+
})
38
+
];
29
39
30
40
postPatch = ''
31
41
# upstream uses lld on aarch64-darwin for faster builds