commit 58784f72d56b029bc101eb87dd8cc778e56d1d0a · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

fork atom

Merge pull request #209367 from LeSuisse/unzip-CVE-2022-0529-CVE-2022-0530

unzip: apply patch for CVE-2022-0529 and CVE-2022-0530

authored by Robert Scott and committed by GitHub 3 years ago 58784f72 8fea2347

1 changed file

expand all

unified split

pkgs

tools

archivers

unzip

default.nix

pkgs/tools/archivers/unzip/default.nix

··· 51 ]; 52 sha256 = "1h00djdvgjhwfb60wl4qrxbyfsbbnn1qw6l2hkldnif4m8f8r1zj"; 53 }) 54 ] ++ lib.optional enableNLS 55 (fetchurl { 56 url = "https://gitweb.gentoo.org/repo/gentoo.git/plain/app-arch/unzip/files/unzip-6.0-natspec.patch?id=56bd759df1d0c750a065b8c845e93d5dfa6b549d";

··· 51 ]; 52 sha256 = "1h00djdvgjhwfb60wl4qrxbyfsbbnn1qw6l2hkldnif4m8f8r1zj"; 53 }) 54 + (fetchurl { 55 + urls = [ 56 + # original link (will be dead eventually): 57 + "https://sources.debian.org/data/main/u/unzip/6.0-27/debian/patches/28-cve-2022-0529-and-cve-2022-0530.patch" 58 + 59 + "https://web.archive.org/web/20230106200319/https://sources.debian.org/data/main/u/unzip/6.0-27/debian/patches/28-cve-2022-0529-and-cve-2022-0530.patch" 60 + ]; 61 + sha256 = "sha256-on79jElQ+z2ULWAq14RpluAqr9d6itHiZwDkKubBzTc="; 62 + }) 63 ] ++ lib.optional enableNLS 64 (fetchurl { 65 url = "https://gitweb.gentoo.org/repo/gentoo.git/plain/app-arch/unzip/files/unzip-6.0-natspec.patch?id=56bd759df1d0c750a065b8c845e93d5dfa6b549d";