pyrox.dev
lol
cyrus_sasl: Fix CVE-2013-4122
+6
-1
+6
-1
pkgs/development/libraries/cyrus-sasl/default.nix
+6
-1
pkgs/development/libraries/cyrus-sasl/default.nix
···
1
-
{ lib, stdenv, fetchurl, openssl, openldap, kerberos, db, gettext, pam, fixDarwinDylibNames, autoreconfHook, enableLdap ? false }:
1
+
{ lib, stdenv, fetchurl, openssl, openldap, kerberos, db, gettext,
2
+
pam, fixDarwinDylibNames, autoreconfHook, fetchpatch, enableLdap ? false }:
2
3
3
4
with stdenv.lib;
4
5
stdenv.mkDerivation rec {
···
21
22
22
23
patches = [
23
24
./missing-size_t.patch # https://bugzilla.redhat.com/show_bug.cgi?id=906519
25
+
(fetchpatch { # CVE-2013-4122
26
+
url = "http://sourceforge.net/projects/miscellaneouspa/files/glibc217/cyrus-sasl-2.1.26-glibc217-crypt.diff";
27
+
sha256 = "05l7dh1w9d5fvzg0pjwzqh0fy4ah8y5cv6v67s4ssbq8xwd4pkf2";
28
+
})
24
29
] ++ lib.optional stdenv.isFreeBSD (
25
30
fetchurl {
26
31
url = "http://www.linuxfromscratch.org/patches/blfs/svn/cyrus-sasl-2.1.26-fixes-3.patch";