pyrox.dev / nixpkgs
lol
fork atom

avahi: patches to handle malformed content from the network

Specifically these where recommended by an upstream maintainer in
[this comment]:

* https://github.com/avahi/avahi/pull/480
* https://github.com/avahi/avahi/pull/515
* https://github.com/avahi/avahi/pull/519

[this comment]: https://github.com/NixOS/nixpkgs/pull/269599#issuecomment-1839059467

Giel van Schijndel a4e8e247 88d2a029

+19
unified split
+19
pkgs/development/libraries/avahi/default.nix
··· 57 57 url = "https://github.com/lathiat/avahi/commit/94cb6489114636940ac683515417990b55b5d66c.patch"; 58 58 sha256 = "sha256-Fanh9bvz+uknr5pAmltqijuUAZIG39JR2Lyq5zGKJ58="; 59 59 }) 60 + # https://github.com/avahi/avahi/pull/480 merged Sept 19 61 + (fetchpatch { 62 + name = "bail-out-unless-escaped-labels-fit.patch"; 63 + url = "https://github.com/avahi/avahi/commit/20dec84b2480821704258bc908e7b2bd2e883b24.patch"; 64 + sha256 = "sha256-p/dOuQ/GInIcUwuFhQR3mGc5YBL5J8ho+1gvzcqEN0c="; 65 + }) 60 66 # CVE-2023-38473 61 67 # https://github.com/lathiat/avahi/pull/486 merged Oct 18 62 68 (fetchpatch { ··· 91 97 url = "https://github.com/avahi/avahi/commit/61b9874ff91dd20a12483db07df29fe7f35db77f.patch"; 92 98 sha256 = "sha256-qR7scfQqhRGxg2n4HQsxVxCLkXbwZi+PlYxrOSEPsL0="; 93 99 excludes = [ ".github/workflows/smoke-tests.sh" ]; 100 + }) 101 + # https://github.com/avahi/avahi/pull/515 merged Nov 3 102 + (fetchpatch { 103 + name = "fix-compare-rrs-with-zero-length-rdata.patch"; 104 + url = "https://github.com/avahi/avahi/commit/177d75e8c43be45a8383d794ce4084dd5d600a9e.patch"; 105 + sha256 = "sha256-uwIyruAWgiWt0yakRrvMdYjjhEhUk5cIGKt6twyXbHw="; 106 + }) 107 + # https://github.com/avahi/avahi/pull/519 merged Nov 8 108 + (fetchpatch { 109 + name = "reject-non-utf-8-service-names.patch"; 110 + url = "https://github.com/avahi/avahi/commit/2b6d3e99579e3b6e9619708fad8ad8e07ada8218.patch"; 111 + sha256 = "sha256-lwSA3eEQgH0g51r0i9/HJMJPRXrhQnTIEDxcYqUuLdI="; 112 + excludes = [ "fuzz/fuzz-domain.c" ]; 94 113 }) 95 114 # https://github.com/avahi/avahi/pull/523 merged Nov 12 96 115 (fetchpatch {