tjh.dev
1{ lib, stdenv, fetchurl
2, ed, autoreconfHook
3}:
4
5stdenv.mkDerivation rec {
6 pname = "patch";
7 version = "2.7.6";
8
9 src = fetchurl {
10 url = "mirror://gnu/patch/patch-${version}.tar.xz";
11 sha256 = "1zfqy4rdcy279vwn2z1kbv19dcfw25d2aqy9nzvdkq5bjzd0nqdc";
12 };
13
14 patches = [
15 # https://git.savannah.gnu.org/cgit/patch.git/patch/?id=f290f48a621867084884bfff87f8093c15195e6a
16 ./CVE-2018-6951.patch
17
18 # https://git.savannah.gnu.org/cgit/patch.git/patch/?id=b5a91a01e5d0897facdd0f49d64b76b0f02b43e1
19 ./Allow_input_files_to_be_missing_for_ed-style_patches.patch
20
21 # https://git.savannah.gnu.org/cgit/patch.git/patch/?id=123eaff0d5d1aebe128295959435b9ca5909c26d
22 ./CVE-2018-1000156.patch
23
24 # https://git.savannah.gnu.org/cgit/patch.git/commit/?id=9c986353e420ead6e706262bf204d6e03322c300
25 ./CVE-2018-6952.patch
26
27 # https://git.savannah.gnu.org/cgit/patch.git/patch/?id=dce4683cbbe107a95f1f0d45fabc304acfb5d71a
28 ./CVE-2019-13636.patch
29
30 # https://git.savannah.gnu.org/cgit/patch.git/patch/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0
31 ./CVE-2019-13638-and-CVE-2018-20969.patch
32 ];
33
34 nativeBuildInputs = [ autoreconfHook ];
35
36 configureFlags = lib.optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
37 "ac_cv_func_strnlen_working=yes"
38 ];
39
40 doCheck = stdenv.hostPlatform.libc != "musl"; # not cross;
41 nativeCheckInputs = [ed];
42
43 meta = {
44 description = "GNU Patch, a program to apply differences to files";
45
46 longDescription =
47 '' GNU Patch takes a patch file containing a difference listing
48 produced by the diff program and applies those differences to one or
49 more original files, producing patched versions.
50 '';
51
52 homepage = "https://savannah.gnu.org/projects/patch";
53
54 license = lib.licenses.gpl3Plus;
55
56 maintainers = [ ];
57 platforms = lib.platforms.all;
58 };
59}