tjh.dev / nixpkgs
Clone of https://github.com/NixOS/nixpkgs.git (to stress-test knotserver)
fork atom

sddm: add patch for CVE-2020-28049

> Local privilege escalation due to race condition in creation of the Xauthority file.

Fixes: CVE-2020-28049
(cherry picked from commit faf436ea7915672835fce7a6b99576f491595d15)

Martin Weinelt 16ee69c8 d1b07d4c

options
unified split
Changed files
+6 -1
pkgs
applications
display-managers
sddm
default.nix
+6 -1
pkgs/applications/display-managers/sddm/default.nix
··· 1 - { mkDerivation, lib, fetchFromGitHub 1 + { mkDerivation, lib, fetchFromGitHub, fetchpatch 2 2 , cmake, extra-cmake-modules, pkgconfig, libxcb, libpthreadstubs 3 3 , libXdmcp, libXau, qtbase, qtdeclarative, qtquickcontrols2, qttools, pam, systemd 4 4 }: ··· 19 19 20 20 patches = [ 21 21 ./sddm-ignore-config-mtime.patch 22 + (fetchpatch { 23 + name = "CVE-2020-28049.patch"; 24 + url = "https://github.com/sddm/sddm/commit/be202f533ab98a684c6a007e8d5b4357846bc222.patch"; 25 + sha256 = "119zqfldaqs4066wifn64n1xmhv1qd2acd9hcshw9hyl2j84pz8h"; 26 + }) 22 27 ]; 23 28 24 29 postPatch =