commit 7c9e643c1558e1985df2c8e331e10ec604717c39

tjh.dev / nixpkgs

Clone of https://github.com/NixOS/nixpkgs.git (to stress-test knotserver)

fork atom

systemd: fix CVE-2019-15718

More details at: https://www.openwall.com/lists/oss-security/2019/09/03/1

Andreas Rammhold 6 years ago 7c9e643c 56b84277

1 changed file

expand all

unified split

pkgs

os-specific

linux

systemd

default.nix

pkgs/os-specific/linux/systemd/default.nix

··· 30 sha256 = "0aczg25ih2gfjq810x8rw6rnpr6sw1lz6z0lvlyw2qphyih68b4x"; 31 }; 32 33 prePatch = let 34 # Upstream's maintenance branches are still too intrusive: 35 # https://github.com/systemd/systemd-stable/tree/v239-stable

··· 30 sha256 = "0aczg25ih2gfjq810x8rw6rnpr6sw1lz6z0lvlyw2qphyih68b4x"; 31 }; 32 33 + patches = [ 34 + (fetchpatch { 35 + name = "CVE-2019-15718.patch"; 36 + url = https://github.com/systemd/systemd/pull/13457/commits/35e528018f315798d3bffcb592b32a0d8f5162bd.patch; 37 + sha256 = "0m0ypnnllx4r6a2qy1586as15i2qrzxwi1sqdp14rzdwajz1rvnv"; 38 + }) 39 + ]; 40 + 41 prePatch = let 42 # Upstream's maintenance branches are still too intrusive: 43 # https://github.com/systemd/systemd-stable/tree/v239-stable