Merge pull request #192127 from risicle/ris-tinyproxy-CVE-2022-40468

tinyproxy: add patch for CVE-2022-40468
This commit is contained in:
Robert Scott 2022-09-22 23:17:12 +01:00 committed by GitHub
commit b11b13845d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -1,4 +1,11 @@
{ lib, stdenv, fetchFromGitHub, autoreconfHook, perl, withDebug ? false }:
{ lib
, stdenv
, fetchFromGitHub
, fetchpatch
, autoreconfHook
, perl
, withDebug ? false
}:
stdenv.mkDerivation rec {
pname = "tinyproxy";
@ -11,6 +18,14 @@ stdenv.mkDerivation rec {
owner = "tinyproxy";
};
patches = [
(fetchpatch {
name = "CVE-2022-40468.patch";
url = "https://github.com/tinyproxy/tinyproxy/commit/3764b8551463b900b5b4e3ec0cd9bb9182191cb7.patch";
sha256 = "sha256-P0c4mUK227ld3703ss5MQhi8Vo2QVTCVXhKmc9fcufk=";
})
];
# perl is needed for man page generation.
nativeBuildInputs = [ autoreconfHook perl ];