BoomMicrophone/nixpkgs-suyu
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge pull request #137771 from LeSuisse/opentsdb-CVE-2020-35476

Browse source
This commit is contained in:
Sandro 2021-09-14 11:21:46 +02:00 committed by GitHub
commit b5655eebb7
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
pkgs/tools/misc/opentsdb/default.nix
View file

@ -1,4 +1,4 @@
{ lib, stdenv, autoconf, automake, curl, fetchurl, jdk8, makeWrapper, nettools
{ lib, stdenv, autoconf, automake, curl, fetchurl, fetchpatch, jdk8, makeWrapper, nettools
, python, git
}:
@ -13,6 +13,14 @@ stdenv.mkDerivation rec {
sha256 = "0b0hilqmgz6n1q7irp17h48v8fjpxhjapgw1py8kyav1d51s7mm2";
};
patches = [
(fetchpatch {
name = "CVE-2020-35476.patch";
url = "https://github.com/OpenTSDB/opentsdb/commit/b89fded4ee326dc064b9d7e471e9f29f7d1dede9.patch";
sha256 = "1vb9m0a4fsjqcjagiypvkngzgsw4dil8jrlhn5xbz7rwx8x96wvb";
})
];
nativeBuildInputs = [ makeWrapper ];
buildInputs = [ autoconf automake curl jdk nettools python git ];
@ -33,8 +41,5 @@ stdenv.mkDerivation rec {
license = licenses.lgpl21Plus;
platforms = lib.platforms.linux;
maintainers = [ ];
knownVulnerabilities = [
"CVE-2020-35476" # https://github.com/OpenTSDB/opentsdb/issues/2051
];
};
}