libtiff: add patch for CVE-2022-22844

2024-11-26 08:53:21 +00:00 · 2022-02-04 23:56:54 +00:00 · 2022-02-04 23:56:54 +00:00 · 0f049646e6
commit 0f049646e6
parent f48c4bb72d
1 changed files with 6 additions and 0 deletions
--- a/pkgs/development/libraries/libtiff/default.nix
+++ b/pkgs/development/libraries/libtiff/default.nix
@ -1,5 +1,6 @@
 { lib, stdenv
 , fetchurl
+, fetchpatch

 , autoreconfHook
 , pkg-config
@ -27,6 +28,11 @@ stdenv.mkDerivation rec {
    # libc++abi 11 has an `#include <version>`, this picks up files name
    # `version` in the project's include paths
    ./rename-version.patch
+    (fetchpatch {
+      name = "CVE-2022-22844.patch";
+      url = "https://gitlab.com/libtiff/libtiff/-/commit/03047a26952a82daaa0792957ce211e0aa51bc64.patch";
+      sha256 = "0cfih55f5qpc84mvlwsffik80bgz6drkflkhrdyqq8m84jw3mbwb";
+    })
  ];

  postPatch = ''