mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-10-30 22:21:26 +00:00
busybox: fix CVE-2017-1587{34}
This commit is contained in:
parent
73bec97674
commit
17fae2499a
@ -1,4 +1,4 @@
|
||||
{ stdenv, lib, buildPackages, fetchurl
|
||||
{ stdenv, lib, buildPackages, fetchurl, fetchpatch
|
||||
, enableStatic ? false
|
||||
, enableMinimal ? false
|
||||
, useMusl ? false, musl
|
||||
@ -39,7 +39,19 @@ stdenv.mkDerivation rec {
|
||||
|
||||
hardeningDisable = [ "format" ] ++ lib.optionals enableStatic [ "fortify" ];
|
||||
|
||||
patches = [ ./busybox-in-store.patch ];
|
||||
patches = [
|
||||
./busybox-in-store.patch
|
||||
(fetchpatch {
|
||||
name = "CVE-2017-15873.patch";
|
||||
url = "https://git.busybox.net/busybox/patch/?id=0402cb32df015d9372578e3db27db47b33d5c7b0";
|
||||
sha256 = "1s3xqifd0dww19mbnzrks0i1az0qwd884sxjzrx33d6a9jxv4dzn";
|
||||
})
|
||||
(fetchpatch {
|
||||
name = "CVE-2017-15874.patch";
|
||||
url = "https://git.busybox.net/busybox/patch/?id=9ac42c500586fa5f10a1f6d22c3f797df11b1f6b";
|
||||
sha256 = "0169p4ylz9zd14ghhb39yfjvbdca2kb21pphylfh9ny7i484ahql";
|
||||
})
|
||||
];
|
||||
|
||||
configurePhase = ''
|
||||
export KCONFIG_NOTIMESTAMP=1
|
||||
|
Loading…
Reference in New Issue
Block a user