From 1d2c529431c87bdb8b86bbe0a73d15b1150ca9d2 Mon Sep 17 00:00:00 2001
From: Robert Scott <code@humanleg.org.uk>
Date: Sat, 7 Sep 2024 12:56:11 +0100
Subject: [PATCH] frr: add patch for CVE-2024-44070

---
 pkgs/servers/frr/default.nix | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/pkgs/servers/frr/default.nix b/pkgs/servers/frr/default.nix
index dbfe3c4dc7c2..d1f8272bd2f8 100644
--- a/pkgs/servers/frr/default.nix
+++ b/pkgs/servers/frr/default.nix
@@ -1,6 +1,7 @@
 { lib
 , stdenv
 , fetchFromGitHub
+, fetchpatch
 
 # build time
 , autoreconfHook
@@ -94,6 +95,14 @@ stdenv.mkDerivation rec {
     hash = "sha256-bY5SSF/fmKQc8ECPik0v/ZlUiFsbZhwG2C5pbmoMzwQ=";
   };
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2024-44070.patch";
+      url = "https://github.com/FRRouting/frr/commit/fea4ed5043b4a523921f970a39a565d2c1ca381f.patch";
+      hash = "sha256-X9FjQeOvo92+mL1z3u5W0LBhhePDAyhFAqh8sAtNNm8=";
+    })
+  ];
+
   nativeBuildInputs = [
     autoreconfHook
     bison