wire-desktop: add CVE-2024-6775 to knownVulnerabilities

wire-desktop on Linux uses electron 29.4.5, which is known to be vulnerable to CVE-2024-6775: cf65edb598/package.json (L85) The MacOS version is even older, and affected by this too. (cherry picked from commit 32309e4468)
2024-11-27 09:23:01 +00:00 · 2024-10-13 16:28:39 +03:00 · 2024-10-13 16:28:39 +03:00 · 92b9278cfc
commit 92b9278cfc
parent d518f33c2f
1 changed files with 1 additions and 0 deletions
--- a/pkgs/applications/networking/instant-messengers/wire-desktop/default.nix
+++ b/pkgs/applications/networking/instant-messengers/wire-desktop/default.nix
@ -57,6 +57,7 @@ let
    homepage = "https://wire.com/";
    downloadPage = "https://wire.com/download/";
    sourceProvenance = with sourceTypes; [ binaryNativeCode ];
+    knownVulnerabilities = [ "CVE-2024-6775" ];
    license = licenses.gpl3Plus;
    maintainers = with maintainers; [
      arianvp