Merge pull request #189586 from risicle/ris-inetutils-CVE-2022-39028

2024-12-03 12:23:02 +00:00 · 2022-09-10 01:51:12 +02:00 · 2022-09-10 01:51:12 +02:00 · b36cf63020
commit b36cf63020
parent fc4d6d9373 72d2cd3208
1 changed files with 6 additions and 1 deletions
--- a/pkgs/tools/networking/inetutils/default.nix
+++ b/pkgs/tools/networking/inetutils/default.nix
@ -1,5 +1,5 @@
 { stdenv, lib, fetchurl, ncurses, perl, help2man
-, apparmorRulesFromClosure
+, apparmorRulesFromClosure, fetchpatch
 }:

 stdenv.mkDerivation rec {
@ -16,6 +16,11 @@ stdenv.mkDerivation rec {
  patches = [
    # https://git.congatec.com/yocto/meta-openembedded/commit/3402bfac6b595c622e4590a8ff5eaaa854e2a2a3
    ./inetutils-1_9-PATH_PROCNET_DEV.patch
+    (fetchpatch {
+      name = "CVE-2022-39028.patch";
+      url = "https://sources.debian.org/data/main/i/inetutils/2%3A2.3-5/debian/patches/inetutils-telnetd-EC_EL_null_deref.patch";
+      sha256 = "sha256-NYNDbEk3q3EhQdJaR12JBbnjJIRRpOcKLBF/EJJPiGU=";
+    })
  ];

  nativeBuildInputs = [ help2man perl /* for `whois' */ ];