mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-28 09:53:10 +00:00
linux_4_9: patch for CVE-2017-5986
Seems fairly low impact[1] but we might as well patch it until a new 4.9 version is released [1]: https://bugzilla.redhat.com/show_bug.cgi?id=1420276
This commit is contained in:
parent
73577a2b05
commit
e8007c0e89
@ -175,4 +175,13 @@ rec {
|
||||
};
|
||||
};
|
||||
|
||||
sctp_bug_on_CVE_2017_5986 = rec
|
||||
{ name = "sctp_BUG_ON_CVE_2017_5986.patch";
|
||||
patch = fetchpatch {
|
||||
inherit name;
|
||||
url = "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/patch/?id=2dcab598484185dea7ec22219c76dcdd59e3cb90";
|
||||
sha256 = "15np10bfm5yzby9zbkrh23qpm91wnprblsk0xn9yjryypnz8njxh";
|
||||
};
|
||||
};
|
||||
|
||||
}
|
||||
|
@ -11294,6 +11294,7 @@ with pkgs;
|
||||
# !!! 4.7 patch doesn't apply, 4.9 patch not up yet, will keep checking
|
||||
# kernelPatches.cpu-cgroup-v2."4.7"
|
||||
kernelPatches.modinst_arg_list_too_long
|
||||
kernelPatches.sctp_bug_on_CVE_2017_5986
|
||||
]
|
||||
++ lib.optionals ((platform.kernelArch or null) == "mips")
|
||||
[ kernelPatches.mips_fpureg_emu
|
||||
|
Loading…
Reference in New Issue
Block a user