mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-15 10:12:58 +00:00
a238071df4
the CVE description is currently suggesting
db217f29df
as the fix, but it is wrong
checked this patch does silence valgrind's complaints with
reproducer file https://oss-fuzz.com/download?testcase_id=5275682339422208
48 lines
1.2 KiB
Nix
48 lines
1.2 KiB
Nix
{ lib
|
|
, stdenv
|
|
, fetchFromGitHub
|
|
, zlib
|
|
, ilmbase
|
|
, fetchpatch
|
|
, cmake
|
|
}:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "openexr";
|
|
version = "2.5.7";
|
|
|
|
outputs = [ "bin" "dev" "out" "doc" ];
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "AcademySoftwareFoundation";
|
|
repo = "openexr";
|
|
rev = "v${version}";
|
|
sha256 = "1vja0rbilcd1wn184w8nbcmck00n7bfwlddwiaxw8dhj64nx4468";
|
|
};
|
|
|
|
patches = [
|
|
# Fix pkg-config paths
|
|
(fetchpatch {
|
|
url = "https://github.com/AcademySoftwareFoundation/openexr/commit/2f19a01923885fda75ec9d19332de080ec7102bd.patch";
|
|
sha256 = "1yxmrdzq1x1911wdzwnzr29jmg2r4wd4yx3vhjn0y5dpny0ri5y5";
|
|
})
|
|
(fetchpatch {
|
|
name = "CVE-2021-45942.patch";
|
|
url = "https://github.com/AcademySoftwareFoundation/openexr/commit/11cad77da87c4fa2aab7d58dd5339e254db7937e.patch";
|
|
stripLen = 4;
|
|
extraPrefix = "OpenEXR/IlmImf/";
|
|
sha256 = "1wa2jn6sa0n3phaqvklnlbgk1bz60y756ad4jk4d757pzpnannsy";
|
|
})
|
|
];
|
|
|
|
nativeBuildInputs = [ cmake ];
|
|
propagatedBuildInputs = [ ilmbase zlib ];
|
|
|
|
meta = with lib; {
|
|
description = "A high dynamic-range (HDR) image file format";
|
|
homepage = "https://www.openexr.com/";
|
|
license = licenses.bsd3;
|
|
platforms = platforms.all;
|
|
};
|
|
}
|