Skip to content

Commit

Permalink
pythonPackages.pysaml2: patch against external XML entities (CVE-2016…
Browse files Browse the repository at this point in the history 
…-10127)
  • Loading branch information
@grahamc
grahamc committed Jan 20, 2017
1 parent b81d07e commit cda11c9
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions pkgs/top-level/python-packages.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19540,9 +19540,18 @@ in {
sha256 = "0y2iw1dddcvi13xjh3l52z1mvnrbc41ik9k4nn7lwj8x5kimnk9n";
};

patches = [
(pkgs.fetchpatch {
name = "CVE-2016-10127.patch";
url = "https://sources.debian.net/data/main/p/python-pysaml2/3.0.0-5/debian/patches/fix-xxe-in-xml-parsing.patch";
sha256 = "184lkwdayjqiahzsn4yp15parqpmphjsb1z7zwd636jvarxqgs2q";
})
];

propagatedBuildInputs = with self; [
repoze_who paste cryptography pycrypto pyopenssl ipaddress six cffi idna
enum34 pytz setuptools zope_interface dateutil requests2 pyasn1 webob decorator pycparser
defusedxml
];
buildInputs = with self; [
Mako pytest memcached pymongo mongodict pkgs.xmlsec
Expand Down

0 comments on commit cda11c9

Please sign in to comment.