Skip to content

Commit

Permalink
cpio: 2.12 -> 2.13
Browse files Browse the repository at this point in the history 
See https://lists.gnu.org/archive/html/info-gnu/2019-11/msg00002.html
for release information.

Fixes CVE-2019-14866
  • Loading branch information
@lsix @FRidh
lsix authored and FRidh committed Nov 12, 2019
1 parent 30e428c commit fe758f5
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 46 deletions.
29 changes: 0 additions & 29 deletions pkgs/tools/archivers/cpio/CVE-2016-2037-out-of-bounds-write.patch
View file

This file was deleted.

20 changes: 3 additions & 17 deletions pkgs/tools/archivers/cpio/default.nix
View file
@@ -1,30 +1,16 @@
{ stdenv, fetchurl, fetchpatch }:
{ stdenv, fetchurl }:

let
version = "2.12";
version = "2.13";
name = "cpio-${version}";
in stdenv.mkDerivation {
inherit name;

src = fetchurl {
url = "mirror://gnu/cpio/${name}.tar.bz2";
sha256 = "0vi9q475h1rki53100zml75vxsykzyhrn70hidy41s5c2rc8r6bh";
sha256 = "0vbgnhkawdllgnkdn6zn1f56fczwk0518krakz2qbwhxmv2vvdga";
};

patches = [
(fetchpatch {
name = "CVE-2015-1197-cpio-2.12.patch";
url = "https://gist.github.com/nckx/70b0bfa80ddfb86c2967/"
+ "raw/e9b40d4d4b701f584f826775b75beb10751dc884/"
+ "CVE-2015-1197-cpio-2.12.patch";
sha256 = "0ph43m4lavwkc4gnl5h9p3da4kb1pnhwk5l2qsky70dqri8pcr8v";
})

# Report: http://www.openwall.com/lists/oss-security/2016/01/19/4
# Patch from https://lists.gnu.org/archive/html/bug-cpio/2016-01/msg00005.html
./CVE-2016-2037-out-of-bounds-write.patch
];

preConfigure = if stdenv.isCygwin then ''
sed -i gnu/fpending.h -e 's,include <stdio_ext.h>,,'
'' else null;
Expand Down

0 comments on commit fe758f5

Please sign in to comment.