cups-filters: Fix CVE-2023-24805

GHSA-gpxc-v2m8-fr3x
ju1m · May 23, 2023 · bb8168b · bb8168b
1 parent 3c7eb7a
commit bb8168b
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/pkgs/misc/cups/filters.nix b/pkgs/misc/cups/filters.nix
@@ -6,6 +6,7 @@
 , dbus
 , dejavu_fonts
 , fetchurl
+, fetchpatch
 , fontconfig
 , gawk
 , ghostscript
@@ -40,6 +41,14 @@ stdenv.mkDerivation rec {
     sha256 = "sha256-qQfsdp+7cu+/v5tUCyUKCOM7bjc6inw0P5hA+6TQR4s=";
   };
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2023-24805.patch";
+      url = "https://github.com/OpenPrinting/cups-filters/commit/93e60d3df358c0ae6f3dba79e1c9684657683d89.patch";
+      hash = "sha256-KgWTYFr2uShL040azzE+KaNyBPy7Gs/hCnEgQmmPCys=";
+    })
+  ];
+
   nativeBuildInputs = [ pkg-config makeWrapper ];
 
   buildInputs = [