pyrox.dev / nixpkgs
lol
fork atom

audiofile: add many CVE patches (#433160)

Connor Baker 39c9d53a 90219eb5

options
unified split
Changed files
+26 -1
pkgs
by-name
au
audiofile
package.nix
+26 -1
pkgs/by-name/au/audiofile/package.nix 
···

       
16

       
16

       
 

       
    }:


     

       
17

       
17

       
 

       
    fetchpatch {


     

       
18

       
18

       
 

       
      inherit sha256 name;


     

       
19

       

       
-

       
      url = "https://salsa.debian.org/multimedia-team/audiofile/raw/debian/0.3.6-4/debian/patches/${debname}";


     

       

       
19

       
+

       
      url = "https://salsa.debian.org/multimedia-team/audiofile/raw/debian/0.3.6-7/debian/patches/${debname}";


     

       
20

       
20

       
 

       
    };


     

       
21

       
21

       
 

       



     

       
22

       
22

       
 

       
in


     
···

       
96

       
96

       
 

       
      name = "CVE-2017-6833.patch";


     

       
97

       
97

       
 

       
      debname = "10_Check-for-division-by-zero-in-BlockCodec-runPull.patch";


     

       
98

       
98

       
 

       
      sha256 = "1rlislkjawq98bbcf1dgl741zd508wwsg85r37ca7pfdf6wgl6z7";


     

       

       
99

       
+

       
    })


     

       

       
100

       
+

       
    (fetchDebianPatch {


     

       

       
101

       
+

       
      name = "CVE-2018-13440.patch";


     

       

       
102

       
+

       
      debname = "11_CVE-2018-13440.patch";


     

       

       
103

       
+

       
      sha256 = "sha256-qDfjiBJ4QXgn8588Ra1X0ViH0jBjtFS/+2zEGIUIhuo=";


     

       

       
104

       
+

       
    })


     

       

       
105

       
+

       
    (fetchDebianPatch {


     

       

       
106

       
+

       
      name = "CVE-2018-17095.patch";


     

       

       
107

       
+

       
      debname = "12_CVE-2018-17095.patch";


     

       

       
108

       
+

       
      sha256 = "sha256-FC89EFZuRLcj5x4wZVqUlitEMTRPSZk+qzQpIoVk9xY=";


     

       

       
109

       
+

       
    })


     

       

       
110

       
+

       
    (fetchDebianPatch {


     

       

       
111

       
+

       
      name = "CVE-2022-24599.patch";


     

       

       
112

       
+

       
      debname = "0013-Fix-CVE-2022-24599.patch";


     

       

       
113

       
+

       
      sha256 = "sha256-DHJQ4B6cvKfSlXy66ZC5RNaCMDaygj8dWLZZhJnhw1E=";


     

       

       
114

       
+

       
    })


     

       

       
115

       
+

       
    (fetchDebianPatch {


     

       

       
116

       
+

       
      name = "1_CVE-2019-13147.patch";


     

       

       
117

       
+

       
      debname = "0014-Partial-fix-of-CVE-2019-13147.patch";


     

       

       
118

       
+

       
      sha256 = "sha256-clb/XiIZbmttPr2dT9AZsbQ97W6lwifEwMO4l2ZEh0k=";


     

       

       
119

       
+

       
    })


     

       

       
120

       
+

       
    (fetchDebianPatch {


     

       

       
121

       
+

       
      name = "2_CVE-2019-13147.patch";


     

       

       
122

       
+

       
      debname = "0015-Partial-fix-of-CVE-2019-13147.patch";


     

       

       
123

       
+

       
      sha256 = "sha256-JOZIw962ae7ynnjJXGO29i8tuU5Dhk67DmB0o5/vSf4=";


     

       
99

       
124

       
 

       
    })


     

       
100

       
125

       
 

       
  ];


     

       
101

       
126