Skip to content

Commit

Permalink
inetutils: add patch for CVE-2022-39028
Browse files Browse the repository at this point in the history
  • Loading branch information
@risicle @jsoo1
risicle authored and jsoo1 committed Oct 27, 2023
1 parent 6e3de97 commit 8d0848b
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion pkgs/tools/networking/inetutils/default.nix
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
{ stdenv, lib, fetchurl, ncurses, perl, help2man
, apparmorRulesFromClosure
, apparmorRulesFromClosure, fetchpatch
}:

stdenv.mkDerivation rec {
Expand All @@ -16,6 +16,11 @@ stdenv.mkDerivation rec {
patches = [
# https://git.congatec.com/yocto/meta-openembedded/commit/3402bfac6b595c622e4590a8ff5eaaa854e2a2a3
./inetutils-1_9-PATH_PROCNET_DEV.patch
(fetchpatch {
name = "CVE-2022-39028.patch";
url = "https://sources.debian.org/data/main/i/inetutils/2%3A2.3-5/debian/patches/inetutils-telnetd-EC_EL_null_deref.patch";
sha256 = "sha256-NYNDbEk3q3EhQdJaR12JBbnjJIRRpOcKLBF/EJJPiGU=";
})
];

nativeBuildInputs = [ help2man perl /* for `whois' */ ];
Expand Down

0 comments on commit 8d0848b

Please sign in to comment.