Unverified Commit 3190a6c4 authored by Franz Pletz's avatar Franz Pletz
Browse files

libwmf: add patch to fix CVE-2016-9011 

cc #20274
parent f7c28850

pkgs/development/libraries/libwmf/default.nix

+7 −2
Original line number Diff line number Diff line 
{ stdenv, fetchurl, zlib, imagemagick, libpng, pkgconfig, glib, freetype

, libjpeg, libxml2 }:

{ stdenv, fetchurl, fetchpatch, zlib, imagemagick, libpng, pkgconfig, glib

, freetype, libjpeg, libxml2 }:



stdenv.mkDerivation {

  name = "libwmf-0.2.8.4";
@@ -14,6 +14,11 @@ stdenv.mkDerivation { 
  patches = [

    ./CVE-2006-3376.patch ./CVE-2009-1364.patch

    ./CVE-2015-0848+4588+4695+4696.patch

    (fetchpatch {

      name = "libwmf-0.2.8.4-CVE-2016-9011-debian.patch";

      url = "https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=842090;filename=libwmf-0.2.8.4-CVE-2016-9011-debian.patch;msg=10";

      sha256 = "15vnqrj1dlvn0g8ccrxj2r2cyb1rv0qf0kfangxfgsi5h8is0c2b";

    })

  ];



  meta = {