Unverified Commit 54b7559f authored by Martin Weinelt's avatar Martin Weinelt
Browse files

libvpx: Fix heap buffer overflow in vp8 encoder 

Applies only the relevant code changes, as the test changes don't apply
cleanly.

Fixes: CVE-2023-5217
parent cac13fd7

pkgs/development/libraries/libvpx/default.nix

+13 −1
Original line number Diff line number Diff line 
{ lib, stdenv, fetchFromGitHub, perl, yasm

{ lib, stdenv, fetchFromGitHub, fetchpatch, perl, yasm

, vp8DecoderSupport ? true # VP8 decoder

, vp8EncoderSupport ? true # VP8 encoder

, vp9DecoderSupport ? true # VP9 decoder
@@ -84,6 +84,18 @@ stdenv.mkDerivation rec { 
    sha256 = "sha256-IH+ZWbBUlU5fbciYe+dNGnTFFCte2BXxAlLcvmzdAeY=";

  };



  patches = [

    (fetchpatch {

      # https://www.openwall.com/lists/oss-security/2023/09/28/5

      name = "CVE-2023-5217.patch";

      url = "https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590.patch";

      hash = "sha256-1hHUd/dNGm8dmdYYN60j1aOgC2pdIIq7vqJZ7mTXfps=";

      includes = [

        "vp8/encoder/onyx_if.c"

      ];

    })

  ];



  postPatch = ''

    patchShebangs --build \

      build/make/*.sh \