Admins will be upgrading ORNL GitLab Servers on Saturday, 16 May 2026, from 7 AM until 11 AM EST. Repositories will experience intermittent outages during this time.

Unverified Commit 95c168d3 authored Apr 26, 2023 by K900 Committed by GitHub Apr 26, 2023

Merge pull request #228163 from mweinelt/openslp-insecure

openslp: Mark known vulnerable

parents f95db0ee aa8c9e7d

pkgs/applications/kde/kio-extras.nix

+2 −2

Original line number	Diff line number	Diff line
		@@ -3,7 +3,7 @@
		exiv2, kactivities, kactivities-stats, karchive, kbookmarks, kconfig, kconfigwidgets,
		kcoreaddons, kdbusaddons, kdsoap, kguiaddons, kdnssd, kiconthemes, ki18n, kio,
		khtml, kpty, syntax-highlighting, libmtp, libssh, openexr, libtirpc,
		ilmbase, openslp, phonon, qtsvg, samba, solid, gperf, taglib
		ilmbase, phonon, qtsvg, samba, solid, gperf, taglib
		}:

		mkDerivation {
		@@ -16,7 +16,7 @@ mkDerivation {
		buildInputs = [
		exiv2 kactivities kactivities-stats karchive kbookmarks kconfig kconfigwidgets kcoreaddons
		kdbusaddons kdsoap kguiaddons kdnssd kiconthemes ki18n kio khtml
		kpty syntax-highlighting libmtp libssh openexr libtirpc openslp
		kpty syntax-highlighting libmtp libssh openexr libtirpc
		phonon qtsvg samba solid gperf taglib
		];

pkgs/development/libraries/openslp/default.nix

+3 −0

Original line number	Diff line number	Diff line
		@@ -32,6 +32,9 @@ stdenv.mkDerivation rec {
		platforms = platforms.all;
		# never built on aarch64-darwin since first introduction in nixpkgs
		broken = stdenv.isDarwin && stdenv.isAarch64;
		knownVulnerabilities = [
		"CVE-2023-29552: UDP Reflection Attack with ampliciation factor of up to 2200"
		];
		};

		}