Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: d81f5d9ef347
Choose a base ref
...
head repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: a0756f9e8841
Choose a head ref
  • 2 commits
  • 1 file changed
  • 2 contributors

Commits on Nov 5, 2020

  1. tmux: apply patch for CVE-2020-27347 

    Fixes a buffer overflow in the escape sequence parser.

Fixes: CVE-2020-27347
    @mweinelt
    mweinelt committed Nov 5, 2020
    Copy the full SHA
    e138b42 View commit details

  2. Merge pull request #102941 from mweinelt/20.03/tmux 

    [20.03] tmux: apply patch for CVE-2020-27347
    @andir
    andir authored Nov 5, 2020
    Copy the full SHA
    a0756f9 View commit details
Showing with 9 additions and 0 deletions.
  1. +9 −0 pkgs/tools/misc/tmux/default.nix
9 changes: 9 additions & 0 deletions pkgs/tools/misc/tmux/default.nix
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
{ stdenv
, fetchFromGitHub
, fetchpatch
, autoreconfHook
, pkgconfig
, makeWrapper
@@ -32,6 +33,14 @@ stdenv.mkDerivation rec {
sha256 = "0y9lv1yr0x50v3k70vzkc8hfr7yijlsi30p7dr7i8akp3lwmmc7h";
};

patches = [
(fetchpatch {
name = "CVE-2020-27347.patch";
url = "https://github.com/tmux/tmux/commit/a868bacb46e3c900530bed47a1c6f85b0fbe701c.patch";
sha256 = "1mxvrs2vm52as128riddvxgzqbx1zrjs38n3gvjyl2p9h6xp5k4k";
})
];

nativeBuildInputs = [
pkgconfig
autoreconfHook