Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 932c65a078e5
Choose a base ref
...
head repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: a62679c2476d
Choose a head ref
  • 1 commit
  • 1 file changed
  • 1 contributor

Commits on Nov 13, 2020

  1. librdf_raptor2: add patch for CVE-2017-18926 

    Fixes two heap overflows in the raptor2 rdf parsing library.

https://www.openwall.com/lists/oss-security/2017/06/07/1
(cherry picked from commit 22140b2)
    @mweinelt @erictapen
    mweinelt authored and erictapen committed Nov 13, 2020

    Verified

    This commit was signed with the committer’s verified signature.
    bagder Daniel Stenberg
    GPG key ID: 5CC908FDB71E12C2
    Verified
    Learn about vigilant mode
    Copy the full SHA
    a62679c View commit details
Showing with 11 additions and 2 deletions.
  1. +11 −2 pkgs/development/libraries/librdf/raptor2.nix
13 changes: 11 additions & 2 deletions pkgs/development/libraries/librdf/raptor2.nix
View file
Original file line number Diff line number Diff line change
@@ -1,13 +1,22 @@
{ stdenv, fetchurl, libxml2, libxslt }:

stdenv.mkDerivation rec {
name = "raptor2-2.0.15";
pname = "raptor2";
version = "2.0.15";

src = fetchurl {
url = "http://download.librdf.org/source/${name}.tar.gz";
url = "http://download.librdf.org/source/${pname}-${version}.tar.gz";
sha256 = "ada7f0ba54787b33485d090d3d2680533520cd4426d2f7fb4782dd4a6a1480ed";
};

patches = [
(fetchurl {
name = "CVE-2017-18926.patch";
url = "https://github.com/dajobe/raptor/commit/590681e546cd9aa18d57dc2ea1858cb734a3863f.patch";
sha256 = "1qlpb5rm3j2yi0x6zgdi5apymg5zlvwq3g1zl417gkjrlvxmndgp";
})
];

buildInputs = [ libxml2 libxslt ];

postInstall = "rm -rvf $out/share/gtk-doc";