Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: be3f605eee13
Choose a base ref
...
head repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 8bb551bdde0a
Choose a head ref
  • 2 commits
  • 2 files changed
  • 2 contributors

Commits on Jan 22, 2021

  1. libexosip: 4.1.0 -> 5.2.0 

    Fix CVE-2014-10375.

sipwitch is marked as broken as it does compile with libexosip > 5.0.0
and the upstream project appears to be stalled/abandoned.
    @LeSuisse
    LeSuisse committed Jan 22, 2021

    Verified

    This commit was signed with the committer’s verified signature. The key has expired.
    dhess Drew Hess
    GPG key ID: 4DC0BBFBE3FEF428
    Expired
    Verified
    Learn about vigilant mode
    Copy the full SHA
    fdafac8 View commit details

  2. Merge pull request #110231 from LeSuisse/libexosip-5.2.0 

    libexosip: 4.1.0 -> 5.2.0
    @SuperSandro2000
    SuperSandro2000 authored Jan 22, 2021

    Verified

    This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
    GPG key ID: 4AEE18F83AFDEB23
    Expired
    Verified
    Learn about vigilant mode
    Copy the full SHA
    8bb551b View commit details
Showing with 5 additions and 11 deletions.
  1. +4 −11 pkgs/development/libraries/exosip/default.nix
  2. +1 −0 pkgs/servers/sip/sipwitch/default.nix
15 changes: 4 additions & 11 deletions pkgs/development/libraries/exosip/default.nix
View file
Original file line number Diff line number Diff line change
@@ -1,24 +1,17 @@
{ lib, stdenv, fetchurl, libosip, openssl, pkg-config, fetchpatch }:
{ lib, stdenv, fetchurl, libosip, openssl, pkg-config }:

stdenv.mkDerivation rec {
pname = "libexosip2";
version = "4.1.0";
version = "5.2.0";

src = fetchurl {
url = "mirror://savannah/exosip/libeXosip2-${version}.tar.gz";
sha256 = "17cna8kpc8nk1si419vgr6r42k2lda0rdk50vlxrw8rzg0xp2xrw";
url = "mirror://savannah/exosip/${pname}-${version}.tar.gz";
sha256 = "09bj7cm6mk8yr68y5a09a625x10ql6an3zi4pj6y1jbkhpgqibp3";
};

nativeBuildInputs = [ pkg-config ];
buildInputs = [ libosip openssl ];

patches = [
(fetchpatch {
url = "https://sources.debian.net/data/main/libe/libexosip2/4.1.0-2.1/debian/patches/openssl110.patch";
sha256 = "01q2dax7pwh197mn18r22y38mrsky85mvs9vbkn9fpcilrdayal6";
})
];

meta = with lib; {
license = licenses.gpl2Plus;
description = "Library that hides the complexity of using the SIP protocol";
1 change: 1 addition & 0 deletions pkgs/servers/sip/sipwitch/default.nix
View file
Original file line number Diff line number Diff line change
@@ -23,5 +23,6 @@ stdenv.mkDerivation rec {
license = lib.licenses.gpl3Plus;
maintainers = with lib.maintainers; [ ];
platforms = with lib.platforms; linux;
broken = true; # Require libexosip2 < 5.0.0 which is vulnerable to CVE-2014-10375.
};
}