2018-01-09 19:05:11 +01:00
|
|
|
{ stdenv, fetchurl, libogg, pkgconfig, fetchpatch }:
|
2005-01-19 22:48:45 +01:00
|
|
|
|
2014-09-24 15:07:18 +02:00
|
|
|
stdenv.mkDerivation rec {
|
2018-03-17 19:17:56 +01:00
|
|
|
name = "libvorbis-1.3.6";
|
2012-08-23 21:01:00 +02:00
|
|
|
|
2005-01-19 22:48:45 +01:00
|
|
|
src = fetchurl {
|
2012-02-08 20:54:16 +01:00
|
|
|
url = "http://downloads.xiph.org/releases/vorbis/${name}.tar.xz";
|
2018-03-17 19:17:56 +01:00
|
|
|
sha256 = "05dlzjkdpv46zb837wysxqyn8l636x3dw8v8ymlrwz2fg1dbn05g";
|
2005-01-19 22:48:45 +01:00
|
|
|
};
|
2009-01-20 10:50:05 +01:00
|
|
|
|
2016-08-29 02:30:01 +02:00
|
|
|
outputs = [ "out" "dev" "doc" ];
|
2014-06-22 12:39:07 +02:00
|
|
|
|
2018-01-09 19:05:11 +01:00
|
|
|
patches = [
|
|
|
|
(fetchpatch {
|
|
|
|
url = "https://gitlab.xiph.org/xiph/vorbis/uploads/a68cf70fa10c8081a633f77b5c6576b7/0001-CVE-2017-14160-make-sure-we-don-t-overflow.patch";
|
|
|
|
sha256 = "0v21p59cb3z77ch1v6q5dcrd733h91f3m8ifnd7kkkr8gzn17d5x";
|
|
|
|
name = "CVE-2017-14160";
|
|
|
|
})
|
2018-06-17 11:43:27 +02:00
|
|
|
(fetchpatch {
|
|
|
|
url = "https://gitlab.xiph.org/xiph/vorbis/commit/112d3bd0aaa.diff";
|
|
|
|
sha256 = "1k77y3q36npy8mkkz40f6cb46l2ldrwyrd191m29s8rnbhnafdf7";
|
|
|
|
name = "CVE-2018-10392.patch";
|
|
|
|
})
|
2018-01-09 19:05:11 +01:00
|
|
|
];
|
2010-08-01 16:33:43 +02:00
|
|
|
|
2015-05-02 07:02:24 +02:00
|
|
|
nativeBuildInputs = [ pkgconfig ];
|
2014-08-27 01:14:09 +02:00
|
|
|
propagatedBuildInputs = [ libogg ];
|
2012-08-23 21:01:00 +02:00
|
|
|
|
2014-06-13 00:53:21 +02:00
|
|
|
doCheck = true;
|
|
|
|
|
|
|
|
meta = with stdenv.lib; {
|
2018-01-05 20:42:46 +01:00
|
|
|
homepage = https://xiph.org/vorbis/;
|
2014-06-13 00:53:21 +02:00
|
|
|
license = licenses.bsd3;
|
2015-12-05 22:41:25 +01:00
|
|
|
maintainers = [ maintainers.ehmry ];
|
2014-06-13 00:53:21 +02:00
|
|
|
platforms = platforms.all;
|
2010-08-01 16:33:43 +02:00
|
|
|
};
|
2005-01-19 22:48:45 +01:00
|
|
|
}
|