tcpdump: fix CVE-2020-8037

https://nvd.nist.gov/vuln/detail/CVE-2020-8037
This commit is contained in:
Maximilian Bosch 2021-01-05 19:39:28 +01:00
parent b8da2979c5
commit 08d77caac0
No known key found for this signature in database
GPG key ID: 091DBF4D1FC46B8E

View file

@ -1,4 +1,4 @@
{ stdenv, fetchurl, libpcap, perl }: { stdenv, fetchurl, libpcap, perl, fetchpatch }:
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
pname = "tcpdump"; pname = "tcpdump";
@ -9,6 +9,14 @@ stdenv.mkDerivation rec {
sha256 = "0434vdcnbqaia672rggjzdn4bb8p8dchz559yiszzdk0sjrprm1c"; sha256 = "0434vdcnbqaia672rggjzdn4bb8p8dchz559yiszzdk0sjrprm1c";
}; };
patches = [
# Patch for CVE-2020-8037
(fetchpatch {
url = "https://github.com/the-tcpdump-group/tcpdump/commit/32027e199368dad9508965aae8cd8de5b6ab5231.patch";
sha256 = "sha256-bO3aV032ru9+M/9isBRjmH8jTZLKj9Zf9ha2rmOaZwc=";
})
];
postPatch = '' postPatch = ''
patchShebangs tests patchShebangs tests
''; '';