cafkafk/nixpkgs
cafkafk/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 2

opencryptoki: 3.20.0 -> 3.23.0

Browse source 
Fixes CVE-2024-0914.

Changes:
https://github.com/opencryptoki/opencryptoki/blob/v3.23.0/ChangeLog
This commit is contained in:
Thomas Gerbet 2024-02-10 22:34:31 +01:00
parent ef43130a0d
commit 100af695bf
1 changed files with 10 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
pkgs/tools/security/opencryptoki/default.nix
View file

@ -7,17 +7,18 @@
, openldap , openldap
, openssl , openssl
, trousers , trousers
, libcap
}: }:
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
pname = "opencryptoki"; pname = "opencryptoki";
version = "3.20.0"; version = "3.23.0";
src = fetchFromGitHub { src = fetchFromGitHub {
owner = "opencryptoki"; owner = "opencryptoki";
repo = "opencryptoki"; repo = "opencryptoki";
rev = "v${version}"; rev = "v${version}";
hash = "sha256-Z11CDw9ykmJ7MI7I0H4Y/i+8/I+hRgC2frklYPP1di0="; hash = "sha256-5FcvwGTzsL0lYrSYGlbSY89s6OKzg+2TRlwHlJjdzXo=";
}; };
nativeBuildInputs = [ nativeBuildInputs = [
@ -30,14 +31,17 @@ stdenv.mkDerivation rec {
openldap openldap
openssl openssl
trousers trousers
libcap
]; ];
postPatch = '' postPatch = ''
substituteInPlace configure.ac \ substituteInPlace configure.ac \
--replace "usermod" "true" \ --replace-fail "usermod" "true" \
--replace "groupadd" "true" \ --replace-fail "useradd" "true" \
--replace "chmod" "true" \ --replace-fail "groupadd" "true" \
--replace "chgrp" "true" --replace-fail "chmod" "true" \
--replace-fail "chown" "true" \
--replace-fail "chgrp" "true"
''; '';
configureFlags = [ configureFlags = [