cafkafk/nixpkgs
cafkafk/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 2

libvpx: 1.13.0 -> 1.13.1

Browse source 
https://github.com/webmproject/libvpx/raw/v1.13.1/CHANGELOG

Fixes: CVE-2023-44488
This commit is contained in:
Martin Weinelt 2023-10-01 01:08:42 +02:00
parent 1f0e8ac1f9
commit 2207fb3368
No known key found for this signature in database
GPG key ID: 87C1E9888F856759
1 changed files with 3 additions and 15 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
pkgs/development/libraries/libvpx/default.nix
View file

@ -1,4 +1,4 @@
{ lib, stdenv, fetchFromGitHub, fetchpatch, perl, yasm { lib, stdenv, fetchFromGitHub, perl, yasm
, vp8DecoderSupport ? true # VP8 decoder , vp8DecoderSupport ? true # VP8 decoder
, vp8EncoderSupport ? true # VP8 encoder , vp8EncoderSupport ? true # VP8 encoder
, vp9DecoderSupport ? true # VP9 decoder , vp9DecoderSupport ? true # VP9 decoder
@ -75,27 +75,15 @@ assert isCygwin -> unitTestsSupport && webmIOSupport && libyuvSupport;
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
pname = "libvpx"; pname = "libvpx";
version = "1.13.0"; version = "1.13.1";
src = fetchFromGitHub { src = fetchFromGitHub {
owner = "webmproject"; owner = "webmproject";
repo = pname; repo = pname;
rev = "v${version}"; rev = "v${version}";
sha256 = "sha256-IH+ZWbBUlU5fbciYe+dNGnTFFCte2BXxAlLcvmzdAeY="; hash = "sha256-KTbzZ5/qCH+bCvatYZhFiWcT+L2duD40E2w/BUaRorQ=";
}; };
patches = [
(fetchpatch {
# https://www.openwall.com/lists/oss-security/2023/09/28/5
name = "CVE-2023-5217.patch";
url = "https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590.patch";
hash = "sha256-1hHUd/dNGm8dmdYYN60j1aOgC2pdIIq7vqJZ7mTXfps=";
includes = [
"vp8/encoder/onyx_if.c"
];
})
];
postPatch = '' postPatch = ''
patchShebangs --build \ patchShebangs --build \
build/make/*.sh \ build/make/*.sh \