qemu: add patch for CVE-2022-3165

2022-10-17 20:25:21 +01:00 · 2022-10-17 20:25:21 +01:00 · ceee8090d1
commit ceee8090d1
parent b24ba297b5
1 changed files with 5 additions and 0 deletions
--- a/pkgs/applications/virtualization/qemu/default.nix
+++ b/pkgs/applications/virtualization/qemu/default.nix
@ -112,6 +112,11 @@ stdenv.mkDerivation rec {
      revert = true;
    })
    ./9pfs-use-GHashTable-for-fid-table.patch
+    (fetchpatch {
+      name = "CVE-2022-3165.patch";
+      url = "https://gitlab.com/qemu-project/qemu/-/commit/d307040b18bfcb1393b910f1bae753d5c12a4dc7.patch";
+      sha256 = "sha256-YPhm580lBNuAv7G1snYccKZ2V5ycdV8Ri8mTw5jjFBc=";
+    })
  ]
  ++ lib.optional nixosTestRunner ./force-uid0-on-9p.patch;