nixpkgs/pkgs/servers/sip/sipwitch/default.nix
Thomas Gerbet fdafac8b00 libexosip: 4.1.0 -> 5.2.0
Fix CVE-2014-10375.

sipwitch is marked as broken as it does compile with libexosip > 5.0.0
and the upstream project appears to be stalled/abandoned.
2021-01-22 11:58:00 +01:00

28 lines
855 B
Nix

{ fetchurl, lib, stdenv, pkg-config, ucommon, libosip, libexosip, gnutls, zlib }:
stdenv.mkDerivation rec {
name = "sipwitch-1.9.15";
src = fetchurl {
url = "mirror://gnu/sipwitch/${name}.tar.gz";
sha256 = "2a7aa86a653f6810b3cd9cce6c37b3f70e937e7d14b09fd5c2a70d70588a9482";
};
nativeBuildInputs = [ pkg-config ];
buildInputs = [ ucommon libosip libexosip gnutls zlib ];
preConfigure = ''
export configureFlags="--sysconfdir=$out/etc"
'';
doCheck = true;
meta = {
description = "Secure peer-to-peer VoIP server that uses the SIP protocol";
homepage = "https://www.gnu.org/software/sipwitch/";
license = lib.licenses.gpl3Plus;
maintainers = with lib.maintainers; [ ];
platforms = with lib.platforms; linux;
broken = true; # Require libexosip2 < 5.0.0 which is vulnerable to CVE-2014-10375.
};
}