aboutsummaryrefslogtreecommitdiff
path: root/infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix
diff options
context:
space:
mode:
Diffstat (limited to 'infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix')
-rw-r--r--infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix6
1 files changed, 6 insertions, 0 deletions
diff --git a/infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix b/infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix
index 67d08454a844..acc9fff5b482 100644
--- a/infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix
+++ b/infra/libkookie/nixpkgs/pkgs/os-specific/linux/musl/default.nix
@@ -62,6 +62,12 @@ stdenv.mkDerivation rec {
url = "https://raw.githubusercontent.com/openwrt/openwrt/87606e25afac6776d1bbc67ed284434ec5a832b4/toolchain/musl/patches/300-relative.patch";
sha256 = "0hfadrycb60sm6hb6by4ycgaqc9sgrhh42k39v8xpmcvdzxrsq2n";
})
+ # wcsnrtombs destination buffer overflow, remove >= 1.2.2
+ (fetchurl {
+ name = "CVE-2020-28928.patch";
+ url = "https://www.openwall.com/lists/oss-security/2020/11/20/4/1";
+ sha256 = "077n2p165504nz9di6n8y5421591r3lsbcxgih8z26l6mvkhcs2h";
+ })
];
CFLAGS = [ "-fstack-protector-strong" ]
++ lib.optional stdenv.hostPlatform.isPower "-mlong-double-64";
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 13:53:56 +0000