From f5c74e62dc87f3c73905437517453e2a63089d9a Mon Sep 17 00:00:00 2001 From: Florian Klink Date: Wed, 29 Jan 2020 09:30:12 +0100 Subject: [PATCH] opensmtpd: apply patch for CVE-2020-7247.patch Backport the fix included in the bump from 6.6.1p1 -> 6.6.2p1. Master PR: https://github.com/NixOS/nixpkgs/pull/78741 --- pkgs/servers/mail/opensmtpd/default.nix | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/pkgs/servers/mail/opensmtpd/default.nix b/pkgs/servers/mail/opensmtpd/default.nix index fdc2b3fd2c429..22744b36d432c 100644 --- a/pkgs/servers/mail/opensmtpd/default.nix +++ b/pkgs/servers/mail/opensmtpd/default.nix @@ -16,6 +16,11 @@ stdenv.mkDerivation rec { patches = [ ./proc_path.diff # TODO: upstream to OpenSMTPD, see https://github.com/NixOS/nixpkgs/issues/54045 + (fetchurl { + name = "CVE-2020-7247.patch"; + url = "https://github.com/OpenSMTPD/OpenSMTPD/commit/d2688c097e0ff53037c7403e09426771876a3907.patch"; + sha256 = "1mr5zb7mgpapf80xrcjvvzinzyiqcd3i0z4jwj11wl3zrfq5kwwn"; + }) ]; # See https://github.com/OpenSMTPD/OpenSMTPD/issues/885 for the `sh bootstrap`