Merge #165339: pjsip: add patch for CVE-2022-24764

2 years ago · e766d457c6
parent fad2f3353c e7e3e939a8
commit e766d457c6
1 changed files with 6 additions and 1 deletions
--- a/pkgs/applications/networking/pjsip/default.nix
+++ b/pkgs/applications/networking/pjsip/default.nix
@ -1,4 +1,4 @@
-{ lib, stdenv, fetchFromGitHub, openssl, libsamplerate, alsa-lib, AppKit }:
+{ lib, stdenv, fetchFromGitHub, openssl, libsamplerate, alsa-lib, AppKit, fetchpatch }:

 stdenv.mkDerivation rec {
  pname = "pjsip";
@ -13,6 +13,11 @@ stdenv.mkDerivation rec {

  patches = [
    ./fix-aarch64.patch
+    (fetchpatch {
+      name = "CVE-2022-24764.patch";
+      url = "https://github.com/pjsip/pjproject/commit/560a1346f87aabe126509bb24930106dea292b00.patch";
+      sha256 = "1fy78v3clm0gby7qcq3ny6f7d7f4qnn01lkqq67bf2s85k2phisg";
+    })
  ];

  buildInputs = [ openssl libsamplerate ]