2021-02-05 17:12:51 +00:00
|
|
|
{ lib, stdenv, fetchurl, fetchpatch }:
|
2020-04-24 23:36:52 +00:00
|
|
|
|
2022-01-13 20:06:32 +00:00
|
|
|
stdenv.mkDerivation rec {
|
|
|
|
pname = "openslp";
|
|
|
|
version = "2.0.0";
|
2020-04-24 23:36:52 +00:00
|
|
|
|
|
|
|
src = fetchurl {
|
2022-01-13 20:06:32 +00:00
|
|
|
url = "mirror://sourceforge/openslp/${version}/${version}/openslp-${version}.tar.gz";
|
2020-04-24 23:36:52 +00:00
|
|
|
sha256 = "16splwmqp0400w56297fkipaq9vlbhv7hapap8z09gp5m2i3fhwj";
|
|
|
|
};
|
|
|
|
|
|
|
|
patches = [
|
|
|
|
(fetchpatch {
|
|
|
|
name = "openslp-2.0.0-null-pointer-deref.patch";
|
2023-05-24 13:37:59 +00:00
|
|
|
url = "https://src.fedoraproject.org/rpms/openslp/raw/696fd55ae4fcea7beda0a25131dca8bfb14bbdf9/f/openslp-2.0.0-null-pointer-deref.patch";
|
2020-04-24 23:36:52 +00:00
|
|
|
sha256 = "186f3rj3z2lf5h1lpbhqk0szj2a9far1p3mjqg6422f29yjfnz6a";
|
|
|
|
})
|
|
|
|
(fetchpatch {
|
|
|
|
name = "openslp-2.0.0-CVE-2016-7567.patch";
|
2023-05-24 13:37:59 +00:00
|
|
|
url = "https://src.fedoraproject.org/rpms/openslp/raw/696fd55ae4fcea7beda0a25131dca8bfb14bbdf9/f/openslp-2.0.0-cve-2016-7567.patch";
|
2020-04-24 23:36:52 +00:00
|
|
|
sha256 = "0zp61axx93b7nrbsyhn2x4dnw7n9y6g4rys21hyqxk4khrnc2yr9";
|
|
|
|
})
|
|
|
|
./CVE-2016-4912.patch
|
2021-02-05 17:12:51 +00:00
|
|
|
./CVE-2019-5544.patch
|
2020-04-24 23:36:52 +00:00
|
|
|
];
|
|
|
|
|
2021-02-05 17:12:51 +00:00
|
|
|
meta = with lib; {
|
2020-04-24 23:36:52 +00:00
|
|
|
homepage = "http://www.openslp.org/";
|
2024-06-20 14:57:18 +00:00
|
|
|
description = "Open-source implementation of the IETF Service Location Protocol";
|
2020-04-24 23:36:52 +00:00
|
|
|
maintainers = with maintainers; [ ttuegel ];
|
|
|
|
license = licenses.bsd3;
|
|
|
|
platforms = platforms.all;
|
2022-12-17 10:02:37 +00:00
|
|
|
# never built on aarch64-darwin since first introduction in nixpkgs
|
2024-09-26 11:04:55 +00:00
|
|
|
broken = stdenv.hostPlatform.isDarwin && stdenv.hostPlatform.isAarch64;
|
2023-04-29 16:46:19 +00:00
|
|
|
knownVulnerabilities = [
|
|
|
|
"CVE-2023-29552: UDP Reflection Attack with ampliciation factor of up to 2200"
|
|
|
|
];
|
2020-04-24 23:36:52 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
}
|