jolheiser/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
337cd5cc8a
nixpkgs/pkgs
History
Lancelot SIX 337cd5cc8a vmTools.fillDiskWithRPMs: fix cpio use 
When updating to cpio-2.13 in fe758f5fa368ebcdc03419c54412dd9abfd76b35,
a patch from SUSE was dropped. This patch was intended to resolve
CVE-2015-1197, and introduced the '--extract-over-symlink' option to
disable its own effects.

The CVE-2015-1197 was fixed in cpio-2.13 release[1] by other means,
making this patch useless.

Given that this patch is no longer used, we do not need to disable its
effects anymore with the `--extract-over-symlink` argument switch.

This Commit fixes #74984

[1] https://lists.gnu.org/archive/html/info-gnu/2019-11/msg00002.html
2019-12-08 21:03:39 +01:00
..
applications Treewide: update some problematic homepages 2019-12-08 10:21:29 -08:00
build-support vmTools.fillDiskWithRPMs: fix cpio use 2019-12-08 21:03:39 +01:00
common-updater
data uw-ttyp0: init at 1.3 2019-12-08 10:40:31 +01:00
desktops Treewide: update some problematic homepages 2019-12-08 10:21:29 -08:00
development Merge pull request #75013 from fmpwizard/issue_54603 2019-12-08 11:23:45 -08:00
games Treewide: update some problematic homepages 2019-12-08 10:21:29 -08:00
misc sailsd: 0.2.0 -> 0.3.0 2019-12-08 15:04:38 +01:00
os-specific linux: fix amdgpu memory mapping with kernel >= 5.3 2019-12-08 18:52:43 +01:00
servers rdf4store: remove pkg and service modules 2019-12-08 20:33:51 +01:00
shells bash-completion: apply musl patch unconditionally 2019-12-02 10:15:10 +00:00
stdenv
test
tools byobu: 5.129 -> 5.130 (#75205) 2019-12-08 20:53:53 +01:00
top-level Merge pull request #73579 from helsinki-systems/php-maxminddb-init 2019-12-08 20:45:52 +01:00