mruby: apply patch for CVE-2025-7207 (#450791)

2025-11-14 08:23:45 +00:00
parent 61686bbadb 4d9e5f64b7
commit e0186009b6
1 changed files with 9 additions and 0 deletions
--- a/pkgs/by-name/mr/mruby/package.nix
+++ b/pkgs/by-name/mr/mruby/package.nix
@@ -4,6 +4,7 @@
  ruby,
  rake,
  fetchFromGitHub,
+  fetchpatch,
  testers,
 }:

@@ -18,6 +19,14 @@ stdenv.mkDerivation (finalAttrs: {
    sha256 = "sha256-rCoEC1ioX6bOocPoPi+Lsn4PM8gY0DjKja1/MJvJ1n8=";
  };

+  patches = [
+    (fetchpatch {
+      name = "CVE-2025-7207.patch";
+      url = "https://github.com/mruby/mruby/commit/1fdd96104180cc0fb5d3cb086b05ab6458911bb9.patch";
+      hash = "sha256-wtSlLydofkp2brk/pRiJqt4NhkGRdzsx7JpTmWu2B7I=";
+    })
+  ];
+
  nativeBuildInputs = [ rake ];

  nativeCheckInputs = [ ruby ];