From bb8168bf785e867d8fa0f6300703a182e0ccae88 Mon Sep 17 00:00:00 2001
From: Yaya <mak@nyantec.com>
Date: Tue, 23 May 2023 21:30:51 +0000
Subject: [PATCH] cups-filters: Fix CVE-2023-24805

https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-gpxc-v2m8-fr3x
---
 pkgs/misc/cups/filters.nix | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/pkgs/misc/cups/filters.nix b/pkgs/misc/cups/filters.nix
index 6da2226fa651..208a422a7dec 100644
--- a/pkgs/misc/cups/filters.nix
+++ b/pkgs/misc/cups/filters.nix
@@ -6,6 +6,7 @@
 , dbus
 , dejavu_fonts
 , fetchurl
+, fetchpatch
 , fontconfig
 , gawk
 , ghostscript
@@ -40,6 +41,14 @@ stdenv.mkDerivation rec {
     sha256 = "sha256-qQfsdp+7cu+/v5tUCyUKCOM7bjc6inw0P5hA+6TQR4s=";
   };
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2023-24805.patch";
+      url = "https://github.com/OpenPrinting/cups-filters/commit/93e60d3df358c0ae6f3dba79e1c9684657683d89.patch";
+      hash = "sha256-KgWTYFr2uShL040azzE+KaNyBPy7Gs/hCnEgQmmPCys=";
+    })
+  ];
+
   nativeBuildInputs = [ pkg-config makeWrapper ];
 
   buildInputs = [