gnu: cups: Add replacement to fix CVE-2020-10001.

* gnu/packages/patches/cups-CVE-2020-10001.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/cups.scm (cups-minimal/fixed): New variable. (cups-minimal)[replacement]: Assign it to new field.
author: Tobias Geerinckx-Rice <me@tobias.gr> 2021-06-23 12:52:21 +0200
committer: Tobias Geerinckx-Rice <me@tobias.gr> 2021-06-23 18:41:23 +0200
commit: 620669fd17306c2edb21c64a99fa47160fefb319 (patch)
tree: 89d41b5a75198d1c5a36afde07465425bc2d5924 /gnu/packages/cups.scm
parent: 3694c0d4fee0f7faf130ecd9386ea45932a19543 (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/gnu/packages/cups.scm b/gnu/packages/cups.scm
index 5a15cd51b6..2dab881ae6 100644
--- a/gnu/packages/cups.scm
+++ b/gnu/packages/cups.scm
@@ -252,6 +252,7 @@ filters for the PDF-centric printing workflow introduced by OpenPrinting.")
   (package
     (name "cups-minimal")
     (version "2.3.3")
+    (replacement cups-minimal/fixed)
     (source
      (origin
        (method url-fetch)
@@ -312,6 +313,11 @@ device-specific programs to convert and print many types of files.")
     ;; CUPS is Apache 2.0 with exceptions, see the NOTICE file.
     (license license:asl2.0)))
 
+(define cups-minimal/fixed
+  (package-with-extra-patches
+   cups-minimal
+   (search-patches "cups-CVE-2020-10001.patch")))
+
 (define-public cups
   (package/inherit cups-minimal
     (name "cups")
author	Tobias Geerinckx-Rice <me@tobias.gr>	2021-06-23 12:52:21 +0200
committer	Tobias Geerinckx-Rice <me@tobias.gr>	2021-06-23 18:41:23 +0200
commit	620669fd17306c2edb21c64a99fa47160fefb319 (patch)
tree	89d41b5a75198d1c5a36afde07465425bc2d5924 /gnu/packages/cups.scm
parent	3694c0d4fee0f7faf130ecd9386ea45932a19543 (diff)