From 41db15ccc381773aaa047085f1f87ae73df3f7a3 Mon Sep 17 00:00:00 2001
From: Thomas Gerbet <thomas@gerbet.me>
Date: Fri, 13 Dec 2024 20:08:56 +0100
Subject: [PATCH] avahi: apply patch for CVE-2024-52616

Fixes CVE-2024-52616 / https://github.com/avahi/avahi/security/advisories/GHSA-r9j3-vjjh-p8vm

(cherry picked from commit a7e9d5524b2e5ecca81c41752907096b0f5c14fd)
---
 pkgs/development/libraries/avahi/default.nix | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/pkgs/development/libraries/avahi/default.nix b/pkgs/development/libraries/avahi/default.nix
index e56b173e207d1..c622cd0887059 100644
--- a/pkgs/development/libraries/avahi/default.nix
+++ b/pkgs/development/libraries/avahi/default.nix
@@ -10,6 +10,7 @@
   expat,
   gettext,
   glib,
+  autoreconfHook,
   libiconv,
   libevent,
   nixosTests,
@@ -126,6 +127,12 @@ stdenv.mkDerivation rec {
         "fuzz/fuzz-packet.c"
       ];
     })
+    # https://github.com/avahi/avahi/pull/659 merged Nov 19
+    (fetchpatch {
+      name = "CVE-2024-52616.patch";
+      url = "https://github.com/avahi/avahi/commit/f8710bdc8b29ee1176fe3bfaeabebbda1b7a79f7.patch";
+      hash = "sha256-BUQOQ4evKLBzV5UV8xW8XL38qk1rg6MJ/vcT5NBckfA=";
+    })
   ];
 
   depsBuildBuild = [
@@ -136,6 +143,7 @@ stdenv.mkDerivation rec {
     pkg-config
     gettext
     glib
+    autoreconfHook
   ];
 
   buildInputs =