From 08e5e55c2a2e27e43ee3dab85828a3dac87ad705 Mon Sep 17 00:00:00 2001
From: Martin Weinelt <hexa@darmstadt.ccc.de>
Date: Tue, 27 Aug 2024 04:17:03 +0200
Subject: [PATCH] pretix: apply patch for CVE-2024-8113

https://pretix.eu/about/en/blog/20240823-release-2024-7-1/
---
 pkgs/by-name/pr/pretix/package.nix | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/pkgs/by-name/pr/pretix/package.nix b/pkgs/by-name/pr/pretix/package.nix
index a45fdbdf2ff3198..15167a4383a21d5 100644
--- a/pkgs/by-name/pr/pretix/package.nix
+++ b/pkgs/by-name/pr/pretix/package.nix
@@ -2,6 +2,7 @@
 , buildNpmPackage
 , fetchFromGitHub
 , fetchPypi
+, fetchpatch2
 , nodejs
 , python3
 , gettext
@@ -65,6 +66,12 @@ python.pkgs.buildPythonApplication rec {
     # Discover pretix.plugin entrypoints during build and add them into
     # INSTALLED_APPS, so that their static files are collected.
     ./plugin-build.patch
+
+    (fetchpatch2 {
+      name = "CVE-2024-8113.patch";
+      url = "https://github.com/pretix/pretix/commit/0f44a2ad4e170882dbe6b9d95dba6c36e4e181cf.patch";
+      hash = "sha256-N5Fvf7tfZvtqDy7fO7sPBhtew8uGFLzK+kVO/hMgEIY=";
+    })
   ];
 
   postPatch = ''