From abf9037023505affa410839a8bc3a7ca59fae4a6 Mon Sep 17 00:00:00 2001
From: Robert Scott <code@humanleg.org.uk>
Date: Tue, 20 Aug 2024 20:11:43 +0100
Subject: [PATCH] wasmer: add patch for CVE-2024-38358

---
 pkgs/development/interpreters/wasmer/default.nix | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/pkgs/development/interpreters/wasmer/default.nix b/pkgs/development/interpreters/wasmer/default.nix
index a509107ec1636..be5e524b832aa 100644
--- a/pkgs/development/interpreters/wasmer/default.nix
+++ b/pkgs/development/interpreters/wasmer/default.nix
@@ -5,6 +5,7 @@
 , llvmPackages
 , libffi
 , libxml2
+, fetchpatch
 , CoreFoundation
 , SystemConfiguration
 , Security
@@ -25,6 +26,14 @@ rustPlatform.buildRustPackage rec {
 
   cargoHash = "sha256-EpHM8YaT2Ty9IBX/gXEa9n8006A9Y5/fq/ueODxHlnc=";
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2024-38358.patch";
+      url = "https://github.com/wasmerio/wasmer/commit/ad4c9cd13de658114cb306262b717a6cb10b8263.patch";
+      hash = "sha256-2B/u5lvTxY8Ip6h4CDq31vhfIn5dqCmMMnSVA2XdTY8=";
+    })
+  ];
+
   nativeBuildInputs = [
     rustPlatform.bindgenHook
   ];