config: Mitigate upcoming SSL CVE

See
https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html

As 1.1 is unaffected, this override should be sufficient to evade this
problem.
This commit is contained in:
Tristan Daniël Maat 2022-10-31 16:07:41 +00:00
parent 73023b817d
commit 2304711359
Signed by: tlater
GPG key ID: 49670FD774E43268

View file

@ -25,6 +25,10 @@
pkgs = prev; pkgs = prev;
lib = prev.lib; lib = prev.lib;
}; };
# Mitigate
# https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
nginxStable = prev.nginxStable.override {openssl = prev.openssl_1_1;};
}) })
]; ];