From 36f168f046007361d70556ae95a1ab532fd49683 Mon Sep 17 00:00:00 2001
From: Benjamin Peterson <benjamin@engflow.com>
Date: Tue, 18 Oct 2022 14:41:03 -0700
Subject: [PATCH] Update zlib to 1.2.13.

This pulls in the fix for CVE-2022-37434.
---
 protobuf_deps.bzl | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/protobuf_deps.bzl b/protobuf_deps.bzl
index 83e6eeaece83..9c6956706bf8 100644
--- a/protobuf_deps.bzl
+++ b/protobuf_deps.bzl
@@ -49,9 +49,12 @@ def protobuf_deps():
         http_archive(
             name = "zlib",
             build_file = "@com_google_protobuf//:third_party/zlib.BUILD",
-            sha256 = "d8688496ea40fb61787500e863cc63c9afcbc524468cedeb478068924eb54932",
-            strip_prefix = "zlib-1.2.12",
-            urls = ["https://github.com/madler/zlib/archive/v1.2.12.tar.gz"],
+            sha256 = "d14c38e313afc35a9a8760dadf26042f51ea0f5d154b0630a31da0540107fb98",
+            strip_prefix = "zlib-1.2.13",
+            urls = [
+                "https://github.com/madler/zlib/releases/download/v1.2.13/zlib-1.2.13.tar.xz",
+                "https://zlib.net/zlib-1.2.13.tar.xz",
+            ],
         )
 
     if not native.existing_rule("jsoncpp"):