Accepting request 639725 from graphics

- allow writing PS, PS2, PS3, XPS, EPS and PDF, disable reading only by default security policy [bsc#1105592c#32] - also disable EPS coder in default policy.xml [bsc#1105592] [bsc#1109976#c7] OBS-URL: https://build.opensuse.org/request/show/639725 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ImageMagick?expand=0&rev=169
2018-10-04 16:58:48 +00:00 · 2018-10-04 16:58:48 +00:00 · ac81e5cf39
commit ac81e5cf39
parent 06b92d119e c630fb26e2
2 changed files with 22 additions and 9 deletions
--- a/ImageMagick-disable-insecure-coders.patch
+++ b/ImageMagick-disable-insecure-coders.patch
@ -1,8 +1,8 @@
-Index: ImageMagick-7.0.8-10/config/policy.xml
+Index: ImageMagick-7.0.8-12/config/policy.xml
 ===================================================================
--- ImageMagick-7.0.8-10.orig/config/policy.xml	2018-08-13 13:05:28.000000000 +0200
+--- ImageMagick-7.0.8-12.orig/config/policy.xml	2018-10-01 13:13:51.008702622 +0200
-+++ ImageMagick-7.0.8-10/config/policy.xml	2018-08-22 12:24:40.219828953 +0200
+++ ImageMagick-7.0.8-12/config/policy.xml	2018-10-01 13:22:06.174722426 +0200
-@@ -74,4 +74,20 @@
+@@ -75,4 +75,21 @@
   <!-- <policy domain="cache" name="memory-map" value="anonymous"/> -->
   <!-- <policy domain="cache" name="synchronize" value="True"/> -->
   <!-- <policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/> -->
@ -17,9 +17,10 @@ Index: ImageMagick-7.0.8-10/config/policy.xml
 +  <policy domain="coder" rights="none" pattern="SHOW" />
 +  <policy domain="coder" rights="none" pattern="WIN" />
 +  <policy domain="coder" rights="none" pattern="PLT" />
-+  <policy domain="coder" rights="none" pattern="PS" />
+  <policy domain="coder" rights="write" pattern="PS" />
-+  <policy domain="coder" rights="none" pattern="PS2" />
+  <policy domain="coder" rights="write" pattern="PS2" />
-+  <policy domain="coder" rights="none" pattern="PS3" />
+  <policy domain="coder" rights="write" pattern="PS3" />
-+  <policy domain="coder" rights="none" pattern="PDF" />
+  <policy domain="coder" rights="write" pattern="PDF" />
-+  <policy domain="coder" rights="none" pattern="XPS" />
+  <policy domain="coder" rights="write" pattern="XPS" />
 +  <policy domain="coder" rights="write" pattern="EPS" />
 </policymap>
--- a/ImageMagick.changes
+++ b/ImageMagick.changes
@ -1,3 +1,15 @@
 -------------------------------------------------------------------
 Wed Oct  3 08:07:50 UTC 2018 - Petr Gajdos <pgajdos@suse.com>
 - allow writing PS, PS2, PS3, XPS, EPS and PDF, disable reading
  only by default security policy [bsc#1105592c#32]
 -------------------------------------------------------------------
 Mon Oct  1 11:14:23 UTC 2018 - Petr Gajdos <pgajdos@suse.com>
 - also disable EPS coder in default policy.xml [bsc#1105592]
  [bsc#1109976#c7]
 -------------------------------------------------------------------
 Mon Sep 24 07:57:34 UTC 2018 - Petr Gajdos <pgajdos@suse.com>