pool/ImageMagick
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ImageMagick/ImageMagick-6.8.8-1-disable-insecure-coders.patch
Petr Gajdos 27ecdde9e5 Accepting request 393905 from home:vitezslav_cizek:branches:graphics 
- Disable insecure coders [bnc#978061]
  * ImageMagick-6.8.8-1-disable-insecure-coders.patch
  * CVE-2016-3714
  * CVE-2016-3715
  * CVE-2016-3716
  * CVE-2016-3717
  * CVE-2016-3718

OBS-URL: https://build.opensuse.org/request/show/393905
OBS-URL: https://build.opensuse.org/package/show/graphics/ImageMagick?expand=0&rev=251
2016-05-05 14:05:14 +00:00

21 lines
898 B
Diff
Raw Blame History

Index: ImageMagick-6.8.8-1/config/policy.xml
Disable insecure loaders by default bsc#978061
sflees@suse.de
===================================================================
--- ImageMagick-6.8.8-1.orig/config/policy.xml
+++ ImageMagick-6.8.8-1/config/policy.xml
@@ -56,4 +56,11 @@
<!-- <policy domain="resource" name="time" value="3600"/> -->
<!-- <policy domain="system" name="precision" value="6"/> -->
<policy domain="cache" name="shared-secret" value="passphrase"/>
+ <!-- Disable insecure coders by default -->
+ <!-- https://bugzilla.suse.com/show_bug.cgi?id=978061 -->
+ <policy domain="coder" rights="none" pattern="EPHEMERAL" />
+ <policy domain="coder" rights="none" pattern="URL" />
+ <policy domain="coder" rights="none" pattern="HTTPS" />
+ <policy domain="coder" rights="none" pattern="MVG" />
+ <policy domain="coder" rights="none" pattern="MSL" />
</policymap>
Reference in New Issue View Git Blame Copy Permalink