pool/ImageMagick
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ImageMagick/ImageMagick-configuration-SUSE.patch
Petr Gajdos ba3cf249e9 Accepting request 988361 from home:dirkmueller:Factory 
- update to 7.1.0.42:
  * incorrect pointer update when computing median @ ImageMagick/ImageMagick#5298
  * Added extra check because the flag was removed in 0.21-Beta1.
  * the -transparent-color option accepts colornames @ ImageMagick/ImageMagick#5297
  * fix MVG stroke-opacity issues
  * map channel parameter to pixel channel offset @ ImageMagick/ImageMagick#5308
  * beta release
  * preserve input depth @ ImageMagick/ImageMagick6#188
  * update to latest automake/autoconf release
  * recognize SVG file if it starts with whitespace @ ImageMagick/ImageMagick#5294
  * Removed unused stealth flag.
  * Removed used path field.
  * Removed unused target field.
  * Removed unused exempt field.
  * Added extra option to the skip spaces to the MagicInfo.
  * Always start at the start of the string when comparing the magic value.
  * cosmetic
  * avoid OMP deadlock @ ImageMagick/ImageMagick#5301
  * prevent undefined shift
  * prevent possible buffer overflow
  * correct copy/paste error
  * We need to free the stream ourselves when the call to FT_Open_Face fails.
  * Added missing call to DestroyString.
  * MVG requires seekable stream
  * Added extra malloc method to avoid early calls to the policy checks on Windows.
  * Removed defines.
  * Only check for dll's in non static build.
  * Set the client name and path earlier.
  * fix background opacity rounding @ ImageMagick/ImageMagick#5264
  * empty result on conversion from tiff to pdf @ ImageMagick/ImageMagick#5256

OBS-URL: https://build.opensuse.org/request/show/988361
OBS-URL: https://build.opensuse.org/package/show/graphics/ImageMagick?expand=0&rev=606
2022-07-18 07:32:05 +00:00

30 lines
1.5 KiB
Diff
Raw Blame History

--- ImageMagick-7.1.0-43/config/policy.xml
+++ ImageMagick-7.1.0-43/config/policy.xml
@@ -79,5 +79,26 @@
<!-- <policy domain="cache" name="synchronize" value="true"/> -->
<!-- <policy domain="system" name="shred" value="1"/> -->
<!-- <policy domain="system" name="font" value="/path/to/unicode-font.ttf"/> -->
+
+ <!-- Disable insecure coders by default -->
+ <!-- https://bugzilla.suse.com/show_bug.cgi?id=978061 -->
+ <policy domain="coder" rights="none" pattern="EPHEMERAL" />
+ <policy domain="coder" rights="none" pattern="URL" />
+ <policy domain="coder" rights="none" pattern="HTTPS" />
+ <policy domain="coder" rights="none" pattern="MVG" />
+ <policy domain="coder" rights="none" pattern="MSL" />
+ <policy domain="coder" rights="none" pattern="TEXT" />
+ <policy domain="coder" rights="none" pattern="SHOW" />
+ <policy domain="coder" rights="none" pattern="WIN" />
+ <policy domain="coder" rights="none" pattern="PLT" />
+ <policy domain="coder" rights="write" pattern="PS" />
+ <policy domain="coder" rights="write" pattern="PS2" />
+ <policy domain="coder" rights="write" pattern="PS3" />
+ <policy domain="coder" rights="write" pattern="PDF" />
+ <policy domain="coder" rights="write" pattern="XPS" />
+ <policy domain="coder" rights="write" pattern="EPI" />
+ <policy domain="coder" rights="write" pattern="EPS" />
+ <policy domain="coder" rights="write" pattern="PCL" />
+ <policy domain="path" rights="none" pattern="@*"/>
<policy domain="Undefined" rights="none"/>
</policymap>
Reference in New Issue View Git Blame Copy Permalink