Petr Gajdos
508f724522
- updated to 7.0.5-3
* new branch
- deleted unneded patches
. ImageMagick-6.6.8.9-doc.patch
. ImageMagick-6.6.8.9-examples.patch
. ImageMagick-6.7.6.1-no-dist-lzip.patch
. ImageMagick-6.8.4.0-dont-build-in-install.patch
. ImageMagick-6.8.4.0-rpath.patch
. ImageMagick-montage.t.patch
- renamed patches
. ImageMagick-6.8.8-1-disable-insecure-coders.patch to
ImageMagick-disable-insecure-coders.patch
OBS-URL: https://build.opensuse.org/request/show/483248
OBS-URL: https://build.opensuse.org/package/show/graphics/ImageMagick?expand=0&rev=279
21 lines
1.1 KiB
Diff
21 lines
1.1 KiB
Diff
Index: ImageMagick-6.9.8-2/config/policy.xml
|
|
===================================================================
|
|
--- ImageMagick-6.9.8-2.orig/config/policy.xml 2017-03-19 00:28:24.000000000 +0100
|
|
+++ ImageMagick-6.9.8-2/config/policy.xml 2017-03-20 14:05:22.979847731 +0100
|
|
@@ -81,4 +81,15 @@
|
|
<!-- <policy domain="cache" name="memory-map" value="anonymous"/> -->
|
|
<!-- <policy domain="cache" name="synchronize" value="True"/> -->
|
|
<policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/>
|
|
+ <!-- Disable insecure coders by default -->
|
|
+ <!-- https://bugzilla.suse.com/show_bug.cgi?id=978061 -->
|
|
+ <policy domain="coder" rights="none" pattern="EPHEMERAL" />
|
|
+ <policy domain="coder" rights="none" pattern="URL" />
|
|
+ <policy domain="coder" rights="none" pattern="HTTPS" />
|
|
+ <policy domain="coder" rights="none" pattern="MVG" />
|
|
+ <policy domain="coder" rights="none" pattern="MSL" />
|
|
+ <policy domain="coder" rights="none" pattern="TEXT" />
|
|
+ <policy domain="coder" rights="none" pattern="SHOW" />
|
|
+ <policy domain="coder" rights="none" pattern="WIN" />
|
|
+ <policy domain="coder" rights="none" pattern="PLT" />
|
|
</policymap>
|