Overview

File ImageMagick-disable-insecure-coders.patch of Package ImageMagick

Index: ImageMagick-6.9.8-2/config/policy.xml
===================================================================
--- ImageMagick-6.9.8-2.orig/config/policy.xml	2017-03-19 00:28:24.000000000 +0100
+++ ImageMagick-6.9.8-2/config/policy.xml	2017-03-20 14:05:22.979847731 +0100
@@ -81,4 +81,15 @@
   <!-- <policy domain="cache" name="memory-map" value="anonymous"/> -->
   <!-- <policy domain="cache" name="synchronize" value="True"/> -->
   <policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/>
+  <!-- Disable insecure coders by default -->
+  <!-- https://bugzilla.suse.com/show_bug.cgi?id=978061 -->
+  <policy domain="coder" rights="none" pattern="EPHEMERAL" />
+  <policy domain="coder" rights="none" pattern="URL" />
+  <policy domain="coder" rights="none" pattern="HTTPS" />
+  <policy domain="coder" rights="none" pattern="MVG" />
+  <policy domain="coder" rights="none" pattern="MSL" />
+  <policy domain="coder" rights="none" pattern="TEXT" />
+  <policy domain="coder" rights="none" pattern="SHOW" />
+  <policy domain="coder" rights="none" pattern="WIN" />
+  <policy domain="coder" rights="none" pattern="PLT" />
 </policymap>
openSUSE Build Service is sponsored by
Places