File ImageMagick-configuration-SUSE.patch of Package ImageMagick.20260320061246

Index: ImageMagick-7.1.2-16/config/policy-SUSE.xml
===================================================================
--- ImageMagick-7.1.2-16.orig/config/policy-SUSE.xml
+++ ImageMagick-7.1.2-16/config/policy-SUSE.xml
@@ -62,7 +62,7 @@
   <policy domain="resource" name="disk" value="2GiB"/>
   <!-- Set the maximum length of an image sequence.  When this limit is
        exceeded, an exception is thrown. -->
-  <policy domain="resource" name="list-length" value="32"/>
+  <policy domain="resource" name="list-length" value="128"/>
   <!-- Set the maximum width of an image.  When this limit is exceeded, an
        exception is thrown. -->
   <policy domain="resource" name="width" value="8KP"/>
@@ -85,11 +85,11 @@
   <!-- Replace passphrase for secure distributed processing -->
   <!-- <policy domain="cache" name="shared-secret" value="secret-passphrase" stealth="true"/> -->
   <!-- Do not permit any delegates to execute. -->
-  <policy domain="delegate" rights="none" pattern="*"/>
+  <!-- <policy domain="delegate" rights="none" pattern="*"/> -->
   <!-- Do not permit any image filters to load. -->
   <policy domain="filter" rights="none" pattern="*"/>
   <!-- Don't read/write from/to stdin/stdout. -->
-  <policy domain="path" rights="none" pattern="-"/>
+  <!-- <policy domain="path" rights="none" pattern="-"/> -->
   <policy domain="path" rights="none" pattern="fd:*"/>
   <!-- Sensitive paths are not permitted. -->
   <policy domain="path" rights="none" pattern="/etc/*"/>
@@ -110,4 +110,20 @@
   <policy domain="system" name="max-memory-request" value="256MiB"/>
   <!-- If the basename of path is a symbolic link, the open fails -->
   <policy domain="system" name="symlink" rights="none" pattern="follow"/>
+  <!-- Disable insecure coders by default -->
+  <policy domain="coder" rights="none" pattern="EPHEMERAL" />
+  <policy domain="coder" rights="none" pattern="URL" />
+  <policy domain="coder" rights="none" pattern="HTTPS" />
+  <policy domain="coder" rights="none" pattern="MVG" />
+  <policy domain="coder" rights="none" pattern="MSL" />
+  <policy domain="coder" rights="none" pattern="TEXT" />
+  <policy domain="coder" rights="none" pattern="SHOW" />
+  <policy domain="coder" rights="none" pattern="WIN" />
+  <policy domain="coder" rights="none" pattern="PLT" />
+  <policy domain="coder" rights="write" pattern="PS" />
+  <policy domain="coder" rights="write" pattern="PS2" />
+  <policy domain="coder" rights="write" pattern="PS3" />
+  <policy domain="coder" rights="write" pattern="PDF" />
+  <policy domain="coder" rights="write" pattern="XPS" />
+  <policy domain="coder" rights="write" pattern="PCL" />
 </policymap>