API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 12th, 2016
224
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Diff 4.50 KB | None | 0 0
raw download clone embed print report
  1. diff -Nur before/ImageMagick-6.8.8-1-disable-insecure-coders.patch after/ImageMagick-6.8.8-1-disable-insecure-coders.patch
  2. --- before/ImageMagick-6.8.8-1-disable-insecure-coders.patch    1970-01-01 01:00:00.000000000 +0100
  3. +++ after/ImageMagick-6.8.8-1-disable-insecure-coders.patch 2016-05-07 09:44:35.000000000 +0200
  4. @@ -0,0 +1,23 @@
  5. +Disable insecure loaders by default bsc#978061
  6. +sflees@suse.de
  7. +
  8. +Index: ImageMagick-6.8.8-1/config/policy.xml
  9. +===================================================================
  10. +--- ImageMagick-6.8.8-1.orig/config/policy.xml 2013-01-14 14:57:39.000000000 +0100
  11. ++++ ImageMagick-6.8.8-1/config/policy.xml  2016-05-06 10:03:49.137177736 +0200
  12. +@@ -56,4 +56,15 @@
  13. +   <!-- <policy domain="resource" name="time" value="3600"/> -->
  14. +   <!-- <policy domain="system" name="precision" value="6"/> -->
  15. +   <policy domain="cache" name="shared-secret" value="passphrase"/>
  16. ++  <!-- Disable insecure coders by default -->
  17. ++  <!-- https://bugzilla.suse.com/show_bug.cgi?id=978061 -->
  18. ++  <policy domain="coder" rights="none" pattern="EPHEMERAL" />
  19. ++  <policy domain="coder" rights="none" pattern="URL" />
  20. ++  <policy domain="coder" rights="none" pattern="HTTPS" />
  21. ++  <policy domain="coder" rights="none" pattern="MVG" />
  22. ++  <policy domain="coder" rights="none" pattern="MSL" />
  23. ++  <policy domain="coder" rights="none" pattern="TEXT" />
  24. ++  <policy domain="coder" rights="none" pattern="SHOW" />
  25. ++  <policy domain="coder" rights="none" pattern="WIN" />
  26. ++  <policy domain="coder" rights="none" pattern="PLT" />
  27. + </policymap>
  28. Binary files before/ImageMagick-6.8.8.1-6.1.src.rpm and after/ImageMagick-6.8.8.1-6.1.src.rpm differ
  29. Binary files before/ImageMagick-6.8.8.1-9.1.src.rpm and after/ImageMagick-6.8.8.1-9.1.src.rpm differ
  30. diff -Nur before/ImageMagick.changes after/ImageMagick.changes
  31. --- before/ImageMagick.changes  2015-11-27 17:55:07.000000000 +0100
  32. +++ after/ImageMagick.changes   2016-05-07 09:44:36.000000000 +0200
  33. @@ -1,4 +1,16 @@
  34.  -------------------------------------------------------------------
  35. +Wed May  4 03:32:47 UTC 2016 - sflees@suse.de
  36. +
  37. +- Use external svg loader (rsvg)
  38. +- Disable insecure coders [bnc#978061]
  39. +  * ImageMagick-6.8.8-1-disable-insecure-coders.patch
  40. +  * CVE-2016-3714
  41. +  * CVE-2016-3715
  42. +  * CVE-2016-3716
  43. +  * CVE-2016-3717
  44. +  * CVE-2016-3718
  45. +
  46. +-------------------------------------------------------------------
  47.  Mon Oct 19 14:04:29 UTC 2015 - pgajdos@suse.com
  48.  
  49.  - fix default value of the image in pdf [bnc#950872]
  50. diff -Nur before/ImageMagick.spec after/ImageMagick.spec
  51. --- before/ImageMagick.spec 2015-11-28 16:06:50.000000000 +0100
  52. +++ after/ImageMagick.spec  2016-05-07 10:01:51.000000000 +0200
  53. @@ -1,7 +1,7 @@
  54.  #
  55.  # spec file for package ImageMagick
  56.  #
  57. -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
  58. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
  59.  #
  60.  # All modifications and additions to the file contributed by third parties
  61.  # remain the property of their copyright owners, unless otherwise agreed
  62. @@ -52,7 +52,7 @@
  63.  %define cxxlibver 3
  64.  %define libspec -%{maj}_Q%{quantum_depth}
  65.  Version:        %{mfr_version}.%{mfr_revision}
  66. -Release:        6.1
  67. +Release:        9.1
  68.  Summary:        Viewer and Converter for Images
  69.  License:        ImageMagick
  70.  Group:          Productivity/Graphics/Other
  71. @@ -81,6 +81,7 @@
  72.  Patch16:        ImageMagick-CVE-2014-8354.patch
  73.  Patch17:        ImageMagick-CVE-2014-8716.patch
  74.  Patch18:        ImageMagick-pdf-img-compression.patch
  75. +Patch20:        ImageMagick-6.8.8-1-disable-insecure-coders.patch
  76.  BuildRoot:      %{_tmppath}/%{name}-%{version}-build
  77.  
  78.  %package -n perl-PerlMagick
  79. @@ -153,6 +154,7 @@
  80.  %patch16
  81.  %patch17
  82.  %patch18
  83. +%patch20 -p1
  84.  
  85.  %build
  86.  export CFLAGS="$RPM_OPT_FLAGS"
  87. @@ -181,6 +183,7 @@
  88.    --with-perl-options="INSTALLDIRS=vendor CC='%__cc -L$PWD/magick/.libs' LDDLFLAGS='-shared -L$PWD/magick/.libs'" \
  89.    --disable-static \
  90.    --with-djvu=yes \
  91. +  --with-rsvg=yes \
  92.    --with-wmf=yes \
  93.    --with-quantum-depth=%{quantum_depth}
  94.  # don't build together, PerlMagick could be miscompiled when using parallel build[1]
  95. @@ -435,6 +438,15 @@
  96.  
  97.  
  98.  %changelog
  99. +* Wed May  4 2016 sflees@suse.de
  100. +- Use external svg loader (rsvg)
  101. +- Disable insecure coders [bnc#978061]
  102. +  * ImageMagick-6.8.8-1-disable-insecure-coders.patch
  103. +  * CVE-2016-3714
  104. +  * CVE-2016-3715
  105. +  * CVE-2016-3716
  106. +  * CVE-2016-3717
  107. +  * CVE-2016-3718
  108.  * Mon Oct 19 2015 pgajdos@suse.com
  109.  - fix default value of the image in pdf [bnc#950872]
  110.  * Tue Oct  6 2015 pgajdos@suse.com
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!