summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authorBermond2016-05-07 20:22:09 -0300
committerBermond2016-05-07 20:22:09 -0300
commit5cefba18230ff14226422320848cd8420a93d90e (patch)
treeefb9aa7eb5723f2b20d6846fee5e48ce3787d0fc
parente02ee8523beae71692ee7c2fe56ea4bf644aa47d (diff)
downloadaur-5cefba18230ff14226422320848cd8420a93d90e.tar.gz
Security fix for discovered upstream vulnerability
More details in: https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588 https://imagetragick.com/
Diffstat
-rw-r--r--.SRCINFO4
-rwxr-xr-xPKGBUILD15
2 files changed, 16 insertions, 3 deletions
diff --git a/.SRCINFO b/.SRCINFO
index 572b36d645ca..348bc1cb3ba9 100644
--- a/.SRCINFO
+++ b/.SRCINFO
@@ -1,8 +1,8 @@
# Generated by mksrcinfo v8
-# Sun May 1 15:35:24 UTC 2016
+# Sat May 7 23:22:03 UTC 2016
pkgbase = imagemagick-full-git
pkgdesc = An image viewing/manipulation program (Q32 HDRI with all libs and features, Git version)
- pkgver = 7.0.1.1.r10810.g5e3914e
+ pkgver = 7.0.1.2.r10838.ga58ba05
pkgrel = 1
url = http://www.imagemagick.org/
arch = i686
diff --git a/PKGBUILD b/PKGBUILD
index e2bd598b51b8..9137f035cb92 100755
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -15,7 +15,7 @@ _dejavu_font_dir="/usr/share/fonts/TTF"
_gs_font_dir="/usr/share/fonts/Type1"
_windows_font_dir="/usr/share/fonts/WindowsFonts"
pkgname=imagemagick-full-git
-pkgver=7.0.1.1.r10810.g5e3914e
+pkgver=7.0.1.2.r10838.ga58ba05
pkgrel=1
pkgdesc="An image viewing/manipulation program (Q32 HDRI with all libs and features, Git version)"
arch=('i686' 'x86_64')
@@ -127,4 +127,17 @@ package() {
install -D -m644 LICENSE "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE"
install -D -m644 NOTICE "${pkgdir}/usr/share/licenses/${pkgname}/NOTICE"
+
+ # Security fix
+ # https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588
+ # https://www.imagetragick.com/
+ sed -i '65i\ \<policy domain="coder" rights="none" pattern="EPHEMERAL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '66i\ \<policy domain="coder" rights="none" pattern="URL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '67i\ \<policy domain="coder" rights="none" pattern="HTTPS" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '68i\ \<policy domain="coder" rights="none" pattern="MVG" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '69i\ \<policy domain="coder" rights="none" pattern="MSL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '70i\ \<policy domain="coder" rights="none" pattern="TEXT" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '71i\ \<policy domain="coder" rights="none" pattern="SHOW" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '72i\ \<policy domain="coder" rights="none" pattern="WIN" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '73i\ \<policy domain="coder" rights="none" pattern="PLT" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
}