summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authorBermond2016-05-07 20:24:09 -0300
committerBermond2016-05-07 20:24:09 -0300
commit10830c25f3e76770df7d0f50f7ffdaded9c30ac5 (patch)
treee128a0f7a0e89f93b120f4a83d97ecc377ace74d
parent5173f7396fa6a5cb80ac957b9d1430ed4527da36 (diff)
downloadaur-10830c25f3e76770df7d0f50f7ffdaded9c30ac5.tar.gz
Security fix for discovered upstream vulnerability
More details in: https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588 https://imagetragick.com/
Diffstat
-rw-r--r--.SRCINFO4
-rwxr-xr-xPKGBUILD15
2 files changed, 16 insertions, 3 deletions
diff --git a/.SRCINFO b/.SRCINFO
index 46991e059c77..2935930d6b1e 100644
--- a/.SRCINFO
+++ b/.SRCINFO
@@ -1,9 +1,9 @@
# Generated by mksrcinfo v8
-# Wed May 4 14:52:37 UTC 2016
+# Sat May 7 23:24:03 UTC 2016
pkgbase = imagemagick-full
pkgdesc = An image viewing/manipulation program (Q32 HDRI with all libs and features)
pkgver = 7.0.1.1
- pkgrel = 1
+ pkgrel = 2
url = http://www.imagemagick.org/
arch = i686
arch = x86_64
diff --git a/PKGBUILD b/PKGBUILD
index 519986218216..ae90486bbe9e 100755
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -18,7 +18,7 @@ _srcname="ImageMagick"
_srcver="7.0.1-1"
pkgname=imagemagick-full
pkgver="$(echo ${_srcver} | tr '-' '.')"
-pkgrel=1
+pkgrel=2
pkgdesc="An image viewing/manipulation program (Q32 HDRI with all libs and features)"
arch=('i686' 'x86_64')
url="http://www.imagemagick.org/"
@@ -117,4 +117,17 @@ package() {
install -D -m644 LICENSE "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE"
install -D -m644 NOTICE "${pkgdir}/usr/share/licenses/${pkgname}/NOTICE"
+
+ # Security fix
+ # https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588
+ # https://www.imagetragick.com/
+ sed -i '65i\ \<policy domain="coder" rights="none" pattern="EPHEMERAL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '66i\ \<policy domain="coder" rights="none" pattern="URL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '67i\ \<policy domain="coder" rights="none" pattern="HTTPS" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '68i\ \<policy domain="coder" rights="none" pattern="MVG" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '69i\ \<policy domain="coder" rights="none" pattern="MSL" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '70i\ \<policy domain="coder" rights="none" pattern="TEXT" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '71i\ \<policy domain="coder" rights="none" pattern="SHOW" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '72i\ \<policy domain="coder" rights="none" pattern="WIN" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
+ sed -i '73i\ \<policy domain="coder" rights="none" pattern="PLT" />' "${pkgdir}/etc/ImageMagick-${pkgver%%.*}/policy.xml"
}