---- ImageMagick-6.9.4-1/config/policy.xml 2016-05-09 20:28:58.000000000 +0300
-+++ ImageMagick-6.9.4-1/config/policy.xml.new 2016-05-26 17:37:36.934136236 +0300
-@@ -61,7 +57,14 @@
+--- ImageMagick-6.9.5-2/config/policy.xml.orig 2016-07-11 01:22:33.000000000 +0200
++++ ImageMagick-6.9.5-2/config/policy.xml 2016-07-18 14:04:44.370795642 +0200
+@@ -61,8 +61,19 @@
<!-- <policy domain="resource" name="throttle" value="0"/> -->
<!-- <policy domain="resource" name="time" value="3600"/> -->
<!-- <policy domain="system" name="precision" value="6"/> -->
-- <!-- <policy domain="coder" rights="none" pattern="HTTPS" /> -->
-- <!-- <policy domain="path" rights="none" pattern="@*" /> -->
+- <!-- <policy domain="coder" rights="none" pattern="MVG" /> -->
+- <!-- <policy domain="delegate" rights="none" pattern="HTTPS" /> -->
+- <!-- <policy domain="path" rights="none" pattern="@*"/> -->
+ <policy domain="coder" rights="none" pattern="EPHEMERAL" />
+ <policy domain="coder" rights="none" pattern="URL" />
+ <policy domain="coder" rights="none" pattern="HTTPS" />
++ <policy domain="delegate" rights="none" pattern="HTTPS" />
++ <policy domain="coder" rights="none" pattern="HTTP" />
++ <policy domain="coder" rights="none" pattern="FTP" />
+ <policy domain="coder" rights="none" pattern="MVG" />
+ <policy domain="coder" rights="none" pattern="MSL" />
+ <policy domain="coder" rights="none" pattern="TEXT" />
+ <policy domain="coder" rights="none" pattern="SHOW" />
+ <policy domain="coder" rights="none" pattern="WIN" />
+ <policy domain="coder" rights="none" pattern="PLT" />
- <policy domain="cache" name="shared-secret" value="passphrase"/>
++ <policy domain="path" rights="none" pattern="|*"/>
++ <policy domain="path" rights="none" pattern="@*"/> <!-- indirect reads not permitted -->
+ <policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/>
</policymap>
projects / packages / ImageMagick.git / blobdiff