Tue May 4 14:31:57 2021 UTC ()

ImageMagick: fix deforaos-icon-theme package


(nia)

diff -r1.289 -r1.290 pkgsrc/graphics/ImageMagick/Makefile
diff -r1.250 -r1.251 pkgsrc/graphics/ImageMagick/distinfo
diff -r1.9 -r1.10 pkgsrc/graphics/ImageMagick/patches/patch-config_policy.xml

--- pkgsrc/graphics/ImageMagick/Makefile 2021/04/30 12:34:17 1.289
+++ pkgsrc/graphics/ImageMagick/Makefile 2021/05/04 14:31:57 1.290

 @@ -1,14 +1,16 @@
-# $NetBSD: Makefile,v 1.289 2021/04/30 12:34:17 triaxx Exp $
+# $NetBSD: Makefile,v 1.290 2021/05/04 14:31:57 nia Exp $
 PKGREVISION=	1
 .include "Makefile.common"
 PKGNAME=	ImageMagick-${DISTVERSION}
 MAINTAINER=	adam@NetBSD.org
 COMMENT=	Package for display and non-interactive manipulation of images
 CONFLICTS=	geomview<1.8.1nb2  # used to have a program named 'animate'
 USE_LANGUAGES=		c c++ c99
 USE_TOOLS+=		gmake pkg-config:run
 CONFIGURE_ARGS+=	--disable-assert

--- pkgsrc/graphics/ImageMagick/distinfo 2021/04/30 12:34:17 1.250
+++ pkgsrc/graphics/ImageMagick/distinfo 2021/05/04 14:31:57 1.251

 @@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.250 2021/04/30 12:34:17 triaxx Exp $
+$NetBSD: distinfo,v 1.251 2021/05/04 14:31:57 nia Exp $
 SHA1 (ImageMagick-7.0.11-10.tar.xz) = 64afbb13daae48552b9b11a5e62c37167da05e31
 RMD160 (ImageMagick-7.0.11-10.tar.xz) = c0c8e0035da4c6ad0ca75d13cbe3a8d5da12d8bc
 SHA512 (ImageMagick-7.0.11-10.tar.xz) = a92a8a65ab7503edada45da9c34488deb79c00d005afcc85a17365fd76c83a174a7213bea4bd072f1125f2342722cb067ffa1513f6530db9608cb6dcff4f68d1
 Size (ImageMagick-7.0.11-10.tar.xz) = 10280304 bytes
-SHA1 (patch-config_policy.xml) = 492aa9fa410dbbbded377fbcf06675f32224e5d8
+SHA1 (patch-config_policy.xml) = 2f2c5e9f0370cfbbf8ca91caef030eedfb2b6715

--- pkgsrc/graphics/ImageMagick/patches/patch-config_policy.xml 2021/04/23 07:23:29 1.9
+++ pkgsrc/graphics/ImageMagick/patches/patch-config_policy.xml 2021/05/04 14:31:57 1.10

 @@ -1,39 +1,40 @@
-$NetBSD: patch-config_policy.xml,v 1.9 2021/04/23 07:23:29 nia Exp $
+$NetBSD: patch-config_policy.xml,v 1.10 2021/05/04 14:31:57 nia Exp $
 Update default policies for better resistance to untrusted input.
 Discussion:
 http://mail-index.netbsd.org/tech-pkg/2021/04/03/msg024740.html
---- config/policy.xml.orig	2021-04-17 15:26:24.000000000 +0000
+--- config/policy.xml.orig	2021-04-29 02:01:58.000000000 +0000
 +++ config/policy.xml
-@@ -76,6 +76,29 @@
+@@ -76,6 +76,30 @@
    <!-- <policy domain="cache" name="synchronize" value="True"/> -->
    <!-- <policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/> -->
    <!-- <policy domain="system" name="max-memory-request" value="256MiB"/> -->
++
 +  <!--
 +    -- Disable ghostscript decoders as suggested by VU#332928
 +    --  <https://www.kb.cert.org/vuls/id/332928>
 +    -->
 +  <policy domain="coder" rights="write" pattern="PS" />
 +  <policy domain="coder" rights="write" pattern="PS2" />
 +  <policy domain="coder" rights="write" pattern="PS3" />
 +  <policy domain="coder" rights="write" pattern="EPS" />
 +  <policy domain="coder" rights="write" pattern="PDF" />
 +  <policy domain="coder" rights="write" pattern="XPS" />
++
 +  <!-- Recommended policies from <https://imagetragick.com/> -->
 +  <policy domain="coder" rights="none" pattern="EPHEMERAL" />
 +  <policy domain="coder" rights="none" pattern="URL" />
 +  <policy domain="coder" rights="none" pattern="HTTPS" />
-+  <policy domain="coder" rights="none" pattern="MVG" />
++  <!-- breaks deforaos-icon-theme package -->
 +  <!--<policy domain="coder" rights="none" pattern="MVG" />-->
 +  <policy domain="coder" rights="none" pattern="MSL" />
 +  <policy domain="coder" rights="none" pattern="TEXT" />
 +  <policy domain="coder" rights="none" pattern="SHOW" />
 +  <policy domain="coder" rights="none" pattern="WIN" />
 +  <policy domain="coder" rights="none" pattern="PLT" />
++
    <!-- <policy domain="system" name="shred" value="2"/> -->
    <!-- <policy domain="system" name="precision" value="6"/> -->
    <!-- <policy domain="system" name="font" value="/path/to/unicode-font.ttf"/> -->