]> git.hoellein.online Git - vserver/commitdiff
projects / vserver / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1515d28)
committing changes in /etc made by "apt-get upgrade"
authormhoellein <mario@hoellein.online>
Fri, 24 Mar 2023 07:31:19 +0000 (08:31 +0100)
committermhoellein <mario@hoellein.online>
Fri, 24 Mar 2023 07:31:19 +0000 (08:31 +0100)
Package changes:
-bind9 1:9.16.1-0ubuntu2.12 amd64
-bind9-dnsutils 1:9.16.1-0ubuntu2.12 amd64
-bind9-host 1:9.16.1-0ubuntu2.12 amd64
-bind9-libs 1:9.16.1-0ubuntu2.12 amd64
-bind9-utils 1:9.16.1-0ubuntu2.12 amd64
+bind9 1:9.16.1-0ubuntu2.14 amd64
+bind9-dnsutils 1:9.16.1-0ubuntu2.14 amd64
+bind9-host 1:9.16.1-0ubuntu2.14 amd64
+bind9-libs 1:9.16.1-0ubuntu2.14 amd64
+bind9-utils 1:9.16.1-0ubuntu2.14 amd64
-curl 7.68.0-1ubuntu2.16 amd64
+curl 7.68.0-1ubuntu2.18 amd64
-dnsutils 1:9.16.1-0ubuntu2.12 all
+dnsutils 1:9.16.1-0ubuntu2.14 all
-icinga-php-library 0.10.1-1+ubuntu20.04 all
+icinga-php-library 0.11.0-1+ubuntu20.04 all
-imagemagick-6-common 8:6.9.10.23+dfsg-2.1ubuntu11.5 all
+imagemagick-6-common 8:6.9.10.23+dfsg-2.1ubuntu11.6 all
-libcurl3-gnutls 7.68.0-1ubuntu2.16 amd64
-libcurl4 7.68.0-1ubuntu2.16 amd64
+libcurl3-gnutls 7.68.0-1ubuntu2.18 amd64
+libcurl4 7.68.0-1ubuntu2.18 amd64
-libmagickcore-6.q16-6 8:6.9.10.23+dfsg-2.1ubuntu11.5 amd64
-libmagickcore-6.q16-6-extra 8:6.9.10.23+dfsg-2.1ubuntu11.5 amd64
-libmagickwand-6.q16-6 8:6.9.10.23+dfsg-2.1ubuntu11.5 amd64
+libmagickcore-6.q16-6 8:6.9.10.23+dfsg-2.1ubuntu11.6 amd64
+libmagickcore-6.q16-6-extra 8:6.9.10.23+dfsg-2.1ubuntu11.6 amd64
+libmagickwand-6.q16-6 8:6.9.10.23+dfsg-2.1ubuntu11.6 amd64
-libpython3.8 3.8.10-0ubuntu1~20.04.6 amd64
-libpython3.8-dev 3.8.10-0ubuntu1~20.04.6 amd64
-libpython3.8-minimal 3.8.10-0ubuntu1~20.04.6 amd64
-libpython3.8-stdlib 3.8.10-0ubuntu1~20.04.6 amd64
+libpython3.8 3.8.10-0ubuntu1~20.04.7 amd64
+libpython3.8-dev 3.8.10-0ubuntu1~20.04.7 amd64
+libpython3.8-minimal 3.8.10-0ubuntu1~20.04.7 amd64
+libpython3.8-stdlib 3.8.10-0ubuntu1~20.04.7 amd64
-libruby2.7 2.7.0-5ubuntu1.7 amd64
+libruby2.7 2.7.0-5ubuntu1.8 amd64
-libunwind8 1.2.1-9build1 amd64
+libunwind8 1.2.1-9ubuntu0.1 amd64
-python3.8 3.8.10-0ubuntu1~20.04.6 amd64
-python3.8-dev 3.8.10-0ubuntu1~20.04.6 amd64
-python3.8-minimal 3.8.10-0ubuntu1~20.04.6 amd64
+python3.8 3.8.10-0ubuntu1~20.04.7 amd64
+python3.8-dev 3.8.10-0ubuntu1~20.04.7 amd64
+python3.8-minimal 3.8.10-0ubuntu1~20.04.7 amd64
-ruby2.7 2.7.0-5ubuntu1.7 amd64
+ruby2.7 2.7.0-5ubuntu1.8 amd64
-vim 2:8.1.2269-1ubuntu5.11 amd64
+vim 2:8.1.2269-1ubuntu5.12 amd64
-vim-common 2:8.1.2269-1ubuntu5.11 all
+vim-common 2:8.1.2269-1ubuntu5.12 all
-vim-runtime 2:8.1.2269-1ubuntu5.11 all
-vim-tiny 2:8.1.2269-1ubuntu5.11 amd64
+vim-runtime 2:8.1.2269-1ubuntu5.12 all
+vim-tiny 2:8.1.2269-1ubuntu5.12 amd64
-xxd 2:8.1.2269-1ubuntu5.11 amd64
+xxd 2:8.1.2269-1ubuntu5.12 amd64

ImageMagick-6/policy.xml patch | blob | history

diff --git a/ImageMagick-6/policy.xml b/ImageMagick-6/policy.xml
index 82a3d0b60df644fff9f5a3d213d6c1da7982d87a..ae5d39144dfebd63f5992a4ddde1c125b00bf112 100644 (file)
--- a/ImageMagick-6/policy.xml
+++ b/ImageMagick-6/policy.xml
@@ -86,6 +86,8 @@
   <policy domain="delegate" rights="none" pattern="HTTP" />
   <!-- in order to avoid to get image with password text -->
   <policy domain="path" rights="none" pattern="@*"/>
+  <!-- forbid access to /etc mitigate again CVE-2022-44267 and CVE-2022-44268 -->
+  <policy domain="path" rights="none" pattern="/etc/*" />
   <!-- disable ghostscript format types -->
   <policy domain="coder" rights="none" pattern="PS" />
   <policy domain="coder" rights="none" pattern="PS2" />
etckeeper - vserver