committing changes in /etc made by "/usr/bin/apt full-upgrade -y"

Packages with configuration changes:
-imagemagick-6-common 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 all
+imagemagick-6-common 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 all

Package changes:
-curl 7.81.0-1ubuntu1.8 amd64
+curl 7.81.0-1ubuntu1.10 amd64
-imagemagick 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
-imagemagick-6-common 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 all
-imagemagick-6.q16 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
+imagemagick 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
+imagemagick-6-common 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 all
+imagemagick-6.q16 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
-libcurl3-gnutls 7.81.0-1ubuntu1.8 amd64
-libcurl4 7.81.0-1ubuntu1.8 amd64
-libcurl4-gnutls-dev 7.81.0-1ubuntu1.8 amd64
+libcurl3-gnutls 7.81.0-1ubuntu1.10 amd64
+libcurl4 7.81.0-1ubuntu1.10 amd64
+libcurl4-gnutls-dev 7.81.0-1ubuntu1.10 amd64
-libmagick++-6.q16-8 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
+libmagick++-6.q16-8 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
-libmagickcore-6.q16-6 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
-libmagickcore-6.q16-6-extra 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
+libmagickcore-6.q16-6 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
+libmagickcore-6.q16-6-extra 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
-libmagickwand-6.q16-6 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1 amd64
+libmagickwand-6.q16-6 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2 amd64
-libpython3.10 3.10.6-1~22.04.2 amd64
-libpython3.10-dev 3.10.6-1~22.04.2 amd64
-libpython3.10-minimal 3.10.6-1~22.04.2 amd64
-libpython3.10-stdlib 3.10.6-1~22.04.2 amd64
+libpython3.10 3.10.6-1~22.04.2ubuntu1 amd64
+libpython3.10-dev 3.10.6-1~22.04.2ubuntu1 amd64
+libpython3.10-minimal 3.10.6-1~22.04.2ubuntu1 amd64
+libpython3.10-stdlib 3.10.6-1~22.04.2ubuntu1 amd64
-python3.10 3.10.6-1~22.04.2 amd64
-python3.10-dev 3.10.6-1~22.04.2 amd64
-python3.10-minimal 3.10.6-1~22.04.2 amd64
-python3.10-venv 3.10.6-1~22.04.2 amd64
+python3.10 3.10.6-1~22.04.2ubuntu1 amd64
+python3.10-dev 3.10.6-1~22.04.2ubuntu1 amd64
+python3.10-minimal 3.10.6-1~22.04.2ubuntu1 amd64
+python3.10-venv 3.10.6-1~22.04.2ubuntu1 amd64
-vim 2:8.2.3995-1ubuntu2.3 amd64
+vim 2:8.2.3995-1ubuntu2.4 amd64
-vim-common 2:8.2.3995-1ubuntu2.3 all
-vim-gtk3 2:8.2.3995-1ubuntu2.3 amd64
-vim-gui-common 2:8.2.3995-1ubuntu2.3 all
+vim-common 2:8.2.3995-1ubuntu2.4 all
+vim-gtk3 2:8.2.3995-1ubuntu2.4 amd64
+vim-gui-common 2:8.2.3995-1ubuntu2.4 all
-vim-runtime 2:8.2.3995-1ubuntu2.3 all
+vim-runtime 2:8.2.3995-1ubuntu2.4 all
-vim-tiny 2:8.2.3995-1ubuntu2.3 amd64
+vim-tiny 2:8.2.3995-1ubuntu2.4 amd64
-xxd 2:8.2.3995-1ubuntu2.3 amd64
+xxd 2:8.2.3995-1ubuntu2.4 amd64

diff --git a/ImageMagick-6/policy.xml b/ImageMagick-6/policy.xml
index 808fcf60eb21b767f8eccc026c5208f580e175af..bb96f0303d2e9d3929d3eb2cc8e35044f02a612f 100644 (file)
--- a/ImageMagick-6/policy.xml
+++ b/ImageMagick-6/policy.xml
@@ -89,6 +89,8 @@
   <policy domain="delegate" rights="none" pattern="HTTP" />
   <!-- in order to avoid to get image with password text -->
   <policy domain="path" rights="none" pattern="@*"/>
+  <!-- forbid access to /etc mitigate again CVE-2022-44267 and CVE-2022-44268 -->
+  <policy domain="path" rights="none" pattern="/etc/*" />
   <!-- disable ghostscript format types -->
   <policy domain="coder" rights="none" pattern="PS" />
   <policy domain="coder" rights="none" pattern="PS2" />