diff -Nru freetype-2.12.1+dfsg/debian/changelog freetype-2.12.1+dfsg/debian/changelog
--- freetype-2.12.1+dfsg/debian/changelog	2022-07-05 01:30:49.000000000 +0000
+++ freetype-2.12.1+dfsg/debian/changelog	2023-07-06 03:00:43.000000000 +0000
@@ -1,8 +1,17 @@
-freetype (2.12.1+dfsg-3~22.04.sav0) jammy; urgency=medium
+freetype (2.12.1+dfsg-3ubuntu0.1~22.04.sav0) jammy; urgency=medium
 
   * Backport to Jammy
 
- -- Rob Savoury <savoury@savos.tech>  Mon, 04 Jul 2022 18:30:49 -0700
+ -- Rob Savoury <savoury@savos.tech>  Thu, 06 Jul 2023 13:00:43 +1000
+
+freetype (2.12.1+dfsg-3ubuntu0.1) kinetic-security; urgency=medium
+
+  * SECURITY UPDATE: Integer overflow
+    - debian/patches/CVE-2023-2004.patch: fix a integer overflow
+      in src/truetype/ttgxvar.c.
+    - CVE-2023-2004
+
+ -- Leonidas Da Silva Barbosa <leo.barbosa@canonical.com>  Tue, 02 May 2023 07:22:49 -0300
 
 freetype (2.12.1+dfsg-3) unstable; urgency=medium
 
diff -Nru freetype-2.12.1+dfsg/debian/control freetype-2.12.1+dfsg/debian/control
--- freetype-2.12.1+dfsg/debian/control	2022-06-18 12:02:18.000000000 +0000
+++ freetype-2.12.1+dfsg/debian/control	2023-05-02 10:22:49.000000000 +0000
@@ -1,7 +1,8 @@
 Source: freetype
 Section: libs
 Priority: optional
-Maintainer: Hugh McMaster <hugh.mcmaster@outlook.com>
+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
+XSBC-Original-Maintainer: Hugh McMaster <hugh.mcmaster@outlook.com>
 Uploaders: Anthony Fok <foka@debian.org>, Keith Packard <keithp@keithp.com>
 Build-Depends:
  debhelper-compat (= 13),
diff -Nru freetype-2.12.1+dfsg/debian/patches/CVE-2023-2004.patch freetype-2.12.1+dfsg/debian/patches/CVE-2023-2004.patch
--- freetype-2.12.1+dfsg/debian/patches/CVE-2023-2004.patch	1970-01-01 00:00:00.000000000 +0000
+++ freetype-2.12.1+dfsg/debian/patches/CVE-2023-2004.patch	2023-05-02 10:22:40.000000000 +0000
@@ -0,0 +1,30 @@
+From e6fda039ad638866b7a6a5d046f03278ba1b7611 Mon Sep 17 00:00:00 2001
+From: Werner Lemberg <wl@gnu.org>
+Date: Mon, 14 Nov 2022 19:18:19 +0100
+Subject: [PATCH] * src/truetype/ttgxvar.c (tt_hvadvance_adjust): Integer
+ overflow.
+
+Reported as
+
+  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50462
+diff --git a/src/truetype/ttgxvar.c b/src/truetype/ttgxvar.c
+index 6a0edef..eff7219 100644
+--- a/src/truetype/ttgxvar.c
++++ b/src/truetype/ttgxvar.c
+@@ -42,6 +42,7 @@
+ #include <ft2build.h>
+ #include <freetype/internal/ftdebug.h>
+ #include FT_CONFIG_CONFIG_H
++#include <freetype/internal/ftcalc.h>
+ #include <freetype/internal/ftstream.h>
+ #include <freetype/internal/sfnt.h>
+ #include <freetype/tttags.h>
+@@ -1140,7 +1141,7 @@
+                 delta == 1 ? "" : "s",
+                 vertical ? "VVAR" : "HVAR" ));
+ 
+-    *avalue += delta;
++    *avalue = ADD_INT( *avalue, delta );
+ 
+   Exit:
+     return error;
diff -Nru freetype-2.12.1+dfsg/debian/patches/series freetype-2.12.1+dfsg/debian/patches/series
--- freetype-2.12.1+dfsg/debian/patches/series	2022-06-19 11:47:26.000000000 +0000
+++ freetype-2.12.1+dfsg/debian/patches/series	2023-05-02 10:22:40.000000000 +0000
@@ -5,3 +5,4 @@
 CVE-2022-31782.patch
 fix-wild-free-svg.patch
 hardening.patch
+CVE-2023-2004.patch