lp:ubuntu/feisty-security/freetype

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

12. By Kees Cook on 2008-09-10

* SECURITY UPDATE: arbitrary code execution via integer overflows.
* Add debian/patches-freetype/CVE-2008-1806_7_8.patch: upstream fixes
  thanks to Steffen Joeris.
* References
  CVE-2008-1806 CVE-2008-1807 CVE-2008-1808

11. By Kees Cook on 2007-05-22

* SECURITY UPDATE: arbitrary code execution via integer overflows.
* Add debian/patches-freetype/security-ttgload-overflow.patch from
  upstream changes.
* References
  CVE-2007-2754

10. By Kees Cook on 2007-04-02

* SECURITY UPDATE: arbitrary code execution via integer overflows.
* Add debian/patches-freetype/CVE-2007-1351_bdf_integer.patch from
  upstream changes.
* References
  CVE-2007-1351

9. By Steve Langasek on 2006-09-12

* High-urgency upload for RC bugfix.
* Add debian/patches-freetype/CVE-2006-3467_pcf-strlen.patch to
  address CVE-2006-3467, a missing string length check in PCF files that
  leads to a possibly exploitable integer overflow. Thanks to Martin
  Pitt for the patch. Closes: #379920.

8. By Martin Pitt on 2006-07-26

* SECURITY UPDATE: Arbitrary code execution and DoS with crafted font files.
* Add debian/patches-freetype/pcf-strlen.patch:
  - src/pcf/pcfread.c: Detect invalid string lengths.
  - CVE-2006-3467

7. By Keith Packard on 2006-05-17

* Enable full bytecode interpreter instead of just the
  "non-patented portions".
* Use $(CURDIR) instead of $(PWD) to build with sudo. Closes: #367579.

6. By Scott James Remnant (Canonical) on 2006-04-06

Update shlibs dependency. Ubuntu: #5901.

5. By Jonathan Riddell on 2006-01-16

* Patches for Malone #5560.
  [debian/patches/freetype-2.1.10-cvsfixes.patch]:
    - various fixes (mostly embolding)
  [debian/patches/freetype-2.1.10-xorgfix.patch]:
    - put back internal API used by xorg-x11
  [debian/patches/freetype-2.1.10-fixautofit.patch]:
    - fix autofit render setup
  [debian/patches/freetype-2.1.10-memleak.patch]:
    - fix memleak
  [debian/patches/freetype-2.1.10-fixkerning.patch]:
    - fix disabled kerning
  [debian/patches/freetype-2.1.10-fixaliasing.patch]:
    - fix anti-aliasing rendering
* Changes by Jun Kobayashi <email address hidden>

4. By Will Newton <email address hidden> on 2005-06-13

* New upstream (Closes: #298660, #245532).
* New maintainer, co-maintainer required!
* Disable CJK autohinting patch due to incompatability with this version
  of freetype.
* Remove some very old unapplied patches.
* Add freetype-config.1 manpage.
* Add doc-base file for development docs. (Closes: #280827)
* Fix build with non-default umask. (Closes: #307464, #166511)
* Patch merged upstream. (Closes: #252673)
* Acknowledge NMUS.
  (Closes: #221597, #225119, #226380, #249443, #251473, #302269, #259875)

3. By dann frazier on 2004-11-08

* NMU
* debian/patches/090-freetype-2.1.7-normalize-fix.diff: Patch
  by David Mossberger. Backport from freetype2 CVS that fixes an
  off-by-order-of-magnitude performance issue in the normalization code.
  (Closes: #259875)