ubuntu/+source/freetype:applied/debian/wheezy

Last commit made on 2016-04-02
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/freetype
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/freetype

Recent commits

e0f0a80... by Guido Günther on 2016-01-24

Import patches-applied version 2.4.9-1.1+deb7u3 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 1145deece6efc79c835d70b73237e3d51261703d
Unapplied parent: f513947b70a3db6f6e32d203ec15865c7073921b

New changelog entries:
  * Non-maintainer upload by LTS team.
  * CVE-2014-9674: integer overflow and heap-based buffer overflow
    in Mac_Read_POST_Resource. The added patch also includes the fixes for
    CVE-2014-9673 since they overlap. Closes: #777656
  * Non-maintainer upload.
  * CVE-2014-9745: Fix Savannah bug #41590. Protect against invalid number in
    t1load.c parse_encoding().
  * CVE-2014-9746, CVE-2014-9747: Fix Savannah bug #41309. Correct use of
    uninitialized data in t1load.c, cidload.c, t42parse.c and psobjs.c.

f513947... by Guido Günther on 2016-01-24

Import patches-unapplied version 2.4.9-1.1+deb7u3 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 058b38cd212b65d7e073d44ddb2673a7a8cf9fc0

New changelog entries:
  * Non-maintainer upload by LTS team.
  * CVE-2014-9674: integer overflow and heap-based buffer overflow
    in Mac_Read_POST_Resource. The added patch also includes the fixes for
    CVE-2014-9673 since they overlap. Closes: #777656
  * Non-maintainer upload.
  * CVE-2014-9745: Fix Savannah bug #41590. Protect against invalid number in
    t1load.c parse_encoding().
  * CVE-2014-9746, CVE-2014-9747: Fix Savannah bug #41309. Correct use of
    uninitialized data in t1load.c, cidload.c, t42parse.c and psobjs.c.

1145dee... by Moritz Mühlenhoff <email address hidden> on 2015-03-06

Import patches-applied version 2.4.9-1.1+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 927b8d86821758630a395f9b35c5d8bf3cb9d679
Unapplied parent: 058b38cd212b65d7e073d44ddb2673a7a8cf9fc0

New changelog entries:
  * CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9660 CVE-2014-9661
    CVE-2014-9663 CVE-2014-9664 CVE-2014-9666 CVE-2014-9667 CVE-2014-9669
    CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9675

058b38c... by Moritz Mühlenhoff <email address hidden> on 2015-03-06

Import patches-unapplied version 2.4.9-1.1+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 8110cfe5e60879ecf5ec6de779431c25199b1522

New changelog entries:
  * CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9660 CVE-2014-9661
    CVE-2014-9663 CVE-2014-9664 CVE-2014-9666 CVE-2014-9667 CVE-2014-9669
    CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9675

927b8d8... by Salvatore Bonaccorso on 2012-12-28

Import patches-applied version 2.4.9-1.1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: fd587c4d56a476c69721f04d3c5e3d3fd63311f5
Unapplied parent: 8110cfe5e60879ecf5ec6de779431c25199b1522

New changelog entries:
  * Non-maintainer upload.
    Upload ACKed by Steve Langasek <email address hidden> on #debian-devel.
  * Add savannah-bug-37905.patch patch
    [SECURITY] CVE-2012-5668: NULL Pointer Dereference in bdf_free_font.
    (Closes: #696691)
  * Add savannah-bug-37906.patch patch
    [SECURITY] CVE-2012-5669: Out-of-bounds read in _bdf_parse_glyphs.
    (Closes: #696691)
  * Add savannah-bug-37907.patch patch
    [SECURITY] CVE-2012-5670: Out-of-bounds write in _bdf_parse_glyphs.
    (Closes: #696691)

8110cfe... by Salvatore Bonaccorso on 2012-12-28

Import patches-unapplied version 2.4.9-1.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f10a4e18007dab06198b7881c6dcde3bdd949746

New changelog entries:
  * Non-maintainer upload.
    Upload ACKed by Steve Langasek <email address hidden> on #debian-devel.
  * Add savannah-bug-37905.patch patch
    [SECURITY] CVE-2012-5668: NULL Pointer Dereference in bdf_free_font.
    (Closes: #696691)
  * Add savannah-bug-37906.patch patch
    [SECURITY] CVE-2012-5669: Out-of-bounds read in _bdf_parse_glyphs.
    (Closes: #696691)
  * Add savannah-bug-37907.patch patch
    [SECURITY] CVE-2012-5670: Out-of-bounds write in _bdf_parse_glyphs.
    (Closes: #696691)

fd587c4... by Steve Langasek on 2012-03-24

Import patches-applied version 2.4.9-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: dc463e33d5fffdfa2535bce82e4fc59b88f763f7
Unapplied parent: f10a4e18007dab06198b7881c6dcde3bdd949746

New changelog entries:
  * New upstream release
    - upstream fix for multiple vulnerabilities: CVE-2012-1126,
      CVE-2012-1133, CVE-2012-1134, CVE-2012-1136, CVE-2012-1142,
      CVE-2012-1144. and others. Closes: #662864.
    - update symbols file for a new symbol, ft_raccess_guess_table
  * debian/patches-freetype/savannah-bug-35847.patch,
    debian/patches-freetype/savannah-bug-35833.patch: pull two bugfixes from
    upstream git on top of 2.4.9, to address regressions affecting
    ghostscript. Thanks to Till Kamppeter for pointing this out.
  * push CPPFLAGS into CFLAGS for ft2demos, so our demos will be secure.
    Closes: #663613.
  * don't let a quiltrc override our QUILT_PATCHES settings in debian/rules.
    Closes: #617217.
  * Migrate debian/copyright to copyright-format 1.0, and fix up the upstream
    URL. Closes: #642059.

f10a4e1... by Steve Langasek on 2012-03-24

Import patches-unapplied version 2.4.9-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cf2752aeaa90e51c3cfc5e78116fed80b7cecd15

New changelog entries:
  * New upstream release
    - upstream fix for multiple vulnerabilities: CVE-2012-1126,
      CVE-2012-1133, CVE-2012-1134, CVE-2012-1136, CVE-2012-1142,
      CVE-2012-1144. and others. Closes: #662864.
    - update symbols file for a new symbol, ft_raccess_guess_table
  * debian/patches-freetype/savannah-bug-35847.patch,
    debian/patches-freetype/savannah-bug-35833.patch: pull two bugfixes from
    upstream git on top of 2.4.9, to address regressions affecting
    ghostscript. Thanks to Till Kamppeter for pointing this out.
  * push CPPFLAGS into CFLAGS for ft2demos, so our demos will be secure.
    Closes: #663613.
  * don't let a quiltrc override our QUILT_PATCHES settings in debian/rules.
    Closes: #617217.
  * Migrate debian/copyright to copyright-format 1.0, and fix up the upstream
    URL. Closes: #642059.

dc463e3... by Steve Langasek on 2011-11-17

Import patches-applied version 2.4.8-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: e6cf9c43ef227f1050627c39f04b74024237bde4
Unapplied parent: cf2752aeaa90e51c3cfc5e78116fed80b7cecd15

New changelog entries:
  * New upstream release
    - upstream fix for CVE-2011-3439. Closes: #649122.
    - adjust libfreetype6.symbols for a newly-exported function.

cf2752a... by Steve Langasek on 2011-11-17

Import patches-unapplied version 2.4.8-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 16af3756ccc952f561e5ba84db7e385fc0b029e5

New changelog entries:
  * New upstream release
    - upstream fix for CVE-2011-3439. Closes: #649122.
    - adjust libfreetype6.symbols for a newly-exported function.