ubuntu/+source/freetype:applied/ubuntu/vivid-updates

Last commit made on 2015-09-10
Get this branch:
git clone -b applied/ubuntu/vivid-updates https://git.launchpad.net/ubuntu/+source/freetype
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/vivid-updates
Repository:
lp:ubuntu/+source/freetype

Recent commits

ebb76c5... by Marc Deslauriers on 2015-09-10

Import patches-applied version 2.5.2-2ubuntu3.1 to applied/ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: 6a237e2e7ccad710d059fc41ac417fea953e01cb
Unapplied parent: 25274b5df3c14bdd1f96f5b9b88298cfdc7da2e5

New changelog entries:
  * SECURITY UPDATE: uninitialized memory reads (LP: #1449225)
    - debian/patches-freetype/savannah-bug-41309.patch: fix use of
      uninitialized data in src/cid/cidload.c, src/psaux/psobjs.c,
      src/type1/t1load.c, src/type42/t42parse.c.
    - No CVE number
  * SECURITY UPDATE: denial of service via infinite loop in parse_encode
    (LP: #1492124)
    - debian/patches-freetype/savannah-bug-41590.patch: protect against
      invalid charcode in src/type1/t1load.c.
    - No CVE number

25274b5... by Marc Deslauriers on 2015-09-10

Import patches-unapplied version 2.5.2-2ubuntu3.1 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: bfc948a8e42902d23b726663ed3683a1921cf13e

New changelog entries:
  * SECURITY UPDATE: uninitialized memory reads (LP: #1449225)
    - debian/patches-freetype/savannah-bug-41309.patch: fix use of
      uninitialized data in src/cid/cidload.c, src/psaux/psobjs.c,
      src/type1/t1load.c, src/type42/t42parse.c.
    - No CVE number
  * SECURITY UPDATE: denial of service via infinite loop in parse_encode
    (LP: #1492124)
    - debian/patches-freetype/savannah-bug-41590.patch: protect against
      invalid charcode in src/type1/t1load.c.
    - No CVE number

6a237e2... by Marc Deslauriers on 2015-02-24

Import patches-applied version 2.5.2-2ubuntu3 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: dd694dc820a9ddc29dee2e73679dadfba59d95b6
Unapplied parent: bfc948a8e42902d23b726663ed3683a1921cf13e

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    multiple security issues
    - debian/patches-freetype/CVE-2014-96xx/*.patch: backport a large
      quantity of upstream commits to fix multiple security issues.
    - CVE-2014-9656
    - CVE-2014-9657
    - CVE-2014-9658
    - CVE-2014-9659
    - CVE-2014-9660
    - CVE-2014-9661
    - CVE-2014-9662
    - CVE-2014-9663
    - CVE-2014-9664
    - CVE-2014-9665
    - CVE-2014-9666
    - CVE-2014-9667
    - CVE-2014-9668
    - CVE-2014-9669
    - CVE-2014-9670
    - CVE-2014-9671
    - CVE-2014-9672
    - CVE-2014-9673
    - CVE-2014-9674
    - CVE-2014-9675

bfc948a... by Marc Deslauriers on 2015-02-24

Import patches-unapplied version 2.5.2-2ubuntu3 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: b7bd7afcfc6ff71066bc1872b66a9000ea9948d1

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    multiple security issues
    - debian/patches-freetype/CVE-2014-96xx/*.patch: backport a large
      quantity of upstream commits to fix multiple security issues.
    - CVE-2014-9656
    - CVE-2014-9657
    - CVE-2014-9658
    - CVE-2014-9659
    - CVE-2014-9660
    - CVE-2014-9661
    - CVE-2014-9662
    - CVE-2014-9663
    - CVE-2014-9664
    - CVE-2014-9665
    - CVE-2014-9666
    - CVE-2014-9667
    - CVE-2014-9668
    - CVE-2014-9669
    - CVE-2014-9670
    - CVE-2014-9671
    - CVE-2014-9672
    - CVE-2014-9673
    - CVE-2014-9674
    - CVE-2014-9675

dd694dc... by Marco Trevisan (Treviño) on 2015-01-23

Import patches-applied version 2.5.2-2ubuntu2 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 0c22fc9295eaa710cdd1c690cbd8b05e66c41614
Unapplied parent: 5a602b376e40af6ad0821cf1282d37e502edbdb3

New changelog entries:
  * Added patchset to fix multithread violations, LP: #1199571
    - debian/patches-freetype/multi-thread-violations.patch

b7bd7af... by Marco Trevisan (Treviño) on 2015-01-23

Import patches-unapplied version 2.5.2-2ubuntu2 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 3a3f368db20528927049c5e5cd8477f1002475b0

New changelog entries:
  * Added patchset to fix multithread violations, LP: #1199571
    - debian/patches-freetype/multi-thread-violations.patch

5a602b3... by Marco Trevisan (Treviño) on 2015-01-23

Remove .pc directory from source package.

0c22fc9... by Steve Langasek on 2014-09-19

Import patches-applied version 2.5.2-2ubuntu1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 71b5c71ac25b9c96701fa548eb5b535ff2d30bdf
Unapplied parent: 3f41870385c96478206bf58471b15f5040135aff

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/patches-freetype/revert_scalable_fonts_metric.patch:
      revert commit "Fix metrics on size request for scalable fonts.",
      which breaks gtk underlining markups
    - Make libfreetype6-dev M-A: same.
    - Error out on the use of the freetype-config --libtool option.
    - Don't add multiarch libdirs for freetype-config --libs.
    - Install the freetype2/config headers into the multiarch include path
      and provide symlinks in /usr/include.
  * Dropped changes, included in Debian:
    - debian/patches/CVE-2014-2240.patch: validate hintMask in
      src/cff/cf2hints.c.
    - debian/patches/CVE-2014-2241.patch: don't trigger asserts in
      src/cff/cf2ft.c.
    - debian/patches-freetype/0001-Fix-Savannah-bug-40997.patch: Cherry-pick
      upstream patch to fix a double free.
    - debian/patches-freetype/0002-Fix-Savannah-bug-42418.patch: Cherry-pick
      upstream patch to fix cjk font rendering issue.

3a3f368... by Steve Langasek on 2014-09-19

Import patches-unapplied version 2.5.2-2ubuntu1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: f3322a2a517a4d7c07e5ad5c4d939a778f8ad3e1

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/patches-freetype/revert_scalable_fonts_metric.patch:
      revert commit "Fix metrics on size request for scalable fonts.",
      which breaks gtk underlining markups
    - Make libfreetype6-dev M-A: same.
    - Error out on the use of the freetype-config --libtool option.
    - Don't add multiarch libdirs for freetype-config --libs.
    - Install the freetype2/config headers into the multiarch include path
      and provide symlinks in /usr/include.
  * Dropped changes, included in Debian:
    - debian/patches/CVE-2014-2240.patch: validate hintMask in
      src/cff/cf2hints.c.
    - debian/patches/CVE-2014-2241.patch: don't trigger asserts in
      src/cff/cf2ft.c.
    - debian/patches-freetype/0001-Fix-Savannah-bug-40997.patch: Cherry-pick
      upstream patch to fix a double free.
    - debian/patches-freetype/0002-Fix-Savannah-bug-42418.patch: Cherry-pick
      upstream patch to fix cjk font rendering issue.

3f41870... by Steve Langasek on 2014-09-19

Remove .pc directory from source package.