ubuntu/+source/freetype:applied/ubuntu/zesty-security

Last commit made on 2017-05-09
Get this branch:
git clone -b applied/ubuntu/zesty-security https://git.launchpad.net/ubuntu/+source/freetype
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/zesty-security
Repository:
lp:ubuntu/+source/freetype

Recent commits

428320f... by Marc Deslauriers on 2017-05-04

Import patches-applied version 2.6.3-3ubuntu2.2 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 8af9651f9b10210d4582629dabab1c1706775330
Unapplied parent: f635af42774a4ebf2c0f4c9981fa17579b9099a0

New changelog entries:
  * SECURITY UPDATE: out-of-bounds write in t1_decoder_parse_charstrings
    - debian/patches-freetype/CVE-2017-8105.patch: add a check to
      src/psaux/t1decode.c.
    - CVE-2017-8105
  * SECURITY UPDATE: out-of-bounds write in t1_builder_close_contour
    - debian/patches-freetype/CVE-2017-8287.patch: add a check to
      src/psaux/psobjs.c.
    - CVE-2017-8287

f635af4... by Marc Deslauriers on 2017-05-04

Import patches-unapplied version 2.6.3-3ubuntu2.2 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 6b56cb548231d14f5112e4af58798b0ad3ce7465

New changelog entries:
  * SECURITY UPDATE: out-of-bounds write in t1_decoder_parse_charstrings
    - debian/patches-freetype/CVE-2017-8105.patch: add a check to
      src/psaux/t1decode.c.
    - CVE-2017-8105
  * SECURITY UPDATE: out-of-bounds write in t1_builder_close_contour
    - debian/patches-freetype/CVE-2017-8287.patch: add a check to
      src/psaux/psobjs.c.
    - CVE-2017-8287

8af9651... by Steve Beattie on 2017-04-20

Import patches-applied version 2.6.3-3ubuntu2.1 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 9bd1b16b45bcc53688814b9d997e857a5224f3a0
Unapplied parent: 6b56cb548231d14f5112e4af58798b0ad3ce7465

New changelog entries:
  * SECURITY UPDATE: heap based buffer overflow in cff_parser_run()
    - debian/patches-freetype/CVE-2016-10328.patch: add additional check
      to parser stack size in src/cff/cffparse.c
    - CVE-2016-10328

6b56cb5... by Steve Beattie on 2017-04-20

Import patches-unapplied version 2.6.3-3ubuntu2.1 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 879257fd65f0081fb6ed586a9fba173afd1271c5

New changelog entries:
  * SECURITY UPDATE: heap based buffer overflow in cff_parser_run()
    - debian/patches-freetype/CVE-2016-10328.patch: add additional check
      to parser stack size in src/cff/cffparse.c
    - CVE-2016-10328

9bd1b16... by Marc Deslauriers on 2017-03-16

Import patches-applied version 2.6.3-3ubuntu2 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: bc09eff587aa6c692fa88e9f65d9526e73f48555
Unapplied parent: 879257fd65f0081fb6ed586a9fba173afd1271c5

New changelog entries:
  * SECURITY UPDATE: DoS and possible code execution via missing glyph name
    - debian/patches/CVE-2016-10244.patch: add check to src/type1/t1load.c.
    - CVE-2016-10244

879257f... by Marc Deslauriers on 2017-03-16

Import patches-unapplied version 2.6.3-3ubuntu2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 984d34c200e9b76a948514f4def0b76a94139fa5

New changelog entries:
  * SECURITY UPDATE: DoS and possible code execution via missing glyph name
    - debian/patches/CVE-2016-10244.patch: add check to src/type1/t1load.c.
    - CVE-2016-10244

bc09eff... by Matthias Klose on 2016-04-27

Import patches-applied version 2.6.3-3ubuntu1 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 40b4f215b27ded88a49148795ac96d8ee469fd64
Unapplied parent: 984d34c200e9b76a948514f4def0b76a94139fa5

New changelog entries:
  * Merge with Debian; remaining changes:
    - Make libfreetype6-dev M-A: same.
    - Error out on the use of the freetype-config --libtool option.
    - Don't add multiarch libdirs for freetype-config --libs.
    - Install the freetype2/freetype/config headers into the multiarch
      include path and provide symlinks in /usr/include.
    - debian/patches/0001-Revert-pcf-Signedness-fixes.patch: revert signedness
      fixes in pcf which break grub-mkfont (limits glyphs to 32768, which drops
      most zh_CN glyphs and probably others). (LP: #1559933)

984d34c... by Matthias Klose on 2016-04-27

Import patches-unapplied version 2.6.3-3ubuntu1 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 49b19bad1056e84bd0f5cafdd89e7f02543c6419

New changelog entries:
  * Merge with Debian; remaining changes:
    - Make libfreetype6-dev M-A: same.
    - Error out on the use of the freetype-config --libtool option.
    - Don't add multiarch libdirs for freetype-config --libs.
    - Install the freetype2/freetype/config headers into the multiarch
      include path and provide symlinks in /usr/include.
    - debian/patches/0001-Revert-pcf-Signedness-fixes.patch: revert signedness
      fixes in pcf which break grub-mkfont (limits glyphs to 32768, which drops
      most zh_CN glyphs and probably others). (LP: #1559933)

40b4f21... by Steve Langasek on 2016-03-01

Import patches-applied version 2.6.3-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: ddca749204774df58193b68daeef5636fcab37ee
Unapplied parent: 49b19bad1056e84bd0f5cafdd89e7f02543c6419

New changelog entries:
  * Install the now-available-upstream manpages for freetype-demos.
    Closes: #131137.
  * Register all of the HTML documentation with doc-base. Closes: #451660.
  * Suppress lintian warning about symbols file declaring dependency on
    other package, which is entirely by design.
  * Adjust symbols file to actually produce invalid dependencies when
    internal symbols are used, as intended.
  * New upstream release. Closes: #812518, LP: #1521299
    - stem darkening now disabled by default. Closes: #801370.
  * Avoid marking private symbols as supported from 2.6.1 on. Apparently
    dpkg-gensymbols doesn't do what I expected for this kind of declaration
    anyway, but we should at least avoid marking them wrong in the source.
  * Update to Standards-Version 3.9.7.

49b19ba... by Steve Langasek on 2016-03-01

Import patches-unapplied version 2.6.3-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8216aa5a00e59200504ed5fe1c31b4f0bc4bda42

New changelog entries:
  * Install the now-available-upstream manpages for freetype-demos.
    Closes: #131137.
  * Register all of the HTML documentation with doc-base. Closes: #451660.
  * Suppress lintian warning about symbols file declaring dependency on
    other package, which is entirely by design.
  * Adjust symbols file to actually produce invalid dependencies when
    internal symbols are used, as intended.
  * New upstream release. Closes: #812518, LP: #1521299
    - stem darkening now disabled by default. Closes: #801370.
  * Avoid marking private symbols as supported from 2.6.1 on. Apparently
    dpkg-gensymbols doesn't do what I expected for this kind of declaration
    anyway, but we should at least avoid marking them wrong in the source.
  * Update to Standards-Version 3.9.7.