Last commit made on 2016-04-15
Get this branch:
git clone -b ubuntu/xenial-proposed https://git.launchpad.net/ubuntu/+source/freetype
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information


Recent commits

ee19457... by Mathieu Trudel-Lapierre on 2016-04-15

Import patches-unapplied version 2.6.1-0.1ubuntu2 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: efaf1321169e8d1f1233b2de9209a2b166d04364

New changelog entries:
  * debian/patches/0001-Revert-pcf-Signedness-fixes.patch: revert signedness
    fixes in pcf which break grub-mkfont (limits glyphs to 32768, which drops
    most zh_CN glyphs and probably others). (LP: #1559933)

efaf132... by Marc Deslauriers on 2016-02-17

Import patches-unapplied version 2.6.1-0.1ubuntu1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8216aa5a00e59200504ed5fe1c31b4f0bc4bda42

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - Make libfreetype6-dev M-A: same.
    - Error out on the use of the freetype-config --libtool option.
    - Don't add multiarch libdirs for freetype-config --libs.
    - Install the freetype2/freetype/config headers into the multiarch
      include path and provide symlinks in /usr/include.
  * Dropped patches, included upstream:
    - debian/patches-freetype/multi-thread-violations.patch
    - debian/patches-freetype/savannah-bug-41309.patch
    - debian/patches-freetype/savannah-bug-41590.patch
  * debian/patches-freetype/revert_scalable_fonts_metric.patch: dropped,
    can no longer reproduce the issue originally reported in precise, and
    upstream doesn't think this is an appropriate fix.

8216aa5... by "Matteo F. Vescovi" <email address hidden> on 2015-11-10

Import patches-unapplied version 2.6.1-0.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f4a9e1bd1a81e0dcde9d589b78b41c243c3c48ee

New changelog entries:
  * Non-maintainer upload.
  * New upstream release (Closes: #804050)

f4a9e1b... by Steve Langasek on 2015-09-19

Import patches-unapplied version 2.6-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ebb3bd6d8051cce42fd8367452f8d09f4e33bc3d

New changelog entries:
  * Adjust symbols references for private symbols to sort to a higher (fake)
    version number instead of a lower, so that when linking against
    libfreetype without using its symbols, we don't get a wrong dependency on
    libfreetype6 (>= 1.PRIVATE.1). Closes: #799445.
  * Pass --without-harfbuzz in debian/rules, to avoid opportunistically
    picking this up as a dependency if libharfbuzz-dev is installed.

ebb3bd6... by Steve Langasek on 2015-09-12

Import patches-unapplied version 2.6-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c427bbb9d32c1855ade11c526b23137bde9fe7b8

New changelog entries:
  * New upstream release. Closes: #793751.
    * Includes a fix for a spurious error in FT_Get_SubGlyph_Info.
      Closes: #778493.
    * Includes a fix for an infinite loop in T1 font loading.
      Closes: #798620.
    * Includes a fix for an uninitialized memory bug in font parsers.
      Closes: #798619.
    * Includes fix for an out-of-bounds rate in the Adobe CFF implementation
      (which was not previously enabled in the package build).
      Closes: #773084.
    * Includes a fix for a crasher in xdvi. Closes: #733894.
    * Fixes support for compressed pcf fonts. Closes: #780340.
    * Drop various cherrypicked upstream patches from the package.
    * Ship upstream freetype-config manpage in place of our own.
      Closes LP: #1390767.
  * Update symbols file. Includes dropping various private symbols that
    don't appear to have ever been part of the API.
  * Fix exclusion of redundant license file (txt -> TXT)
  * Re-enable the CFF driver, now that most related fonts have been fixed.
    Closes: #795653.
  * Enable stage1 build without X library dependencies for bootstrapping.
    Closes: #752270, #752271.

c427bbb... by Keith Packard on 2015-03-16

Import patches-unapplied version 2.5.2-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e6a2a6de51e8cde1ac2191cf4fde18d6c6ff7770

New changelog entries:
  * Fix Savannah bug #43774. Closes #780143.
  * Release 2.5.2-4

e6a2a6d... by Keith Packard on 2015-02-24

Import patches-unapplied version 2.5.2-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f3322a2a517a4d7c07e5ad5c4d939a778f8ad3e1

New changelog entries:
  * Fix Savannah bug #43535. CVE-2014-9675
  * [bdf] Fix Savannah bug #41692. CVE-2014-9675-fixup-1
  * src/base/ftobj.c (Mac_Read_POST_Resource): Additional overflow check
    in the summation of POST fragment lengths. CVE-2014-0674-part-2
  * src/base/ftobjs.c (Mac_Read_POST_Resource): Insert comments and fold
    too long tracing messages. CVS-2014-9674-fixup-2
  * src/base/ftobjs.c (Mac_Read_POST_Resource): Use unsigned long variables to read the lengths in POST fragments. CVE-2014-9674-fixup-1
  * Fix Savannah bug #43538. CVE-2014-9674-part-1
  * Fix Savannah bug #43539. CVE-2014-9673
  * src/base/ftobjs.c (Mac_Read_POST_Resource): Avoid memory leak by
    a broken POST table in resource-fork. CVE-2014-9673-fixup
  * Fix Savannah bug #43540. CVE-2014-9672
  * Fix Savannah bug #43547. CVE-2014-9671
  * Fix Savannah bug #43548. CVE-2014-9670
  * [sfnt] Fix Savannah bug #43588. CVE-2014-9669
  * [sfnt] Fix Savannah bug #43589. CVE-2014-9668
  * [sfnt] Fix Savannah bug #43590. CVE-2014-9667
  * [sfnt] Fix Savannah bug #43591. CVE-2014-9666
  * Change some fields in `FT_Bitmap' to unsigned type. CVE-2014-9665
  * Fix uninitialized variable warning. CVE-2014-9665-fixup-2
  * Make `FT_Bitmap_Convert' correctly handle negative `pitch' values.
  * [type1, type42] Fix Savannah bug #43655. CVE-2014-9664
  * [sfnt] Fix Savannah bug #43656. CVE-2014-9663
  * [cff] Fix Savannah bug #43658. CVE-2014-9662
  * [type42] Allow only embedded TrueType fonts. CVE-2014-9661
  * [bdf] Fix Savannah bug #43660. CVE-2014-9660
  * [cff] Fix Savannah bug #43661. CVE-2014-9659
  * [sfnt] Fix Savannah bug #43672. CVE-2014-9658
  * [truetype] Fix Savannah bug #43679. CVE-2014-9657
  * [sfnt] Fix Savannah bug #43680. CVE-2014-9656
  * All CVEs patched. Closes: #777656.

f3322a2... by Steve Langasek on 2014-09-19

Import patches-unapplied version 2.5.2-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 48a23f0c520e4737228c922dfa21b063dcccdfca

New changelog entries:
  * Acknowledge security NMU; thanks to Michael Gilbert.
  * Standards-Version 3.9.6.
  * Bump debhelper build-dependency to 9.
  * debian/patches/enable-old-cff.patch: disable the new CFF hinter from
    Adobe, working around wrong hinting with some toolkits on Linux. Thanks
    to Samat K Jain <email address hidden> for preparing the patch.
    Closes: #730742.
  * debian/patches-freetype/0001-Fix-Savannah-bug-40997.patch: Cherry-pick
    upstream patch to fix a double free. Closes: #747002, LP: #1310728.
  * debian/patches-freetype/0002-Fix-Savannah-bug-42418.patch: Cherry-pick
    upstream patch to fix cjk font rendering issue. LP: #1310017.
  * debian/patches-freetype/verbose-libtool.patch: don't let libtool
    suppress compiler output.
  * debian/patches-freetype/no-uninitialized-bbox.patch: ensure that our
    variable is reliably initialized before use, fixing a build failure on
    ppc64el when building with -O3.

48a23f0... by Michael Gilbert <email address hidden> on 2014-07-28

Import patches-unapplied version 2.5.2-1.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a5a137006c02461b219e7af2464799a18c86a0a0

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix two security issues in the CFF rasterizer (closes: #741299)
    - CVE-2014-2240: out-of-bounds read/write in cf2hints.c.
    - CVE-2014-2241: denial-of-service in cf2ft.c.

a5a1370... by Steve Langasek on 2013-12-25

Import patches-unapplied version 2.5.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 50883c0137a49255552a3a621f32d400ff759b87

New changelog entries:
  * New upstream release
    - fixes a crasher bug with certain fonts. Closes: #733052.
    - drop of additional symbols which were previously exported but are only
      meant for debugging and upstream recommends not enabling them when
      building in "release mode". If this impacts users of freetype, we can
      re-enable these symbols later.
  * Call autogen.sh on build to refresh autotools; not using dh-autoreconf
    because the upstream directory structure is non-standard and it's a
    throw-away dir, so there's no advantage to dh-autoreconf's rollback
  * Fix symbols file with respect to more complete version info found in
  * Drop debian/patches-ft2demos/compiler-warning-fixes.patch, which is
    actually a bug in the compiler_hardening_fixes.patch; fix it there
  * Fix libpng detection when cross-building.