freetype

Branch :

Log

Commit	Date	Message
a8e93b57	2012-04-14 09:45:45	Update to freetype 2.4.9 Another round of fixes to better handle invalid fonts. Many of them are vulnerabilities (see CVE-2012-1126 up to CVE-2012-1144 and SA48320).
976f735d	2011-11-19 11:32:45	Update to freetype 2.4.8. Security update fixing CVE-2011-3439
db0c239a	2011-11-16 21:18:14	Commit the last bit of freetype 2.4.6 which I previously hold back, since it changes the metrics of some TrueType fonts. Users of DejaVu at small sizes in xterm can use the 'scaleHeight' resource to restore the previous vertical spacing (with xterm 276 and later). Tested on a wide set of ports by ajachoutot@, naddy@, krw@ shadchin@.
41e9e340	2011-11-13 22:34:37	Update for freetype 2.4.7.
12dde70a	2011-10-30 10:14:50	Update to freetype 2.4.7. This moslty is a bug-fix release for CVE-2011-3256.
6b773761	2011-09-28 19:01:21	Update to freetype 2.4.6. For now, omit the patch to ttdriver.c that changes some font metrics and appearance of applications using TrueType fonts. Will revisit once the issue is solved.
f99cf4f7	2011-07-18 21:15:33	Fix for CVE-2011-0226 from Freetype git repository.
f6c615f0	2011-07-18 20:29:56	Update to freetype 2.4.5. Tested by many.
21087514	2010-12-19 16:08:12	Update to freetype 2.4.4. Tested by shadchin@, ajacoutot@, krw@.
4aee4623	2010-11-06 16:46:57	Security MFC for CVE-2010-3855 commit 59eb9f8cfe7d1df379a2318316d1f04f80fba54a Author: Werner Lemberg <wl@gnu.org> Date: Tue Oct 12 07:49:17 2010 +0200 Fix Savannah bug #31310. * src/truetype/ttgxvar.c (ft_var_readpackedpoints): Protect against invalid `runcnt' values.
625c5107	2010-11-06 16:45:49	MFC security fix for CVE-2010-3814 commit 0edf0986f3be570f5bf90ff245a85c1675f5c9a4 Author: Werner Lemberg <wl@gnu.org> Date: Wed Oct 6 11:52:27 2010 +0200 [truetype] Improve error handling of `SHZ' bytecode instruction. Problem reported by Chris Evans <scarybeasts@gmail.com>. * src/truetype/ttinterp.c (Ins_SHZ): Check `last_point'.
bfe3d87a	2010-10-23 19:30:16	Update to freetype 2.4.3. Tested at least by krw@, ajacoutot@ and jasper@
45438d01	2010-09-01 19:14:23	Update to freetype 2.4.2. This has been in snapshots for a while and tested explicitely by ajacoutot@ jasper@, jcs@, krw@ and others on various architectures.
2b3e93e3	2010-07-17 14:06:43	patches from Freetype.org for the security issues found by Robert Swiecki: CVE-2010-2497 freetype integer underflow CVE-2010-2498 freetype invalid free CVE-2010-2499 freetype buffer overflow CVE-2010-2500 freetype integer overflow CVE-2010-2519 freetype heap buffer overflow CVE-2010-2520 freetype buffer overflow on heap
d9a92f27	2010-05-08 14:15:29	use INSTALL_DATA in BSD Makefiles. ok oga@
54193b0f	2010-03-25 20:53:34	Missing resurected files in freetype 2.3.12
1be5fe96	2010-03-25 20:49:53	Update to freetpe 2.3.12. Tested against ports by naddy@.
df064737	2010-03-25 20:32:36	Update to freetpe 2.3.12. Tested against ports by naddy@.
164d06ad	2009-04-27 07:11:16	Fixes for CVE-2009-0946 from freetype2 git repository: Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c. Plus one additional fix for malformed compressed data.
e2d272f6	2009-03-26 19:04:00	put libz back into Libs:. Fixes vax linking.
703afbb0	2009-03-26 07:36:34	update to freetype-docs 2.3.9
8a907a31	2009-03-26 07:31:44	Update to Freetype 2.3.9. Bump major to be safe. Small arm assembler fix in ftconfig.h by drahn@
87859a9c	2009-03-10 20:28:33	Update to Freetype 2.3.8. Tested by jsg@.
f8e0dbd0	2008-08-21 05:09:08	Update to Freetype 2.3.7. This is a bug fix release. No API change.
6f11b80c	2008-06-22 17:37:35	Update to freetype 2.3.6. Contains security fixes for CVE-2008-1806, CVE-2008-1807 and CVE-2008-1808. Tested by many.
1969f0b7	2007-11-24 15:48:33	Don't hard-code sizeof(long) in ftconfig.h. Fixes 64bit architectures. Problem noticed by sturm@.
8f07cc07	2007-10-27 07:09:48	Use buils/unix/ftsystem.c instead of the generic ANSI C one, which doesn't set CLOSE_ON_EXEC on files descriptors opened by freetype. Fixes a fd leak reported by kurt@. Tested by naddy@ and others.
3c28b922	2007-09-08 16:59:03	More bits for freetype 2.3.5
f4cb73c3	2007-09-08 16:39:54	Merge freetype 2.3.5. Tested by naddy@ and mbalmer@.
f731f6ac	2007-09-08 16:28:30	import freetype 2.3.5
e5159214	2007-05-29 15:37:57	fix two instances XORG_PREFIX that escaped renaming to X11BASE.
15235d0d	2007-05-25 01:23:29	Fix for CVE-2007-2754: integer overflow that can lead to an heap overflow. Discovered by Victor Stinner. Patch from Freetype repository.
8c80956f	2007-04-07 15:37:50	Don't include debugging symbols.
0440c678	2007-04-04 22:30:55	fix $OpenBSD$ RCS tags; ok matthieu@
517a55a2	2007-04-04 02:51:57	bdf CVE-2007-1351 BDFFont Parsing Integer Overflow Vulnerability The discoverer of this vulnerability wishes to remain anonymous. from matthieu@
77cb7f25	2007-03-25 13:22:40	Revert local debug stuff that wasn't meant to be committed.
00a847b3	2007-03-25 13:02:54	regen with libtool 1.5.22p9
d94e7605	2006-12-23 10:42:41	Missed a sed substitution for freetype2.pc. Noticed by Frederick C. Druseikis, thanks.
6a5579f8	2006-12-02 16:28:48	Make 'obj' now can make symlinks to /usr/obj/xenocara (or any other directory designed by XENOCARA_OBJDIR in /etc/mk.conf).
111eb3bc	2006-11-29 18:03:09	Disable profiled libs.
b455532e	2006-11-27 19:56:35	$Xenocara$ -> $OpenBSD$
a6d8ae29	2006-11-27 00:27:52	${DIST} is gone.
f956426a	2006-11-26 11:54:18	build infrastructure and OpenBSD customisation for Freetype 2.2.1
68f868c8	2006-11-25 18:44:16	Import freetype 2.2.1

IABSD.fr/xenocara/lib/freetype

Log

IABSD.fr/xenocara /lib/freetype