IABSD.fr/xenocara/lib/freetype/src

Branch :

Log

Author Commit Date CI Message
57be036a 2015-01-10 17:17:22 Bugfixing update to freetype-2.5.5 ok matthieu@
8a4a3c13 2014-12-27 18:43:15 Zap some bogus RCS strings added by accident because of CVS keyword expansion
62705531 2014-12-26 17:52:34 Update to freetype-2.5.4 ports bulk build by landry@ OK matthieu@
6842467b 2014-03-14 08:17:59 Security/bugfixing update to freetype-2.5.3, featuring a fix for a vulnerability in the CFF driver (CVE-2014-2240) and assorted minor fixes. ok matthieu@
02fca8e3 2014-01-12 15:08:24 Update to freetype 2.5.2. With help for handling ports breakage from at least landry@, naddy@, ajacoutot@, jasper@, and dcoppa@. Thanks to all. Need an up to date /etc/mtree/BSD.x11.dist (from a base system build) before building.
8e0a332f 2013-10-10 19:49:34 Update to freetype 2.5.0.1. Tested by many.
4848e852 2013-06-07 17:21:07 Update to freetype 2.4.12. tested by many during t2k13. Thanks.
240eb9af 2013-01-04 16:51:55 Update to freetype 2.4.11. Tested by krw@, jasper@ and on a bulk ports build by naddy@.
25007b34 2012-07-07 16:45:03 Update to freetype-2.4.10. With help and ok matthieu@
9d886fc0 2012-05-11 20:02:28 Fix freetype-2.4.9 regression that caused ghostscript to barf with "Font Renderer Plugin" errors. Patches come from upstream. References: http://bugs.ghostscript.com/show_bug.cgi?id=692940 https://savannah.nongnu.org/bugs/?func=detailitem&item_id=35833 https://savannah.nongnu.org/bugs/?func=detailitem&item_id=35847 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9a55cb7a http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b43e0f44 ok matthieu@
a8e93b57 2012-04-14 09:45:45 Update to freetype 2.4.9 Another round of fixes to better handle invalid fonts. Many of them are vulnerabilities (see CVE-2012-1126 up to CVE-2012-1144 and SA48320).
976f735d 2011-11-19 11:32:45 Update to freetype 2.4.8. Security update fixing CVE-2011-3439
db0c239a 2011-11-16 21:18:14 Commit the last bit of freetype 2.4.6 which I previously hold back, since it changes the metrics of some TrueType fonts. Users of DejaVu at small sizes in xterm can use the 'scaleHeight' resource to restore the previous vertical spacing (with xterm 276 and later). Tested on a wide set of ports by ajachoutot@, naddy@, krw@ shadchin@.
12dde70a 2011-10-30 10:14:50 Update to freetype 2.4.7. This moslty is a bug-fix release for CVE-2011-3256.
6b773761 2011-09-28 19:01:21 Update to freetype 2.4.6. For now, omit the patch to ttdriver.c that changes some font metrics and appearance of applications using TrueType fonts. Will revisit once the issue is solved.
f99cf4f7 2011-07-18 21:15:33 Fix for CVE-2011-0226 from Freetype git repository.
f6c615f0 2011-07-18 20:29:56 Update to freetype 2.4.5. Tested by many.
21087514 2010-12-19 16:08:12 Update to freetype 2.4.4. Tested by shadchin@, ajacoutot@, krw@.
4aee4623 2010-11-06 16:46:57 Security MFC for CVE-2010-3855 commit 59eb9f8cfe7d1df379a2318316d1f04f80fba54a Author: Werner Lemberg <wl@gnu.org> Date: Tue Oct 12 07:49:17 2010 +0200 Fix Savannah bug #31310. * src/truetype/ttgxvar.c (ft_var_readpackedpoints): Protect against invalid `runcnt' values.
625c5107 2010-11-06 16:45:49 MFC security fix for CVE-2010-3814 commit 0edf0986f3be570f5bf90ff245a85c1675f5c9a4 Author: Werner Lemberg <wl@gnu.org> Date: Wed Oct 6 11:52:27 2010 +0200 [truetype] Improve error handling of `SHZ' bytecode instruction. Problem reported by Chris Evans <scarybeasts@gmail.com>. * src/truetype/ttinterp.c (Ins_SHZ): Check `last_point'.
bfe3d87a 2010-10-23 19:30:16 Update to freetype 2.4.3. Tested at least by krw@, ajacoutot@ and jasper@
45438d01 2010-09-01 19:14:23 Update to freetype 2.4.2. This has been in snapshots for a while and tested explicitely by ajacoutot@ jasper@, jcs@, krw@ and others on various architectures.
2b3e93e3 2010-07-17 14:06:43 patches from Freetype.org for the security issues found by Robert Swiecki: CVE-2010-2497 freetype integer underflow CVE-2010-2498 freetype invalid free CVE-2010-2499 freetype buffer overflow CVE-2010-2500 freetype integer overflow CVE-2010-2519 freetype heap buffer overflow CVE-2010-2520 freetype buffer overflow on heap
1be5fe96 2010-03-25 20:49:53 Update to freetpe 2.3.12. Tested against ports by naddy@.
164d06ad 2009-04-27 07:11:16 Fixes for CVE-2009-0946 from freetype2 git repository: Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c. Plus one additional fix for malformed compressed data.
8a907a31 2009-03-26 07:31:44 Update to Freetype 2.3.9. Bump major to be safe. Small arm assembler fix in ftconfig.h by drahn@
87859a9c 2009-03-10 20:28:33 Update to Freetype 2.3.8. Tested by jsg@.
f8e0dbd0 2008-08-21 05:09:08 Update to Freetype 2.3.7. This is a bug fix release. No API change.
6f11b80c 2008-06-22 17:37:35 Update to freetype 2.3.6. Contains security fixes for CVE-2008-1806, CVE-2008-1807 and CVE-2008-1808. Tested by many.
3c28b922 2007-09-08 16:59:03 More bits for freetype 2.3.5
f4cb73c3 2007-09-08 16:39:54 Merge freetype 2.3.5. Tested by naddy@ and mbalmer@.
f731f6ac 2007-09-08 16:28:30 import freetype 2.3.5
15235d0d 2007-05-25 01:23:29 Fix for CVE-2007-2754: integer overflow that can lead to an heap overflow. Discovered by Victor Stinner. Patch from Freetype repository.
517a55a2 2007-04-04 02:51:57 bdf CVE-2007-1351 BDFFont Parsing Integer Overflow Vulnerability The discoverer of this vulnerability wishes to remain anonymous. from matthieu@
77cb7f25 2007-03-25 13:22:40 Revert local debug stuff that wasn't meant to be committed.
00a847b3 2007-03-25 13:02:54 regen with libtool 1.5.22p9
68f868c8 2006-11-25 18:44:16 Import freetype 2.2.1