Path to this page:
Subject: CVS commit: [pkgsrc-2010Q3] pkgsrc/graphics/freetype2
From: Steven Drake
Date: 2010-12-19 04:47:00
Message id: 20101219034701.02A9C175DD@cvs.netbsd.org
Log Message:
Pullup ticket #3308 - requested by drochner
security updates for freetype2
Revisions pulled up:
- pkgsrc/graphics/freetype2/Makefile 1.75-1.77
- pkgsrc/graphics/freetype2/distinfo 1.37-1.39
Files added:
- pkgsrc/graphics/freetype2/patches/patch-ab 1.14, 1.15
- pkgsrc/graphics/freetype2/patches/patch-ac 1.6
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: drochner
Date: Fri Oct 22 16:14:13 UTC 2010
Modified Files:
pkgsrc/graphics/freetype2: Makefile distinfo
Log Message:
update to 2.4.3
changes:
A rendering regression of S-shaped cubic arcs (introduced in
version 2.4.0) has been fixed. Besides that, a bunch
of fixes have been applied to improve handling of broken fonts.
To generate a diff of this commit:
cvs rdiff -u -r1.74 -r1.75 pkgsrc/graphics/freetype2/Makefile
cvs rdiff -u -r1.36 -r1.37 pkgsrc/graphics/freetype2/distinfo
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: drochner
Date: Wed Nov 3 11:56:37 UTC 2010
Modified Files:
pkgsrc/graphics/freetype2: Makefile distinfo
Added Files:
pkgsrc/graphics/freetype2/patches: patch-ab
Log Message:
add patch from upstream CVS to fix a possible buffer overflow
when processing TrueType GX fonts (SA41738), bump PKGREVISION
To generate a diff of this commit:
cvs rdiff -u -r1.75 -r1.76 pkgsrc/graphics/freetype2/Makefile
cvs rdiff -u -r1.37 -r1.38 pkgsrc/graphics/freetype2/distinfo
cvs rdiff -u -r0 -r1.14 pkgsrc/graphics/freetype2/patches/patch-ab
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: drochner
Date: Wed Nov 24 18:44:55 UTC 2010
Modified Files:
pkgsrc/graphics/freetype2: Makefile distinfo
pkgsrc/graphics/freetype2/patches: patch-ab
Added Files:
pkgsrc/graphics/freetype2/patches: patch-ac
Log Message:
add patch from upstream CVS to fix handling the "SHZ" bytecode \
instruction
which could be exploited to cause a crash and potentially execute
arbitrary code via a specially crafted font (CVE-2010-3814)
bump PKGREV
being here, add CVE reference to an older patch
To generate a diff of this commit:
cvs rdiff -u -r1.76 -r1.77 pkgsrc/graphics/freetype2/Makefile
cvs rdiff -u -r1.38 -r1.39 pkgsrc/graphics/freetype2/distinfo
cvs rdiff -u -r1.14 -r1.15 pkgsrc/graphics/freetype2/patches/patch-ab
cvs rdiff -u -r0 -r1.6 pkgsrc/graphics/freetype2/patches/patch-ac
Files: