matthieu
d7ab44da6c
Revert previous. This was not part of our local changes and the
...
commit wasn't approved. The correct fix is in ../../Makefile
2014-03-15 18:09:43 +00:00
matthieu
e95d5fc7c6
Fix freetype-config after update to freetype 2.5.3. reported by nigel@
2014-03-15 18:02:09 +00:00
dcoppa
ab67cce656
(re)fix freetype-config too.
...
Spotted by nigel@
2014-03-15 17:27:50 +00:00
dcoppa
c9a482a02a
Revert to the freetype2.pc we had before.
...
There were local changes and I accidentally removed them.
ok matthieu@
Sorry for breaking the xenocara tree!
2014-03-14 20:41:41 +00:00
dcoppa
6842467b3b
Security/bugfixing update to freetype-2.5.3, featuring a fix for a
...
vulnerability in the CFF driver (CVE-2014-2240) and assorted minor
fixes.
ok matthieu@
2014-03-14 08:17:59 +00:00
matthieu
44a7f0fe9b
type1cid.c appears twice in sources lists for no reason. Noticed by miod@
2014-02-16 08:10:36 +00:00
matthieu
02fca8e3e4
Update to freetype 2.5.2.
...
With help for handling ports breakage from at least landry@, naddy@,
ajacoutot@, jasper@, and dcoppa@. Thanks to all.
Need an up to date /etc/mtree/BSD.x11.dist (from a base system build)
before building.
2014-01-12 15:08:24 +00:00
matthieu
fe7f17ac1e
Reduce diff with upstreams.
2013-10-20 12:34:21 +00:00
matthieu
8e0a332fda
Update to freetype 2.5.0.1. Tested by many.
2013-10-10 19:49:34 +00:00
guenther
b5bb12998e
Bump the major on every single base library. There are a couple
...
not bumped by this that will be corrected soon.
heavy lifting by todd@
2013-08-13 07:07:07 +00:00
matthieu
4848e852b5
Update to freetype 2.4.12. tested by many during t2k13. Thanks.
2013-06-07 17:21:07 +00:00
matthieu
240eb9af41
Update to freetype 2.4.11. Tested by krw@, jasper@ and on a bulk ports
...
build by naddy@.
2013-01-04 16:51:55 +00:00
matthieu
64ac4dd1f6
Also install freetype-config during install phase.
...
And generate freetype2.pc and freetype-config during make depend
to avoid doing that as root. Initial patch from espie@
2012-10-29 20:15:29 +00:00
matthieu
6f012c145e
Make install of freetype2.pc consistent with other xenocara modules.
...
(don't install it during make includes but during make install).
ok espie@
2012-10-26 06:09:27 +00:00
espie
f07a7ccfdc
tweak a bit for better standards conformance
...
okay matthieu@
2012-10-13 17:16:20 +00:00
matthieu
eeabd8b77d
Restore -lz in Libs:. OpenBSD doesn't use the embedded gzip lib, and
...
doesn't link libfreetype against libz. Prodded by ajacoutot@.
2012-09-20 14:11:15 +00:00
dcoppa
25007b34dd
Update to freetype-2.4.10.
...
With help and ok matthieu@
2012-07-07 16:45:03 +00:00
dcoppa
9d886fc06a
Fix freetype-2.4.9 regression that caused ghostscript to barf with
...
"Font Renderer Plugin" errors.
Patches come from upstream.
References:
http://bugs.ghostscript.com/show_bug.cgi?id=692940
https://savannah.nongnu.org/bugs/?func=detailitem&item_id=35833
https://savannah.nongnu.org/bugs/?func=detailitem&item_id=35847
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9a55cb7a
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b43e0f44
ok matthieu@
2012-05-11 20:02:28 +00:00
matthieu
a8e93b57ed
Update to freetype 2.4.9
...
Another round of fixes to better handle invalid fonts. Many of
them are vulnerabilities (see CVE-2012-1126 up to CVE-2012-1144
and SA48320).
2012-04-14 09:45:45 +00:00
matthieu
976f735d21
Update to freetype 2.4.8. Security update fixing CVE-2011-3439
2011-11-19 11:32:45 +00:00
matthieu
db0c239acc
Commit the last bit of freetype 2.4.6 which I previously hold back,
...
since it changes the metrics of some TrueType fonts. Users of DejaVu
at small sizes in xterm can use the 'scaleHeight' resource to
restore the previous vertical spacing (with xterm 276 and later).
Tested on a wide set of ports by ajachoutot@, naddy@, krw@ shadchin@.
2011-11-16 21:18:14 +00:00
matthieu
41e9e340b9
Update for freetype 2.4.7.
2011-11-13 22:34:37 +00:00
matthieu
12dde70adc
Update to freetype 2.4.7.
...
This moslty is a bug-fix release for CVE-2011-3256.
2011-10-30 10:14:50 +00:00
matthieu
6b773761c7
Update to freetype 2.4.6.
...
For now, omit the patch to ttdriver.c that changes some font metrics and
appearance of applications using TrueType fonts. Will revisit once the
issue is solved.
2011-09-28 19:01:21 +00:00
matthieu
f99cf4f7a6
Fix for CVE-2011-0226 from Freetype git repository.
2011-07-18 21:15:33 +00:00
matthieu
f6c615f075
Update to freetype 2.4.5. Tested by many.
2011-07-18 20:29:56 +00:00
matthieu
21087514c1
Update to freetype 2.4.4. Tested by shadchin@, ajacoutot@, krw@.
2010-12-19 16:08:12 +00:00
matthieu
4aee46235d
Security MFC for CVE-2010-3855
...
commit 59eb9f8cfe7d1df379a2318316d1f04f80fba54a
Author: Werner Lemberg <wl@gnu.org>
Date: Tue Oct 12 07:49:17 2010 +0200
Fix Savannah bug #31310 .
* src/truetype/ttgxvar.c (ft_var_readpackedpoints): Protect against
invalid `runcnt' values.
2010-11-06 16:46:57 +00:00
matthieu
625c5107a5
MFC security fix for CVE-2010-3814
...
commit 0edf0986f3be570f5bf90ff245a85c1675f5c9a4
Author: Werner Lemberg <wl@gnu.org>
Date: Wed Oct 6 11:52:27 2010 +0200
[truetype] Improve error handling of `SHZ' bytecode instruction.
Problem reported by Chris Evans <scarybeasts@gmail.com>.
* src/truetype/ttinterp.c (Ins_SHZ): Check `last_point'.
2010-11-06 16:45:49 +00:00
matthieu
bfe3d87ade
Update to freetype 2.4.3. Tested at least by krw@, ajacoutot@ and jasper@
2010-10-23 19:30:16 +00:00
matthieu
45438d0119
Update to freetype 2.4.2. This has been in snapshots for a while
...
and tested explicitely by ajacoutot@ jasper@, jcs@, krw@ and others
on various architectures.
2010-09-01 19:14:23 +00:00
matthieu
2b3e93e33b
patches from Freetype.org for the security issues found by Robert Swiecki:
...
CVE-2010-2497 freetype integer underflow
CVE-2010-2498 freetype invalid free
CVE-2010-2499 freetype buffer overflow
CVE-2010-2500 freetype integer overflow
CVE-2010-2519 freetype heap buffer overflow
CVE-2010-2520 freetype buffer overflow on heap
2010-07-17 14:06:43 +00:00
matthieu
d9a92f27a6
use INSTALL_DATA in BSD Makefiles. ok oga@
2010-05-08 14:15:29 +00:00
matthieu
54193b0f27
Missing resurected files in freetype 2.3.12
2010-03-25 20:53:34 +00:00
matthieu
1be5fe96c1
Update to freetpe 2.3.12. Tested against ports by naddy@.
2010-03-25 20:49:53 +00:00
matthieu
df0647377b
Update to freetpe 2.3.12. Tested against ports by naddy@.
2010-03-25 20:32:36 +00:00
matthieu
164d06ad38
Fixes for CVE-2009-0946 from freetype2 git repository:
...
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote
attackers to execute arbitrary code via vectors related to large values
in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c,
and (3) cff/cffload.c.
Plus one additional fix for malformed compressed data.
2009-04-27 07:11:16 +00:00
matthieu
e2d272f607
put libz back into Libs:. Fixes vax linking.
2009-03-26 19:04:00 +00:00
matthieu
703afbb0a2
update to freetype-docs 2.3.9
2009-03-26 07:36:34 +00:00
matthieu
8a907a311b
Update to Freetype 2.3.9.
...
Bump major to be safe.
Small arm assembler fix in ftconfig.h by drahn@
2009-03-26 07:31:44 +00:00
matthieu
87859a9c26
Update to Freetype 2.3.8. Tested by jsg@.
2009-03-10 20:28:33 +00:00
matthieu
f8e0dbd0cd
Update to Freetype 2.3.7. This is a bug fix release. No API change.
2008-08-21 05:09:08 +00:00
matthieu
6f11b80c67
Update to freetype 2.3.6.
...
Contains security fixes for CVE-2008-1806, CVE-2008-1807 and CVE-2008-1808.
Tested by many.
2008-06-22 17:37:35 +00:00
matthieu
1969f0b7b1
Don't hard-code sizeof(long) in ftconfig.h. Fixes 64bit architectures.
...
Problem noticed by sturm@.
2007-11-24 15:48:33 +00:00
matthieu
8f07cc07fd
Use buils/unix/ftsystem.c instead of the generic ANSI C one, which
...
doesn't set CLOSE_ON_EXEC on files descriptors opened by freetype.
Fixes a fd leak reported by kurt@. Tested by naddy@ and others.
2007-10-27 07:09:48 +00:00
matthieu
3c28b922f5
More bits for freetype 2.3.5
2007-09-08 16:59:03 +00:00
matthieu
f4cb73c397
Merge freetype 2.3.5. Tested by naddy@ and mbalmer@.
2007-09-08 16:39:54 +00:00
matthieu
f731f6acb5
import freetype 2.3.5
2007-09-08 16:28:30 +00:00
matthieu
e51592142f
fix two instances XORG_PREFIX that escaped renaming to X11BASE.
2007-05-29 15:37:57 +00:00
matthieu
15235d0d22
Fix for CVE-2007-2754: integer overflow that can lead to an heap overflow.
...
Discovered by Victor Stinner. Patch from Freetype repository.
2007-05-25 01:23:29 +00:00