pool/libXfont
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
20 Commits 1 Branch 0 Tags 109 KiB
dab177bb5d
Commit Graph

18 Commits

Author SHA256 Message Date
Stefan Dirsch
2d7f2213c5 - Update to release 1.5.4 
* Open files with O_NOFOLLOW. (CVE-2017-16611)

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=32
 2017-11-28 19:23:20 +00:00
Stefan Dirsch
7a4b14b23b - Update to release 1.5.3 
* Check for end of string in PatternMatch (CVE-2017-13720)
  * pcfGetProperties: Check string boundaries (CVE-2017-13722)

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=30
 2017-10-20 13:59:39 +00:00
Stefan Dirsch
34f2263aa5 - includes everything needed for missing sle issue entries: 
fate #320388 (bsc#1041641)
  boo#958383, bnc#921978, bnc#857544 (bsc#1041641)
  CVE-2015-1802, CVE-2015-1803, CVE-2015-1804 (bsc#1041641)
  CVE-2014-0209, CVE-2014-0210, CVE-2014-0211 (bsc#1041641)

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=28
 2017-05-30 10:11:02 +00:00
Stefan Dirsch
5d89c8d562 - Update to release 1.5.2 
Maintenance branch release, primarily for bdftopcf's benefit as it's
   the only thing that really needs the Xfont1 API. (xfs uses it too, I
   believe, but could be ported to Xfont2). If someone wanted to step up
   and merge Xfont1 into bdtopcf directly, that'd be great.
- supersedes U_bdfReadCharacters-Allow-negative-DWIDTH-values.patch

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=26
 2016-09-22 13:14:39 +00:00
Egbert Eich
b6ae7d6b26 - U_bdfReadCharacters-Allow-negative-DWIDTH-values.patch 
Negative DWIDTH is legal. This was broken by the fix for
  CVE-2015-1804. Fixed upstream with commit 1a73d6 (boo#958383).

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=24
 2015-12-08 15:57:37 +00:00
Stefan Dirsch
ab68dc5343 - Update to release 1.5.1 
* This release of libXfont provides the fixes for the
    security advisory about BDF font parsing bugs (CVE-2015-1802,
    CVE-2015-1803, CVE-2015-1804)

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=22
 2015-03-18 09:26:35 +00:00
Stefan Dirsch
7e30895aa9 - Update to final release 1.5.0 
* no changes since 1.4.99.901

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=20
 2014-07-21 13:59:07 +00:00
Stefan Dirsch
61dcb982af - added baselibs.conf as source to spec file 
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=18
 2014-07-10 03:59:43 +00:00
Stefan Dirsch
50cf93dfa3 - Update to version 1.4.99.901 
* This is a release candidate of libXfont 1.5.0 - please test and
    report any issues found, so we can have a final/stable release
    soon to go with the xorg-server 1.16 release.
  * *IMPORTANT* This release works with fontsproto 2.1.3 or later
    and is for use with the upcoming release of xorg-server 1.16
    and later.  It will *not* work with older versions of
    fontsproto or xorg-server (prior to 1.15.99.901).
  * This release includes all the security & bug fixes from
    libXfont 1.4.8, plus these additional significant changes:
    - Support for SNF font format (deprecated since X11R5 in 1991)
      is now disabled by default at build time.  For now, adding
      --enable-snfformat to configure flags may re-enable it, but
      support may be fully removed in future libXfont releases.
    - Many compiler warnings cleaned up, including some which
      required API changes around type declarations (const char *,
      Pointer, etc.).
    - README file expanded to explain all the different formats/
      options.
- supersedes patches:
  * U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch
  * U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch
  * U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch
  * U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch
  * U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch
  * U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch
  * U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch
  * U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch
  * U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch
  * U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=17
 2014-07-09 13:00:45 +00:00
Michal Srb
cb4b31ab7a Accepting request 234717 from home:michalsrb:branches:X11:XOrg 
- U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch,
  U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch,
  U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch,
  U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch,
  U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch,
  U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch,
  U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch,
  U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch,
  U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch,
  U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch,
  U_0011-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch,
  U_0012-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch
  * Security fixes. (CVE-2014-0209, CVE-2014-0210, CVE-2014-0211,
    bnc#857544)

OBS-URL: https://build.opensuse.org/request/show/234717
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=15
 2014-05-19 13:57:03 +00:00
Stefan Dirsch
ce88ad6cd6 - update to current git commit a96cc1f to match current fontsproto 
git sources

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=13
 2014-03-18 14:27:59 +00:00
Stefan Dirsch
d6159e7856 - Update to version 1.4.7 
This release includes the fix for CVE-2013-6462, as well as
  other security hardening and code cleanups, and makes libXfont
  compatible with libXtrans 1.3 on Solaris. (bnc#854915)

OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=11
 2014-01-08 09:56:42 +00:00
Stefan Dirsch
f13cdad7ee Accepting request 195521 from home:Zaitor:branches:X11:XOrg 
Update to ver 1.4.6

OBS-URL: https://build.opensuse.org/request/show/195521
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=9
 2013-08-18 19:34:56 +00:00
Stefan Dirsch
d10e68d521 OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=7 2013-03-19 19:47:32 +00:00
Stefan Dirsch
53318c8432 Accepting request 113303 from home:vuntz:branches:X11:XOrg 
Update to 1.4.5

OBS-URL: https://build.opensuse.org/request/show/113303
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=5
 2012-04-12 11:55:36 +00:00
Stefan Dirsch
e256187a96 OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=4 2012-03-07 09:47:16 +00:00
Stefan Dirsch
7e8cf0e21c Accepting request 104222 from home:jengelh:branches:X11:XOrg 
OBS-URL: https://build.opensuse.org/request/show/104222
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=2
 2012-02-13 10:07:22 +00:00
Stefan Dirsch
da2ee7ad0d Accepting request 103562 from home:jengelh:branches:X11:XOrg 
Split xorg-x11-libs

OBS-URL: https://build.opensuse.org/request/show/103562
OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXfont?expand=0&rev=1
 2012-02-09 13:18:07 +00:00