dab177bb5d* Open files with O_NOFOLLOW. (CVE-2017-16611, bsc#1050459)Stefan Dirsch2017-12-04 17:02:37 +0000
aed44c1577Accepting request 546295 from X11:XOrg
Dominique Leuenberger
2017-12-03 09:08:51 +0000
2d7f2213c5- Update to release 1.5.4 * Open files with O_NOFOLLOW. (CVE-2017-16611)Stefan Dirsch2017-11-28 19:23:20 +0000
875abb2702Accepting request 535492 from X11:XOrg
Dominique Leuenberger
2017-10-28 12:18:35 +0000
7a4b14b23b- Update to release 1.5.3 * Check for end of string in PatternMatch (CVE-2017-13720) * pcfGetProperties: Check string boundaries (CVE-2017-13722)Stefan Dirsch2017-10-20 13:59:39 +0000
0da51b5107Accepting request 499651 from X11:XOrg
Dominique Leuenberger
2017-06-03 23:46:40 +0000
1012a0cbc5Accepting request 429464 from X11:XOrg
Dominique Leuenberger
2016-09-26 10:34:08 +0000
5d89c8d562- Update to release 1.5.2 Maintenance branch release, primarily for bdftopcf's benefit as it's the only thing that really needs the Xfont1 API. (xfs uses it too, I believe, but could be ported to Xfont2). If someone wanted to step up and merge Xfont1 into bdtopcf directly, that'd be great. - supersedes U_bdfReadCharacters-Allow-negative-DWIDTH-values.patchStefan Dirsch2016-09-22 13:14:39 +0000
f340c5cf0cAccepting request 348015 from X11:XOrg
Dominique Leuenberger
2015-12-17 14:52:53 +0000
b6ae7d6b26- U_bdfReadCharacters-Allow-negative-DWIDTH-values.patch Negative DWIDTH is legal. This was broken by the fix for CVE-2015-1804. Fixed upstream with commit 1a73d6 (boo#958383).Egbert Eich2015-12-08 15:57:37 +0000
ba52c7d77bAccepting request 291264 from X11:XOrg
Dominique Leuenberger
2015-03-19 20:02:42 +0000
ab68dc5343- Update to release 1.5.1 * This release of libXfont provides the fixes for the security advisory about BDF font parsing bugs (CVE-2015-1802, CVE-2015-1803, CVE-2015-1804)Stefan Dirsch2015-03-18 09:26:35 +0000
8a1ee722e8Accepting request 241752 from X11:XOrg
Stephan Kulow
2014-07-27 06:25:42 +0000
7e30895aa9- Update to final release 1.5.0 * no changes since 1.4.99.901Stefan Dirsch2014-07-21 13:59:07 +0000
c8279795ddAccepting request 240141 from X11:XOrg
Stephan Kulow
2014-07-13 12:06:00 +0000
61dcb982af- added baselibs.conf as source to spec fileStefan Dirsch2014-07-10 03:59:43 +0000
50cf93dfa3- Update to version 1.4.99.901 * This is a release candidate of libXfont 1.5.0 - please test and report any issues found, so we can have a final/stable release soon to go with the xorg-server 1.16 release. * *IMPORTANT* This release works with fontsproto 2.1.3 or later and is for use with the upcoming release of xorg-server 1.16 and later. It will *not* work with older versions of fontsproto or xorg-server (prior to 1.15.99.901). * This release includes all the security & bug fixes from libXfont 1.4.8, plus these additional significant changes: - Support for SNF font format (deprecated since X11R5 in 1991) is now disabled by default at build time. For now, adding --enable-snfformat to configure flags may re-enable it, but support may be fully removed in future libXfont releases. - Many compiler warnings cleaned up, including some which required API changes around type declarations (const char *, Pointer, etc.). - README file expanded to explain all the different formats/ options. - supersedes patches: * U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch * U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch * U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch * U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch * U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch * U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch * U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch * U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch * U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch * U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patchStefan Dirsch2014-07-09 13:00:45 +0000
e7e4b50e8fAccepting request 234718 from X11:XOrg
Stephan Kulow
2014-06-02 05:04:10 +0000
cb4b31ab7aAccepting request 234717 from home:michalsrb:branches:X11:XOrg
Michal Srb
2014-05-19 13:57:03 +0000
1c66172f88Accepting request 226605 from X11:XOrg
Stephan Kulow
2014-03-22 18:46:08 +0000
ce88ad6cd6- update to current git commit a96cc1f to match current fontsproto git sourcesStefan Dirsch2014-03-18 14:27:59 +0000
eafdcaed53Accepting request 213116 from X11:XOrg
Stephan Kulow
2014-01-08 19:35:45 +0000
d6159e7856- Update to version 1.4.7 This release includes the fix for CVE-2013-6462, as well as other security hardening and code cleanups, and makes libXfont compatible with libXtrans 1.3 on Solaris. (bnc#854915)Stefan Dirsch2014-01-08 09:56:42 +0000
11c47ef829Accepting request 195566 from X11:XOrg
Tomáš Chvátal
2013-08-19 11:29:57 +0000
f13cdad7eeAccepting request 195521 from home:Zaitor:branches:X11:XOrgStefan Dirsch2013-08-18 19:34:56 +0000
c30fca9475Accepting request 160093 from X11:XOrg
Stephan Kulow
2013-03-22 10:55:23 +0000