NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
e173bbe958
kumquat-buildroot/package/freetype
History
Peter Korsgaard 6d557ac013 freetype: add upstream security fixes for CVE-2017-8105 and CVE-2017-8287 
Add upstream post-2.7.1 commits (except for ChangeLog modifications) fixing
the following security issues:

CVE-2017-8105 - FreeType 2 before 2017-03-24 has an out-of-bounds write
caused by a heap-based buffer overflow related to the
t1_decoder_parse_charstrings function in psaux/t1decode.c.

CVE-2017-8287 - FreeType 2 before 2017-03-26 has an out-of-bounds write
caused by a heap-based buffer overflow related to the
t1_builder_close_contour function in psaux/psobjs.c.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-04-30 23:07:25 +02:00
..
0001-psaux-Better-protect-flex-handling.patch freetype: add upstream security fixes for CVE-2017-8105 and CVE-2017-8287 2017-04-30 23:07:25 +02:00
0002-src-psaux-psobjs.c-t1_builder_close_contour-Add-safe.patch freetype: add upstream security fixes for CVE-2017-8105 and CVE-2017-8287 2017-04-30 23:07:25 +02:00
Config.in
freetype.hash
freetype.mk