head 1.32; access; symbols pkgsrc-2023Q4:1.32.0.18 pkgsrc-2023Q4-base:1.32 pkgsrc-2023Q3:1.32.0.16 pkgsrc-2023Q3-base:1.32 pkgsrc-2023Q2:1.32.0.14 pkgsrc-2023Q2-base:1.32 pkgsrc-2023Q1:1.32.0.12 pkgsrc-2023Q1-base:1.32 pkgsrc-2022Q4:1.32.0.10 pkgsrc-2022Q4-base:1.32 pkgsrc-2022Q3:1.32.0.8 pkgsrc-2022Q3-base:1.32 pkgsrc-2022Q2:1.32.0.6 pkgsrc-2022Q2-base:1.32 pkgsrc-2022Q1:1.32.0.4 pkgsrc-2022Q1-base:1.32 pkgsrc-2021Q4:1.32.0.2 pkgsrc-2021Q4-base:1.32 pkgsrc-2021Q3:1.30.0.32 pkgsrc-2021Q3-base:1.30 pkgsrc-2021Q2:1.30.0.30 pkgsrc-2021Q2-base:1.30 pkgsrc-2021Q1:1.30.0.28 pkgsrc-2021Q1-base:1.30 pkgsrc-2020Q4:1.30.0.26 pkgsrc-2020Q4-base:1.30 pkgsrc-2020Q3:1.30.0.24 pkgsrc-2020Q3-base:1.30 pkgsrc-2020Q2:1.30.0.22 pkgsrc-2020Q2-base:1.30 pkgsrc-2020Q1:1.30.0.18 pkgsrc-2020Q1-base:1.30 pkgsrc-2019Q4:1.30.0.20 pkgsrc-2019Q4-base:1.30 pkgsrc-2019Q3:1.30.0.16 pkgsrc-2019Q3-base:1.30 pkgsrc-2019Q2:1.30.0.14 pkgsrc-2019Q2-base:1.30 pkgsrc-2019Q1:1.30.0.12 pkgsrc-2019Q1-base:1.30 pkgsrc-2018Q4:1.30.0.10 pkgsrc-2018Q4-base:1.30 pkgsrc-2018Q3:1.30.0.8 pkgsrc-2018Q3-base:1.30 pkgsrc-2018Q2:1.30.0.6 pkgsrc-2018Q2-base:1.30 pkgsrc-2018Q1:1.30.0.4 pkgsrc-2018Q1-base:1.30 pkgsrc-2017Q4:1.30.0.2 pkgsrc-2017Q4-base:1.30 pkgsrc-2017Q3:1.28.0.12 pkgsrc-2017Q3-base:1.28 pkgsrc-2017Q2:1.28.0.8 pkgsrc-2017Q2-base:1.28 pkgsrc-2017Q1:1.28.0.6 pkgsrc-2017Q1-base:1.28 pkgsrc-2016Q4:1.28.0.4 pkgsrc-2016Q4-base:1.28 pkgsrc-2016Q3:1.28.0.2 pkgsrc-2016Q3-base:1.28 pkgsrc-2016Q2:1.27.0.6 pkgsrc-2016Q2-base:1.27 pkgsrc-2016Q1:1.27.0.4 pkgsrc-2016Q1-base:1.27 pkgsrc-2015Q4:1.27.0.2 pkgsrc-2015Q4-base:1.27 pkgsrc-2015Q3:1.26.0.6 pkgsrc-2015Q3-base:1.26 pkgsrc-2015Q2:1.26.0.4 pkgsrc-2015Q2-base:1.26 pkgsrc-2015Q1:1.26.0.2 pkgsrc-2015Q1-base:1.26 pkgsrc-2014Q4:1.24.0.6 pkgsrc-2014Q4-base:1.24 pkgsrc-2014Q3:1.24.0.4 pkgsrc-2014Q3-base:1.24 pkgsrc-2014Q2:1.24.0.2 pkgsrc-2014Q2-base:1.24 pkgsrc-2014Q1:1.21.0.2 pkgsrc-2014Q1-base:1.21 pkgsrc-2013Q4:1.19.0.4 pkgsrc-2013Q4-base:1.19 pkgsrc-2013Q3:1.19.0.2 pkgsrc-2013Q3-base:1.19 pkgsrc-2013Q2:1.18.0.10 pkgsrc-2013Q2-base:1.18 pkgsrc-2013Q1:1.18.0.8 pkgsrc-2013Q1-base:1.18 pkgsrc-2012Q4:1.18.0.6 pkgsrc-2012Q4-base:1.18 pkgsrc-2012Q3:1.18.0.4 pkgsrc-2012Q3-base:1.18 pkgsrc-2012Q2:1.18.0.2 pkgsrc-2012Q2-base:1.18 pkgsrc-2012Q1:1.17.0.4 pkgsrc-2012Q1-base:1.17 pkgsrc-2011Q4:1.17.0.2 pkgsrc-2011Q4-base:1.17 pkgsrc-2011Q3:1.16.0.2 pkgsrc-2011Q3-base:1.16 pkgsrc-2011Q2:1.15.0.8 pkgsrc-2011Q2-base:1.15 pkgsrc-2011Q1:1.15.0.6 pkgsrc-2011Q1-base:1.15 pkgsrc-2010Q4:1.15.0.4 pkgsrc-2010Q4-base:1.15 pkgsrc-2010Q3:1.15.0.2 pkgsrc-2010Q3-base:1.15 pkgsrc-2010Q2:1.14.0.4 pkgsrc-2010Q2-base:1.14 pkgsrc-2010Q1:1.14.0.2 pkgsrc-2010Q1-base:1.14 pkgsrc-2009Q4:1.13.0.6 pkgsrc-2009Q4-base:1.13 pkgsrc-2009Q3:1.13.0.4 pkgsrc-2009Q3-base:1.13 pkgsrc-2009Q2:1.13.0.2 pkgsrc-2009Q2-base:1.13 pkgsrc-2009Q1:1.12.0.2 pkgsrc-2009Q1-base:1.12 pkgsrc-2008Q4:1.11.0.6 pkgsrc-2008Q4-base:1.11 pkgsrc-2008Q3:1.11.0.4 pkgsrc-2008Q3-base:1.11 cube-native-xorg:1.11.0.2 cube-native-xorg-base:1.11 pkgsrc-2008Q2:1.10.0.6 pkgsrc-2008Q2-base:1.10 cwrapper:1.10.0.4 pkgsrc-2008Q1:1.10.0.2 pkgsrc-2008Q1-base:1.10 pkgsrc-2007Q4:1.7.0.4 pkgsrc-2007Q4-base:1.7 pkgsrc-2007Q3:1.7.0.2 pkgsrc-2007Q3-base:1.7 pkgsrc-2007Q2:1.4.0.2 pkgsrc-2007Q2-base:1.4 pkgsrc-2007Q1:1.3.0.2 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.1.1.1.0.2 pkgsrc-2006Q4-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.32 date 2021.10.26.11.34.06; author nia; state Exp; branches; next 1.31; commitid MHqjP6oNOKJ4ujeD; 1.31 date 2021.10.07.15.13.50; author nia; state Exp; branches; next 1.30; commitid P2riI8QJYhdyjTbD; 1.30 date 2017.11.28.14.59.27; author wiz; state Exp; branches; next 1.29; commitid UfYr1JdOcs7LwOgA; 1.29 date 2017.10.19.23.29.46; author wiz; state Exp; branches; next 1.28; commitid eity17OaaI5zDIbA; 1.28 date 2016.08.31.20.28.28; author wiz; state Exp; branches 1.28.12.1; next 1.27; commitid dFaWqZzTNmEqWukz; 1.27 date 2015.11.04.03.28.45; author agc; state Exp; branches; next 1.26; commitid lW4FTm8V2IrjYIHy; 1.26 date 2015.03.17.17.40.00; author tnn; state Exp; branches; next 1.25; commitid jMOR6pZcn7Nz8Zdy; 1.25 date 2015.02.28.10.26.32; author wiz; state Exp; branches; next 1.24; commitid zTYOq6ZJZs9IhLby; 1.24 date 2014.05.16.08.36.21; author wiz; state Exp; branches; next 1.23; commitid cFaGoKFcZqW8WJAx; 1.23 date 2014.05.15.23.48.05; author joerg; state Exp; branches; next 1.22; commitid unl3V7fty0Xo0HAx; 1.22 date 2014.04.15.16.47.25; author wiz; state Exp; branches; next 1.21; commitid mPIwRwFAbFxpENwx; 1.21 date 2014.01.07.20.09.18; author wiz; state Exp; branches 1.21.2.1; next 1.20; commitid hvjYlUg0TwTPUdkx; 1.20 date 2014.01.07.07.39.49; author wiz; state Exp; branches; next 1.19; commitid Q92jR8GLGp4wL9kx; 1.19 date 2013.07.22.06.34.53; author wiz; state Exp; branches 1.19.4.1; next 1.18; commitid lnu54eDQE45pQqYw; 1.18 date 2012.06.01.20.19.16; author drochner; state Exp; branches; next 1.17; 1.17 date 2011.11.14.13.34.10; author cheusov; state Exp; branches; next 1.16; 1.16 date 2011.08.18.22.58.24; author joerg; state Exp; branches; next 1.15; 1.15 date 2010.09.10.18.49.43; author joerg; state Exp; branches 1.15.8.1; next 1.14; 1.14 date 2010.01.15.18.43.28; author tnn; state Exp; branches; next 1.13; 1.13 date 2009.06.10.14.00.36; author wiz; state Exp; branches; next 1.12; 1.12 date 2009.01.07.22.01.10; author wiz; state Exp; branches; next 1.11; 1.11 date 2008.07.17.00.56.45; author bjs; state Exp; branches; next 1.10; 1.10 date 2008.03.07.20.16.19; author wiz; state Exp; branches; next 1.9; 1.9 date 2008.01.21.13.56.28; author tnn; state Exp; branches; next 1.8; 1.8 date 2008.01.20.18.24.51; author joerg; state Exp; branches; next 1.7; 1.7 date 2007.09.24.16.24.48; author joerg; state Exp; branches; next 1.6; 1.6 date 2007.09.21.19.32.17; author bjs; state Exp; branches; next 1.5; 1.5 date 2007.07.12.12.41.18; author joerg; state Exp; branches; next 1.4; 1.4 date 2007.04.10.17.43.25; author drochner; state Exp; branches; next 1.3; 1.3 date 2007.04.03.20.27.20; author drochner; state Exp; branches; next 1.2; 1.2 date 2007.01.23.15.49.37; author joerg; state Exp; branches; next 1.1; 1.1 date 2006.11.03.21.45.46; author joerg; state Exp; branches 1.1.1.1; next ; 1.28.12.1 date 2017.10.22.18.12.32; author bsiegert; state Exp; branches; next 1.28.12.2; commitid YnIXDfOmKojMM4cA; 1.28.12.2 date 2017.12.20.18.41.03; author spz; state Exp; branches; next ; commitid eJjad6RHe5gZ2FjA; 1.21.2.1 date 2014.05.21.13.14.03; author tron; state Exp; branches; next ; commitid h52VAJwIEFmvjpBx; 1.19.4.1 date 2014.01.07.17.11.53; author tron; state Exp; branches; next ; commitid YbmpgdgTfw49Wckx; 1.15.8.1 date 2011.08.19.08.18.32; author sbd; state Exp; branches; next ; 1.1.1.1 date 2006.11.03.21.45.46; author joerg; state Exp; branches; next ; desc @@ 1.32 log @x11: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./x11/py-qt4/distinfo PyQt4_gpl_mac-4.12.3.tar.gz @ text @$NetBSD: distinfo,v 1.31 2021/10/07 15:13:50 nia Exp $ BLAKE2s (libXfont-1.5.4.tar.bz2) = a7607a270b17d7d93760b7b9cc906ba1d5813ef71e636d43cf5037ac2f18761a SHA512 (libXfont-1.5.4.tar.bz2) = 864edbaff45c44bd92bc4b06275c73fdf584a9b88bc523a297d4c75c01ca253f438463e929af70d753ddecfa648bb0b9bcf0ec72267db9f2b1704f7afa906cb3 Size (libXfont-1.5.4.tar.bz2) = 528883 bytes @ 1.31 log @x11: Remove SHA1 hashes for distfiles @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.30 2017/11/28 14:59:27 wiz Exp $ d3 1 a3 1 RMD160 (libXfont-1.5.4.tar.bz2) = 0217438df91751a7d95d617d444be970301c238a @ 1.30 log @libXfont: update to 1.5.4. Matthieu Herrb (1): libXfont 1.5.4 Michal Srb (1): Open files with O_NOFOLLOW. (CVE-2017-16611) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.29 2017/10/19 23:29:46 wiz Exp $ a2 1 SHA1 (libXfont-1.5.4.tar.bz2) = 9db050f63b9c4cb19e0dbb40575558ccb95719ca @ 1.29 log @libXfont: update to 1.5.3. Matt Turner (1): libXfont 1.5.3 Michal Srb (2): Check for end of string in PatternMatch (CVE-2017-13720) pcfGetProperties: Check string boundaries (CVE-2017-13722) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.28 2016/08/31 20:28:28 wiz Exp $ d3 4 a6 4 SHA1 (libXfont-1.5.3.tar.bz2) = 628b8ca2207f09324b8926084318a2fa2edb16d1 RMD160 (libXfont-1.5.3.tar.bz2) = 8f973cc4cca152bdb0fa074e58fa01d5b957f446 SHA512 (libXfont-1.5.3.tar.bz2) = e7c8a09c4d174129e5d550194d3c3dc2b4abf797e52fe588c6002920727c52cf33b7db8d07fc69c2987e766d3af2d6ddda72f0c70eb21b135c691c97656a81b4 Size (libXfont-1.5.3.tar.bz2) = 519793 bytes @ 1.28 log @Updated libXfont to 1.5.2. Maintenance branch release, primarily for bdftopcf's benefit as it's the only thing that really needs the Xfont1 API. (xfs uses it too, I believe, but could be ported to Xfont2). If someone wanted to step up and merge Xfont1 into bdtopcf directly, that'd be great. Adam Jackson (1): libXfont 1.5.2 Alan Coopersmith (1): doc: add a couple olinks to fsproto & xfs-design docs Benjamin Tissoires (1): bdfReadCharacters: Allow negative DWIDTH values Jeremy Huddleston Sequoia (6): stubs: Add missing externs for declarations in the NO_WEAK_SYMBOLS && PIC stubs resolution Use NO_WEAK_SYMBOLS instead of -flat_namespace FreeType: Correct an allocation size bitmap: Bail out on invalid input to FontFileMakeDir instead of calling calloc for 0 bytes fserve: Silence a -Wformat warning fserve: Fix a buffer read overrun in _fs_client_access Keith Packard (1): Fix warnings Thomas Klausner (1): Fix is*() usage. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.27 2015/11/04 03:28:45 agc Exp $ d3 4 a6 4 SHA1 (libXfont-1.5.2.tar.bz2) = a9470774f271622c1b425826d1c8836ed96e4a96 RMD160 (libXfont-1.5.2.tar.bz2) = 959e3f80160e22111505146ea8f2554a76034095 SHA512 (libXfont-1.5.2.tar.bz2) = 6f2005eb07afe6ea39b0be035cebdf3492b60758b7b9bed9e226280e370c15883ce6e2f72d1faa006968a0d9b3b649d3b80fcdaa3f7e01a71abcae88d99c7a41 Size (libXfont-1.5.2.tar.bz2) = 530367 bytes @ 1.28.12.1 log @Pullup ticket #5585 - requested by sevan x11/libXfont: security fix Revisions pulled up: - x11/libXfont/Makefile 1.37 - x11/libXfont/distinfo 1.29 --- Module Name: pkgsrc Committed By: wiz Date: Thu Oct 19 23:29:46 UTC 2017 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Log Message: libXfont: update to 1.5.3. Matt Turner (1): libXfont 1.5.3 Michal Srb (2): Check for end of string in PatternMatch (CVE-2017-13720) pcfGetProperties: Check string boundaries (CVE-2017-13722) @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (libXfont-1.5.3.tar.bz2) = 628b8ca2207f09324b8926084318a2fa2edb16d1 RMD160 (libXfont-1.5.3.tar.bz2) = 8f973cc4cca152bdb0fa074e58fa01d5b957f446 SHA512 (libXfont-1.5.3.tar.bz2) = e7c8a09c4d174129e5d550194d3c3dc2b4abf797e52fe588c6002920727c52cf33b7db8d07fc69c2987e766d3af2d6ddda72f0c70eb21b135c691c97656a81b4 Size (libXfont-1.5.3.tar.bz2) = 519793 bytes @ 1.28.12.2 log @Pullup ticket #5660 - requested by bsiegert x11/libXfont: security update Revisions pulled up: - x11/libXfont/Makefile 1.38 - x11/libXfont/distinfo 1.30 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: wiz Date: Tue Nov 28 14:59:27 UTC 2017 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Log Message: libXfont: update to 1.5.4. Matthieu Herrb (1): libXfont 1.5.4 Michal Srb (1): Open files with O_NOFOLLOW. (CVE-2017-16611) To generate a diff of this commit: cvs rdiff -u -r1.37 -r1.38 pkgsrc/x11/libXfont/Makefile cvs rdiff -u -r1.29 -r1.30 pkgsrc/x11/libXfont/distinfo @ text @d3 4 a6 4 SHA1 (libXfont-1.5.4.tar.bz2) = 9db050f63b9c4cb19e0dbb40575558ccb95719ca RMD160 (libXfont-1.5.4.tar.bz2) = 0217438df91751a7d95d617d444be970301c238a SHA512 (libXfont-1.5.4.tar.bz2) = 864edbaff45c44bd92bc4b06275c73fdf584a9b88bc523a297d4c75c01ca253f438463e929af70d753ddecfa648bb0b9bcf0ec72267db9f2b1704f7afa906cb3 Size (libXfont-1.5.4.tar.bz2) = 528883 bytes @ 1.27 log @Add SHA512 digests for distfiles for x11 category Problems found locating distfiles: Package modular-xorg-server: missing distfile xorg-server-1.17.4.tar.bz2 Package py-qt4: missing distfile PyQt-mac-gpl-4.11.1.tar.gz Package xservers: missing distfile xservers-3.3.6.5.tar.bz2 Package xview-clients: missing distfile xview3.2p1-X11R6.tar.gz Package xview-lib: missing distfile xview3.2p1-X11R6.tar.gz Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.26 2015/03/17 17:40:00 tnn Exp $ d3 4 a6 4 SHA1 (libXfont-1.5.1.tar.bz2) = e63a354de5dc2d8cba08d50add1519471412a618 RMD160 (libXfont-1.5.1.tar.bz2) = f597f5f5d5da639fa4ba8364c26af5793537de3e SHA512 (libXfont-1.5.1.tar.bz2) = 3ca8f7c1c642072c9bf9a755b45857f77753111ce6f1f99bd804e0f1b90cf61259fbde609a5342cce9c1ac5431b093bf75febb68baff2f2688e0a5fe5864a666 Size (libXfont-1.5.1.tar.bz2) = 502903 bytes @ 1.26 log @Update to libXfont-1.5.1 for CVE-2015-1802, CVE-2015-1803, CVE-2015-1804. Alan Coopersmith (6): Remove unneeded checks for #ifndef X_NOT_POSIX Use 'imdent' to realign cpp indentation levels in fslibos.h bdfReadProperties: property count needs range check [CVE-2015-1802] bdfReadCharacters: bailout if a char's bitmap cannot be read [CVE-2015-1803] bdfReadCharacters: ensure metrics fit into xCharInfo struct [CVE-2015-1804] libXfont 1.5.1 Christos Zoulas (1): Set close-on-exec for font file I/O. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.25 2015/02/28 10:26:32 wiz Exp $ d5 1 @ 1.25 log @Update to 1.5.0. Despite the warning below, the server compiles fine and this version was used to update NetBSD's xsrc. As a reminder: *IMPORTANT* This release works with fontsproto 2.1.3 or later and is for use with xorg-server 1.16 and later. It will *not* work with older versions of fontsproto or xorg-server (prior to 1.15.99.901). libXfont provides the core of the legacy X11 font system, handling the index files (fonts.dir, fonts.alias, fonts.scale), the various font file formats, and rasterizing them. It is used by the X servers, the X Font Server (xfs), and some font utilities (bdftopcf for instance), but should not be used by normal X11 clients. X11 clients access fonts via either the new API's in libXft, or the legacy API's in libX11. This release includes all the security & bug fixes from libXfont 1.4.8, plus these additional significant changes: - Support for SNF font format (deprecated since X11R5 in 1991) is now disabled by default at build time. For now, adding --enable-snfformat to configure flags may re-enable it, but support may be fully removed in future libXfont releases. - Many compiler warnings cleaned up, including some which required API changes around type declarations (const char *, Pointer, etc.). - README file expanded to explain all the different formats/options. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.24 2014/05/16 08:36:21 wiz Exp $ d3 3 a5 3 SHA1 (libXfont-1.5.0.tar.bz2) = 54d0d0814679901ebf6dd2dd656c8842a4a61b6c RMD160 (libXfont-1.5.0.tar.bz2) = ab0ae026c9268a499131ee95f28c420710ef2f64 Size (libXfont-1.5.0.tar.bz2) = 491483 bytes @ 1.24 log @Update to 1.4.8. This release is overflowing with security fixes and code cleanups, including the fixes for CVE-2014-0209, CVE-2014-0210, & CVE-2014-0211 for the security advisory published earlier this week: http://lists.x.org/archives/xorg-announce/2014-May/002431.html This release works with fontsproto 2.1.2 or earlier and is for use with the existing stable releases of xorg-server - 1.15 & earlier. libXfont 1.5 will be released later this year to support fontsproto 2.1.3 and xorg-server 1.16. It will also change the compile time defaults to stop building SNF font format support by default, taking the next step in the deprecation of this file format that was used prior to X11R5, and has been on the way out since 1991. In the unlikely event that you still need to support old SNF format fonts, get in the habit of adding --enable-snfformat to your configure flags when building. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.23 2014/05/15 23:48:05 joerg Exp $ d3 3 a5 5 SHA1 (libXfont-1.4.8.tar.bz2) = 687746ba7e6d6064cb2b930e2dfe744603a5f85b RMD160 (libXfont-1.4.8.tar.bz2) = 4ab6fff999c13163c30eb455329c1c37b6891e69 Size (libXfont-1.4.8.tar.bz2) = 490641 bytes SHA1 (patch-configure) = 2176c5f4154a332171857533d94730b0a31c5a7a SHA1 (patch-src_util_patcache.c) = 4b21d5fddae374e43e5ec37efd3da98171f1625d @ 1.23 log @Fix CVE-2014-0209, CVE-2014-0210 and CVE-2014-0211, validation errors triggerable via XFS or local font directories under user control. Bump revision. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.22 2014/04/15 16:47:25 wiz Exp $ d3 4 a6 5 SHA1 (libXfont-1.4.7.tar.bz2) = 77f60d0a2190cb36c07c2217693f46d5e8942ca2 RMD160 (libXfont-1.4.7.tar.bz2) = 9ed172b89586d7f1b8342045c75f5aa861c6f661 Size (libXfont-1.4.7.tar.bz2) = 482851 bytes SHA1 (patch-src_fc_fsconvert.c) = 7efe7b1a761756739fb4aef2416e4e1b33c509fd SHA1 (patch-src_fc_fserve.c) = c62a9fb13dc22e48088d89d4b183573769e8c00b @ 1.22 log @Fix compatibility with fontsproto-2.1.3 and depend on it. Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.21 2014/01/07 20:09:18 wiz Exp $ d6 2 @ 1.21 log @Update to 1.4.7 (pkgsrc already had the security fix): This release includes the fix for CVE-2013-6462, as well as other security hardening and code cleanups, and makes libXfont compatible with libXtrans 1.3 on Solaris. Alan Coopersmith (7): xstrdup -> strdup Replace malloc(strlen)+strcpy/strcat calls with strdup Don't leak old allocation if realloc fails to enlarge it Add AC_USE_SYSTEM_EXTENSIONS to expose non-standard extensions CVE-2013-6462: unlimited sscanf overflows stack buffer in bdfReadCharacters() Limit additional sscanf strings to fit buffer sizes libXfont 1.4.7 Julien Cristau (1): Make serverGeneration unsigned @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.20 2014/01/07 07:39:49 wiz Exp $ d6 1 @ 1.21.2.1 log @Pullup ticket #4413 - requested by he x11/fontsproto: security update x11/libXfont: security patch Revisions pulled up: - x11/fontsproto/Makefile 1.7 - x11/fontsproto/distinfo 1.4 - x11/libXfont/Makefile 1.31-1.32 - x11/libXfont/distinfo 1.22-1.23 - x11/libXfont/patches/patch-src_fc_fsconvert.c 1.1 - x11/libXfont/patches/patch-src_fc_fserve.c 1.1 - x11/libXfont/patches/patch-src_util_patcache.c 1.1 --- Module Name: pkgsrc Committed By: wiz Date: Tue Apr 15 08:22:53 UTC 2014 Modified Files: pkgsrc/x11/fontsproto: Makefile distinfo Log Message: Update to 2.1.3: 2.1.3: This release features a number of spec formatting improvements, and some header adjustments for current xserver. Adam Jackson (1): configure: Remove AM_MAINTAINER_MODE Alan Coopersmith (35): spec: Replace ASCII => & -> arrows with Unicode ▶ & ◀ spec: add olinks to X11 protocol & XLFD specs spec: fixup bibliography entries (correct authors, link to references) spec: convert from article with sections to book with chapters spec: markup introduction of new terms with spec: fixup markup/formatting of the naming syntax section spec: change ids for encoding sections from *_2 to Encoding::* spec: add links to references to other sections spec: Use
markup for figure labels spec: remove some extra quotes from nroff conversion spec: add markup spec: convert list of license models from itemizedlist to variablelist spec: Convert .IN comments to indexterm tags spec: add autogenerated index spec: fix boundaries of tags spec: Use instead of for error names spec: Convert Requests chapter to have a section per request spec: Convert Events chapter to have a section per request spec: Convert Errors chapter to have a section per request spec: make links from encoding section to definitions spec: Use markup in Acknowledgements spec: Use tables for contents of Requests, Events & Errors spec: Convert a bunch of AccessContext references from to spec: Use for exponents spec: markup data type names with spec: Finish replacing nroff .sp macros with breaks spec: Convert Data Types section to have a section per type, with tables spec: give footnotes ids for more stable links spec: fixup quote characters spec: add enumerated constants to index spec: markup enumerated constant names with spec: Make links to data types, requests, events & errors spec: Remove comments leftover from nroff migration spec: use markup for elements of requests & replies spec: Make alignment of columns in Encoding section more consistent Colin Walters (1): autogen.sh: Implement GNOME Build API Gaetan Nadon (1): config: replace deprecated use of AC_OUTPUT with AC_CONFIG_FILES Julien Cristau (1): fontsproto 2.1.3 Keith Packard (2): Replace 'pointer' with the equivalent 'void *'. Allow paths and patterns to be const --- Module Name: pkgsrc Committed By: wiz Date: Tue Apr 15 16:47:26 UTC 2014 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Added Files: pkgsrc/x11/libXfont/patches: patch-src_util_patcache.c Log Message: Fix compatibility with fontsproto-2.1.3 and depend on it. Bump PKGREVISION. --- Module Name: pkgsrc Committed By: joerg Date: Thu May 15 23:48:05 UTC 2014 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Added Files: pkgsrc/x11/libXfont/patches: patch-src_fc_fsconvert.c patch-src_fc_fserve.c Log Message: Fix CVE-2014-0209, CVE-2014-0210 and CVE-2014-0211, validation errors triggerable via XFS or local font directories under user control. Bump revision. @ text @d1 1 a1 1 $NetBSD$ a5 3 SHA1 (patch-src_fc_fsconvert.c) = 7efe7b1a761756739fb4aef2416e4e1b33c509fd SHA1 (patch-src_fc_fserve.c) = c62a9fb13dc22e48088d89d4b183573769e8c00b SHA1 (patch-src_util_patcache.c) = 4b21d5fddae374e43e5ec37efd3da98171f1625d @ 1.20 log @CVE-2013-6462: A BDF font file containing a longer than expected string could overflow the buffer on the stack. Testing in X servers built with Stack Protector resulted in an immediate crash when reading a user-provided specially crafted font. Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.19 2013/07/22 06:34:53 wiz Exp $ d3 3 a5 4 SHA1 (libXfont-1.4.6.tar.bz2) = 356512420fa8573a541450b957526dfd151b4870 RMD160 (libXfont-1.4.6.tar.bz2) = 6c284e2d50638753e43f7dae09a5d4b80c660920 Size (libXfont-1.4.6.tar.bz2) = 489067 bytes SHA1 (patch-src_bitmap_bdfread.c) = 199f221e01faf2393212452d0180788c0a4ffaff @ 1.19 log @Update to 1.4.6: This minor bug fix release includes a couple bug fixes, and a little bit of cleanup of both the code & build configuration. Adam Jackson (2): catalogue: Fix obvious thinko configure: Remove AM_MAINTAINER_MODE Alan Coopersmith (3): Replace deprecated Automake INCLUDES variable with AM_CPPFLAGS Require ANSI C89 pre-processor, drop pre-C89 token pasting support libXfont 1.4.6 Arvind Umrao (1): If socket is interrupted with signal EINTR, re-attempt read. Colin Walters (1): autogen.sh: Implement GNOME Build API Thomas Klausner (1): Protect config.h inclusion with ifdef HAVE_CONFIG_H, like usual. Yaakov Selkowitz (1): Omit catalogue support on systems without symlinks @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.18 2012/06/01 20:19:16 drochner Exp $ d6 1 @ 1.19.4.1 log @Pullup ticket #4287 - requested by wiz x11/libXfont: security patch Revisions pulled up: - x11/libXfont/Makefile 1.29 - x11/libXfont/distinfo 1.20 - x11/libXfont/patches/patch-src_bitmap_bdfread.c 1.1 --- Module Name: pkgsrc Committed By: wiz Date: Tue Jan 7 07:39:49 UTC 2014 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Added Files: pkgsrc/x11/libXfont/patches: patch-src_bitmap_bdfread.c Log Message: CVE-2013-6462: A BDF font file containing a longer than expected string could overflow the buffer on the stack. Testing in X servers built with Stack Protector resulted in an immediate crash when reading a user-provided specially crafted font. Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD$ a5 1 SHA1 (patch-src_bitmap_bdfread.c) = 199f221e01faf2393212452d0180788c0a4ffaff @ 1.18 log @update to 1.4.5 changes: misc fixes, most notably the fix for the LZW decompression security issue was integrated @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.17 2011/11/14 13:34:10 cheusov Exp $ d3 3 a5 3 SHA1 (libXfont-1.4.5.tar.bz2) = 0bf3cb8aa192ab96bbaf384d1a4a00d15a40171e RMD160 (libXfont-1.4.5.tar.bz2) = f7749eb4fb7f8e73921c45c5bdcb48fc5f9a0645 Size (libXfont-1.4.5.tar.bz2) = 470879 bytes @ 1.17 log @ Update to 1.4.4. Approved by wiz@@. Tested on current with modular xorg. Changes. commit a7970f5c817b5c75d945389cfaf1384ff23437f3 Author: Matthieu Herrb Date: Mon Aug 8 18:08:05 2011 +0200 libXfont 1.4.4 Signed-off-by: Matthieu Herrb Signed-off-by: Alan Coopersmith commit d11ee5886e9d9ec610051a206b135a4cdc1e09a0 Author: Thomas Hoger Date: Mon Aug 8 18:03:09 2011 +0200 LZW decompress: fix for CVE-2011-2895 Specially crafted LZW stream can crash an application using libXfont that is used to open untrusted font files. With X server, this may allow privilege escalation when exploited Reviewed-by: Matthieu Herrb Signed-off-by: Matthieu Herrb Signed-off-by: Alan Coopersmith commit 214ca6a7a2247544627e6dc7c8705811305ad007 Author: Alan Coopersmith Date: Mon May 16 18:28:13 2011 -0700 Fix memory leak in allocation failure path of BitmapOpenScalable() Go ahead and fill in the font->info pointers so that bitmapUnloadScalable() will free the bits that were allocated, even if some were not. Error: Memory leak (CWE 401) Memory leak of pointer allocated with ComputeScaledProperties(...) at line 1629 of /export/alanc/X.Org/git/lib/libXfont/src/bitmap/bitscale.c in function 'BitmapOpenScalable'. pointer allocated at line 1616 with ComputeScaledProperties(...). leaks when props != 0 at line 1623. [ This bug was found by the Parfait 0.3.7 bug checking tool. For more information see http://labs.oracle.com/projects/parfait/ ] Signed-off-by: Alan Coopersmith Reviewed-by: Jeremy Huddleston commit 7f8345aa6fb60a7fd7adf0095a2354fad1d8d5ef Author: Gaetan Nadon Date: Wed Mar 2 14:33:07 2011 -0500 doc: use common makefile for developers documentation The user/specs docs now have external references support. Developers doc are not installed so they do not participate. However, using a similar makefile shared amongst developers document reduces maintenance and is forward looking. Signed-off-by: Gaetan Nadon commit 77027deabca37183cfbbed107cf14ca80f29f26d Author: Gaetan Nadon Date: Wed Feb 2 11:43:42 2011 -0500 config: comment, minor upgrade, quote and layout configure.ac Group statements per section as per Autoconf standard layout Quote statements where appropriate. Autoconf recommends not using dnl instead of # for comments Use AC_CONFIG_FILES to replace the deprecated AC_OUTPUT with parameters. Add AC_CONFIG_SRCDIR([Makefile.am]) This helps automated maintenance and release activities. Details can be found in http://wiki.x.org/wiki/NewModuleGuidelines commit 9ea1790d61bd135714c40e5089ecb1effa1dbcc0 Author: Gaetan Nadon Date: Thu Jan 27 18:50:15 2011 -0500 config: remove AC_PROG_CC as it overrides AC_PROG_C_C99 XORG_STRICT_OPTION from XORG_DEFAULT_OPTIONS calls AC_PROG_C_C99. This sets gcc with -std=gnu99. If AC_PROG_CC macro is called afterwards, it resets CC to gcc. Signed-off-by: Gaetan Nadon commit 4e0c6c45d819befdd9315d6282b957f7cfec3ae2 Author: Paulo Zanoni Date: Thu Dec 16 14:09:12 2010 -0200 Use docbookx.dtd version 4.3 for all docs Signed-off-by: Paulo Zanoni Signed-off-by: Alan Coopersmith commit 01c30845853f5a8114467185d76274ae9bbff091 Author: Alan Coopersmith Date: Sun Nov 21 11:35:20 2010 -0800 Sun's copyrights belong to Oracle now Signed-off-by: Alan Coopersmith commit 72ade58381a49514f2b29065ba33a464b7efc3d0 Author: Gaetan Nadon Date: Tue Nov 9 13:04:51 2010 -0500 config: HTML file generation: use the installed copy of xorg.css Currenlty the xorg.css file is copied in each location where a DocBook/XML file resides. This produces about 70 copies in the $(docdir) install tree. Signed-off-by: Gaetan Nadon commit 12157fbebc35c2d039df2df4fc5ac2b299eeec03 Author: Alan Coopersmith Date: Thu Oct 28 20:43:27 2010 -0700 libXfont 1.4.3 Signed-off-by: Alan Coopersmith commit f29f1d68d7eca96e45ba3758686be07993d82e03 Author: Jesse Adkins Date: Tue Sep 28 13:30:02 2010 -0700 Purge cvs tags. Signed-off-by: Jesse Adkins Signed-off-by: Alan Coopersmith commit 6628b4d82426cf9ac240da363cd8a8252e6f71ef Author: Jeremy Huddleston Date: Mon Sep 27 12:31:50 2010 -0700 FreeType: Cleanup MUMBLE and fix printing of XLFD in debug spew. Signed-off-by: Jeremy Huddleston commit c482a2c104aa5cd1a265c2ca310a308dcc418fe7 Author: Yaakov Selkowitz Date: Wed Apr 14 05:58:28 2010 -0500 Revert "Bug #6247: Fix build on Cygwin" libtool requires the '-no-undefined' flag in order to create shared libraries on PE/COFF platforms (Cygwin/MinGW); on other platforms this flag has no effect. The problem with libXfont is that PE weak symbols do not behave exactly as they do on ELF platforms. Since PE binaries (both executables and libraries) must have all symbols resolved at link time, there is no way for the real symbols in xserver to "displace" those in libXfont at runtime, so the result is that libXfont uses its stubs, which do nothing, and xserver ends up unable to find its fonts. Solving this will require either significant changes to libXfont or some major improvement to the toolchain to handle this case. Until that happens, removing '-no-undefined' will result in a static-only library on these platforms, which is the only currently working solution. http://sourceware.org/bugzilla/show_bug.cgi?id=11306 http://cygwin.com/ml/cygwin/2010-04/msg00281.html This reverts commit 69c4ae1e3e14a58bc2eb9b9b8820dc7183b82a67. Conflicts: ChangeLog Signed-off-by: Yaakov Selkowitz commit 455ec66e82e3c4bedd9e789d2ab33030b8e64ffa Author: Alan Coopersmith Date: Sun Aug 8 00:19:36 2010 -0700 Fix builds with Sun compilers Sun compilers use #pragma weak in the *.c files to declare weak symbols, so should have weak defined to empty, but not define NO_WEAK_SYMBOLS Signed-off-by: Alan Coopersmith commit 0386fa77367a305deea3cc27f8a3865cc3c467c0 Author: Jeremy Huddleston Date: Sat Jul 10 10:08:21 2010 -0700 darwin: Fix build regression introduced by previous patch Signed-off-by: Jeremy Huddleston commit 8f75706901da0141590d46f0f898e5678feac953 Author: Jon TURNEY Date: Mon Jun 28 17:56:07 2010 +0100 Build fix for platforms which don't have weak linkage Since we fix this by removing the serverGeneration symbol, assuming an external definition will be provided, this means on Windows libXfont can only be built as a static library (since PE shared libraries cannot contain undefined symbols). This produces a libXfont which might only be useful to the xserver, but the only other users we might care about are xfs, which is obsolete, and bdftopcf, which fortunately doesn't pull in any objects which reference serverGeneration from libXfont. Signed-off-by: Jon TURNEY Reviewed-by: Colin Harrison commit 5c49c956e9c85d89f6b2e719eb9b6fbde62c2f72 Author: Gaetan Nadon Date: Mon Jun 28 13:18:22 2010 -0400 doc: use xorg-docs xorg.css stylesheet Use latest DocBook XML util-macros infrastructure Signed-off-by: Gaetan Nadon @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.16 2011/08/18 22:58:24 joerg Exp $ d3 3 a5 4 SHA1 (libXfont-1.4.4.tar.bz2) = 189dd7a3756cb80bcf41b779bf05ec3c366e3041 RMD160 (libXfont-1.4.4.tar.bz2) = 0241b2505ed65b0bd66d8bd3c80330a4db6eea6d Size (libXfont-1.4.4.tar.bz2) = 440022 bytes SHA1 (patch-src-fontfile-decompress.c) = 9a51f6be0a40e3d785d6cf7d14f09c165be09f0b @ 1.16 log @Fix buffer overflow in LZW handler. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2010/09/10 18:49:43 joerg Exp $ d3 3 a5 3 SHA1 (libXfont-1.4.2.tar.bz2) = 79c2089fec014da4b7976e6762f1e9e447fd5767 RMD160 (libXfont-1.4.2.tar.bz2) = 5812959009f15b321ebe6cfb9bea9c7abbbef940 Size (libXfont-1.4.2.tar.bz2) = 433887 bytes @ 1.15 log @Update to libXfont-1.4.2: Minor bug fixes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2010/01/15 18:43:28 tnn Exp $ d6 1 @ 1.15.8.1 log @Pullup ticket #3501 - requested by joerg x11/libXfont buffer overflow fix Revisions pulled up: - x11/libXfont/Makefile 1.18 - x11/libXfont/distinfo 1.16 - x11/libXfont/patches/patch-src-fontfile-decompress.c 1.1 --- Module Name: pkgsrc Committed By: joerg Date: Thu Aug 18 22:58:24 UTC 2011 Modified Files: pkgsrc/x11/libXfont: Makefile distinfo Added Files: pkgsrc/x11/libXfont/patches: patch-src-fontfile-decompress.c Log Message: Fix buffer overflow in LZW handler. @ text @d1 1 a1 1 $NetBSD$ a5 1 SHA1 (patch-src-fontfile-decompress.c) = 9a51f6be0a40e3d785d6cf7d14f09c165be09f0b @ 1.14 log @Update to libXfont-1.4.1. Changes: Migrate to xorg macros 1.3 & XORG_DEFAULT_OPTIONS Move fontlib.ms from xorg-docs Convert documentation from troff to DocBook/XML Remove unused setting of ENCODINGSDIR libXfont 1.4.1 Fixed int(*)()->double cast warning @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2009/06/10 14:00:36 wiz Exp $ d3 3 a5 3 SHA1 (libXfont-1.4.1.tar.bz2) = f8dc669760975b41885143f828b54164224c8a31 RMD160 (libXfont-1.4.1.tar.bz2) = a3368fb979409aaaf577b3c8ff6e3aa906f63114 Size (libXfont-1.4.1.tar.bz2) = 428802 bytes @ 1.13 log @Update to 1.4.0: Lots of cleanup and misc bugfixes since 1.3.4. Still one of the worst libraries we ship though. If you're unfortunate enough to need speedo, type1, or printer fonts, then you'll want to skip this release. --- Adam Jackson (15): Delete speedo Delete Type1 const cleanup Get rid of a useless array Remove useless #define Remove loadable renderer support. Remove printer font support. Remove PMF support. xalloc -> malloc, etc. Drop OS/2 support Move the copy of CopyISOLatin1Lowered near its user, and un-weak it. Delete some dead ifdefs Allow case insensitive filename matching in fontfile. Remove some strcasecmp silliness libXfont 1.4.0 Alan Coopersmith (1): Restore comment deleted by b6f793d7d5 Jeremy Huddleston (1): Added missing AM_CFLAGS for -Wl,-flat_namespace Paulo Cesar Pereira de Andrade (3): libXfont ansification and removal of xf86_ansic.h dependency Disable some fun stdio wrapping. Janitor: make distcheck and .gitignore Peter Astrand (1): Avoid sending uninitialized padding data over the network. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2009/01/07 22:01:10 wiz Exp $ d3 3 a5 3 SHA1 (libXfont-1.4.0.tar.bz2) = f47a2f41273cdbe5198ac700df70686fab72cd35 RMD160 (libXfont-1.4.0.tar.bz2) = 999e6bbbbfaa2ad238abd9b7f1d93adf95143614 Size (libXfont-1.4.0.tar.bz2) = 410560 bytes @ 1.12 log @Update to 1.3.4: Adam Jackson (2): Nuke fontcache. Retry font server connections faster. Alan Coopersmith (8): Add support for bzip2 bitmap font compression Pad CreateAC packets with 0 auths to workaround xfs bug Always scan catalogue dirs at startup, even if their mtime < 0 Use XORG_CWARNFLAGS & XORG_CHANGELOG macros from xorg-macros 1.2 Update COPYING file with additional copyrights/licenses Add simple README with pointers to bugzilla/git/mailing list miscutil.c:108: warning: old-style parameter declaration Version bump: 1.3.4 Benjamin Close (1): Make sure font names/font alias names are null terminated Derek Wang (1): Sun bug 4510977: dtremote fails to start session Julien Cristau (1): Don't clobber CFLAGS in configure Peter Breitenlohner (1): X.Org Bug 17945: avoid gcc warnings for libXfont @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2008/07/17 00:56:45 bjs Exp $ d3 3 a5 4 SHA1 (libXfont-1.3.4.tar.bz2) = d7782b506f82cfce928c8be35be859c18f1e852f RMD160 (libXfont-1.3.4.tar.bz2) = 81d2be307219f6550793fb8c1661624e6bbbf55d Size (libXfont-1.3.4.tar.bz2) = 571087 bytes SHA1 (patch-ac) = de3952fb43533b3f325096e330bd0bf996bb4a47 @ 1.11 log @ Update to libXfont-1.3.3. Changes: commit 11edbc3a818e15ea2b622b31e6f87159ee68ae4a Do not call FT_Get_BDF_Charset_ID() if configured with --disable-bdfformat commit 1ab07ce0eec4f6c7ed66c7aba3edf8c4315dd907 FontFileDirectoryChanged: check length of "fonts.alias" as well as "fonts.dir" commit 0f9db4aa7de6e0644ac9c5811b949e5f936c9d61 Don't allow a font alias to point to itself and create a loop Part of fix for Sun bug 4258475 commit 754cabe62e91b9ad50c3027c063f4269775f7add Add missing include in src/FreeType/ftfuncs.c Fixes compiler warning: ../../../src/FreeType/ftfuncs.c: In function 'restrict_code_range_by_str': ../../../src/FreeType/ftfuncs.c:2081: warning: implicit declaration of function 'isspace' @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2008/03/07 20:16:19 wiz Exp $ d3 3 a5 3 SHA1 (libXfont-1.3.3.tar.bz2) = bfbdd25239ef6cd515bb7afe888f0556454b34c7 RMD160 (libXfont-1.3.3.tar.bz2) = f8fba81f41043c07ffa0e014ca8758fdcef7df06 Size (libXfont-1.3.3.tar.bz2) = 591117 bytes @ 1.10 log @Update to 1.3.2: Adam Jackson (1): libXfont 1.3.2 Jens Granseuer (1): fix build with gcc 2.95. Matthieu Herrb (3): catalogue.c: prevent a one character overflow ftsystem.c is not needed anymore. Fix for CVE-2008-0006 - PCF Font parser buffer overflow. Tilman Sauerbeck (1): Replaced one instance of bcopy() with memcpy(). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2008/01/21 13:56:28 tnn Exp $ d3 3 a5 3 SHA1 (libXfont-1.3.2.tar.bz2) = 3723147f97dd77d12da4a69c7ce4ebd1040e1a42 RMD160 (libXfont-1.3.2.tar.bz2) = e27e4d14357c56044994a4c757891a3b7ca2e695 Size (libXfont-1.3.2.tar.bz2) = 584023 bytes @ 1.9 log @Fix a silly build failure on HP-UX. For reasons unknown, libXfont (or actually the bundled t1lib) provides it's "own" implementation of stdio.h as t1stdio.h. For this reason they take care not to include stdio.h to avoid conflicts. But they do include stdlib.h which on HP-UX recursively includes stdio.h. Fix by not including stdlib.h on HP-UX. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.8 2008/01/20 18:24:51 joerg Exp $ d3 3 a5 5 SHA1 (libXfont-1.3.1.tar.bz2) = 90153414cd3580d92cad6469166c099749cddd29 RMD160 (libXfont-1.3.1.tar.bz2) = 13c8ed7b33ec0c4f08c032d74958e49d3c177464 Size (libXfont-1.3.1.tar.bz2) = 564235 bytes SHA1 (patch-aa) = e421de2c9b67b46c2dab651ba1bab13fd08df914 SHA1 (patch-ab) = 56339bd99f714be3d9a7d697c39eab1b13794c3b @ 1.8 log @libXfont-1.3.1nb2: Include upstream fix for another PCF integer overflow. This is CVE-2008-0006. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.7 2007/09/24 16:24:48 joerg Exp $ d8 1 @ 1.7 log @Fix off-by-one issue. Bump revision. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2007/09/21 19:32:17 bjs Exp $ d7 1 @ 1.6 log @ Update to version 1.3.1. Important changes: -- Support relative paths in catalogue: symlinks. -- Fix dirfd leak on CatalogueRescan(). -- Remove side effects from BuiltinReadDirectory() @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.5 2007/07/12 12:41:18 joerg Exp $ d6 1 @ 1.5 log @Update to libXfont-1.3.0: - Introduce catalogue FPE, which contains symlinks to font directories. Options like unscaled can be attached to it. Fix a bug in this code. - Remove lots of dead code and cleanup some warnings. Note: the second point does change the ABI, but as the code seems to have been unused, I'm not forcing a major bump that upstream didn't do. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2007/04/10 17:43:25 drochner Exp $ d3 3 a5 3 SHA1 (libXfont-1.3.0.tar.bz2) = 3440ff0bd9b364991da2f0b5d38c1c87d8a4c032 RMD160 (libXfont-1.3.0.tar.bz2) = 115b73f66cc8024cf2cffe5e83d6516f187d1f4d Size (libXfont-1.3.0.tar.bz2) = 582389 bytes @ 1.4 log @update to 1.2.8 changes: -the integer overflow fixes went in (was patched in pkgsrc) -build fixes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2007/04/03 20:27:20 drochner Exp $ d3 3 a5 3 SHA1 (libXfont-1.2.8.tar.bz2) = 4d8801450d2a9282a84f55ea78a7d184bc8a6411 RMD160 (libXfont-1.2.8.tar.bz2) = da08bf640890b630072fba768a8a64fc2ae94d0b Size (libXfont-1.2.8.tar.bz2) = 583236 bytes @ 1.3 log @fix a possible memory corruption due to integer overflow, caused by lack of validation of bdf font files (CVE 2007-1351) fix a possible memory corruption due to integer overflow, caused by lack of validation of fonts.dir files (CVE 2007-1352) bump PKGREVISION @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2007/01/23 15:49:37 joerg Exp $ d3 3 a5 5 SHA1 (libXfont-1.2.7.tar.bz2) = 60deba746e544785ca05c7c68ccfbd5d71370a29 RMD160 (libXfont-1.2.7.tar.bz2) = 33e2688d1e3490d8b588ca2304b3d4068568dcae Size (libXfont-1.2.7.tar.bz2) = 573915 bytes SHA1 (patch-aa) = c5914dee0f48eee37e7c389bfcd5cbe2e4f0b015 SHA1 (patch-ab) = cebfd94e8f12c24e65c912b31652265ff798402f @ 1.2 log @Update to libXfont-1.2.7: - no more CID support - fixed a crash when rescaling bitmaps in the X server - accept font pathes with empty list of valid entries @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1.1.1 2006/11/03 21:45:46 joerg Exp $ d6 2 @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (libXfont-1.2.3.tar.bz2) = 97aed7a88c43086a816a3586d08e9ed17411d6d9 RMD160 (libXfont-1.2.3.tar.bz2) = b9447b970c911f4a615d39a30eaa2caad00f5350 Size (libXfont-1.2.3.tar.bz2) = 623938 bytes @ 1.1.1.1 log @Import libXfont-1.2.3 from pkgsrc-wip: This package provides the X font Library from the modular X.org X11 project. @ text @@