Adam Jackson (1):
libXfont 1.3.2
Jens Granseuer (1):
fix build with gcc 2.95.
Matthieu Herrb (3):
catalogue.c: prevent a one character overflow
ftsystem.c is not needed anymore.
Fix for CVE-2008-0006 - PCF Font parser buffer overflow.
Tilman Sauerbeck (1):
Replaced one instance of bcopy() with memcpy().
(or actually the bundled t1lib) provides it's "own" implementation of
stdio.h as t1stdio.h. For this reason they take care not to include stdio.h
to avoid conflicts. But they do include stdlib.h which on HP-UX
recursively includes stdio.h. Fix by not including stdlib.h on HP-UX.
- Introduce catalogue FPE, which contains symlinks to font directories.
Options like unscaled can be attached to it. Fix a bug in this code.
- Remove lots of dead code and cleanup some warnings.
Note: the second point does change the ABI, but as the code seems to have
been unused, I'm not forcing a major bump that upstream didn't do.
of validation of bdf font files
(CVE 2007-1351)
fix a possible memory corruption due to integer overflow, caused by lack
of validation of fonts.dir files
(CVE 2007-1352)
bump PKGREVISION