Your message dated Fri, 05 Jan 2018 03:35:05 +0000 with message-id <e1eximf-0003sl...@fasolo.debian.org> and subject line Bug#863623: fixed in freetype 2.8.1-1 has caused the Debian Bug report #863623, regarding freetype: diff for NMU version 2.8-0.1 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 863623: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863623 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: freetype Version: 2.7.1-0.1 Severity: normal Tags: patch pending Dear maintainer, I've prepared an NMU for freetype (versioned as 2.8-0.1). The diff is attached to this message. Regards. diff -Nru freetype-2.7.1/debian/changelog freetype-2.8/debian/changelog --- freetype-2.7.1/debian/changelog 2017-05-29 13:35:21.000000000 +0200 +++ freetype-2.8/debian/changelog 2017-05-29 13:35:21.000000000 +0200 @@ -1,3 +1,16 @@ +freetype (2.8-0.1) experimental; urgency=medium + + * Non-maintainer upload. + * New upstream release + - Better protect `flex' handling (CVE-2017-8105) (Closes: #861220) + - t1_builder_close_contour: Add safety guard (CVE-2017-8287) + (Closes: #861308) + - tt_size_reset: Do nothing for CFF2 (CVE-2017-7864) (Closes: #860313) + - Improve handling for buggy variation fonts (CVE-2017-7857 CVE-2017-7858) + (Closes: #860307) + + -- Laurent Bigonville <bi...@debian.org> Fri, 26 May 2017 17:39:07 +0200 + freetype (2.7.1-0.1) experimental; urgency=medium * Non-maintainer upload. diff -Nru freetype-2.7.1/debian/libfreetype6.symbols freetype-2.8/debian/libfreetype6.symbols --- freetype-2.7.1/debian/libfreetype6.symbols 2017-05-29 13:35:21.000000000 +0200 +++ freetype-2.8/debian/libfreetype6.symbols 2017-05-29 13:35:21.000000000 +0200 @@ -50,6 +50,7 @@ FT_Face_GetCharsOfVariant@Base 2.3.5 FT_Face_GetVariantSelectors@Base 2.3.5 FT_Face_GetVariantsOfChar@Base 2.3.5 + FT_Face_Properties@Base 2.8 FT_Face_SetUnpatentedHinting@Base 2.3.5 FT_FloorFix@Base 2.2.1 FT_Forget_Frame@Base 0 1 @@ -87,6 +88,7 @@ FT_Get_PS_Font_Value@Base 2.4.8 FT_Get_Postscript_Name@Base 2.2.1 FT_Get_Renderer@Base 2.2.1 + FT_Get_Sfnt_LangTag@Base 2.8 FT_Get_Sfnt_Name@Base 2.2.1 FT_Get_Sfnt_Name_Count@Base 2.2.1 FT_Get_Sfnt_Table@Base 2.2.1 @@ -194,6 +196,7 @@ FT_Set_Char_Size@Base 2.2.1 FT_Set_Charmap@Base 2.2.1 FT_Set_Debug_Hook@Base 2.2.1 + FT_Set_Default_Properties@Base 2.8 FT_Set_MM_Blend_Coordinates@Base 2.2.1 FT_Set_MM_Design_Coordinates@Base 2.2.1 FT_Set_Pixel_Sizes@Base 2.2.1 @@ -264,6 +267,10 @@ FT_Vector_Unit@Base 2.2.1 TT_New_Context@Base 2.2.1 TT_RunIns@Base 2.2.1 + af_adlm_dflt_style_class@Base 0 1 + af_adlm_nonbase_uniranges@Base 0 1 + af_adlm_script_class@Base 0 1 + af_adlm_uniranges@Base 0 1 af_arab_dflt_style_class@Base 0 1 af_arab_nonbase_uniranges@Base 0 1 af_arab_script_class@Base 0 1 @@ -273,17 +280,49 @@ af_armn_script_class@Base 0 1 af_armn_uniranges@Base 0 1 af_autofitter_interface@Base 0 1 + af_avst_dflt_style_class@Base 0 1 + af_avst_nonbase_uniranges@Base 0 1 + af_avst_script_class@Base 0 1 + af_avst_uniranges@Base 0 1 + af_bamu_dflt_style_class@Base 0 1 + af_bamu_nonbase_uniranges@Base 0 1 + af_bamu_script_class@Base 0 1 + af_bamu_uniranges@Base 0 1 af_beng_dflt_style_class@Base 0 1 af_beng_nonbase_uniranges@Base 0 1 af_beng_script_class@Base 0 1 af_beng_uniranges@Base 0 1 af_blue_strings@Base 0 1 af_blue_stringsets@Base 0 1 + af_buhd_dflt_style_class@Base 0 1 + af_buhd_nonbase_uniranges@Base 0 1 + af_buhd_script_class@Base 0 1 + af_buhd_uniranges@Base 0 1 + af_cakm_dflt_style_class@Base 0 1 + af_cakm_nonbase_uniranges@Base 0 1 + af_cakm_script_class@Base 0 1 + af_cakm_uniranges@Base 0 1 + af_cans_dflt_style_class@Base 0 1 + af_cans_nonbase_uniranges@Base 0 1 + af_cans_script_class@Base 0 1 + af_cans_uniranges@Base 0 1 + af_cari_dflt_style_class@Base 0 1 + af_cari_nonbase_uniranges@Base 0 1 + af_cari_script_class@Base 0 1 + af_cari_uniranges@Base 0 1 af_cher_dflt_style_class@Base 0 1 af_cher_nonbase_uniranges@Base 0 1 af_cher_script_class@Base 0 1 af_cher_uniranges@Base 0 1 af_cjk_writing_system_class@Base 0 1 + af_copt_dflt_style_class@Base 0 1 + af_copt_nonbase_uniranges@Base 0 1 + af_copt_script_class@Base 0 1 + af_copt_uniranges@Base 0 1 + af_cprt_dflt_style_class@Base 0 1 + af_cprt_nonbase_uniranges@Base 0 1 + af_cprt_script_class@Base 0 1 + af_cprt_uniranges@Base 0 1 af_cyrl_c2cp_style_class@Base 0 1 af_cyrl_c2sc_style_class@Base 0 1 af_cyrl_dflt_style_class@Base 0 1 @@ -301,6 +340,10 @@ af_deva_nonbase_uniranges@Base 0 1 af_deva_script_class@Base 0 1 af_deva_uniranges@Base 0 1 + af_dsrt_dflt_style_class@Base 0 1 + af_dsrt_nonbase_uniranges@Base 0 1 + af_dsrt_script_class@Base 0 1 + af_dsrt_uniranges@Base 0 1 af_dummy_writing_system_class@Base 0 1 af_ethi_dflt_style_class@Base 0 1 af_ethi_nonbase_uniranges@Base 0 1 @@ -314,6 +357,14 @@ af_geor_nonbase_uniranges@Base 0 1 af_geor_script_class@Base 0 1 af_geor_uniranges@Base 0 1 + af_glag_dflt_style_class@Base 0 1 + af_glag_nonbase_uniranges@Base 0 1 + af_glag_script_class@Base 0 1 + af_glag_uniranges@Base 0 1 + af_goth_dflt_style_class@Base 0 1 + af_goth_nonbase_uniranges@Base 0 1 + af_goth_script_class@Base 0 1 + af_goth_uniranges@Base 0 1 af_grek_c2cp_style_class@Base 0 1 af_grek_c2sc_style_class@Base 0 1 af_grek_dflt_style_class@Base 0 1 @@ -344,6 +395,10 @@ af_hebr_script_class@Base 0 1 af_hebr_uniranges@Base 0 1 af_indic_writing_system_class@Base 0 1 + af_kali_dflt_style_class@Base 0 1 + af_kali_nonbase_uniranges@Base 0 1 + af_kali_script_class@Base 0 1 + af_kali_uniranges@Base 0 1 af_khmr_dflt_style_class@Base 0 1 af_khmr_nonbase_uniranges@Base 0 1 af_khmr_script_class@Base 0 1 @@ -386,6 +441,10 @@ af_limb_nonbase_uniranges@Base 0 1 af_limb_script_class@Base 0 1 af_limb_uniranges@Base 0 1 + af_lisu_dflt_style_class@Base 0 1 + af_lisu_nonbase_uniranges@Base 0 1 + af_lisu_script_class@Base 0 1 + af_lisu_uniranges@Base 0 1 af_mlym_dflt_style_class@Base 0 1 af_mlym_nonbase_uniranges@Base 0 1 af_mlym_script_class@Base 0 1 @@ -394,20 +453,48 @@ af_mymr_nonbase_uniranges@Base 0 1 af_mymr_script_class@Base 0 1 af_mymr_uniranges@Base 0 1 + af_nkoo_dflt_style_class@Base 0 1 + af_nkoo_nonbase_uniranges@Base 0 1 + af_nkoo_script_class@Base 0 1 + af_nkoo_uniranges@Base 0 1 af_none_dflt_style_class@Base 0 1 af_none_nonbase_uniranges@Base 0 1 af_none_script_class@Base 0 1 af_none_uniranges@Base 0 1 + af_olck_dflt_style_class@Base 0 1 + af_olck_nonbase_uniranges@Base 0 1 + af_olck_script_class@Base 0 1 + af_olck_uniranges@Base 0 1 + af_orkh_dflt_style_class@Base 0 1 + af_orkh_nonbase_uniranges@Base 0 1 + af_orkh_script_class@Base 0 1 + af_orkh_uniranges@Base 0 1 af_orya_dflt_style_class@Base 0 1 af_orya_nonbase_uniranges@Base 0 1 af_orya_script_class@Base 0 1 af_orya_uniranges@Base 0 1 + af_osge_dflt_style_class@Base 0 1 + af_osge_nonbase_uniranges@Base 0 1 + af_osge_script_class@Base 0 1 + af_osge_uniranges@Base 0 1 + af_osma_dflt_style_class@Base 0 1 + af_osma_nonbase_uniranges@Base 0 1 + af_osma_script_class@Base 0 1 + af_osma_uniranges@Base 0 1 + af_saur_dflt_style_class@Base 0 1 + af_saur_nonbase_uniranges@Base 0 1 + af_saur_script_class@Base 0 1 + af_saur_uniranges@Base 0 1 af_script_classes@Base 0 1 af_shaper_buf_create@Base 0 1 af_shaper_buf_destroy@Base 0 1 af_shaper_get_cluster@Base 0 1 af_shaper_get_coverage@Base 0 1 af_shaper_get_elem@Base 0 1 + af_shaw_dflt_style_class@Base 0 1 + af_shaw_nonbase_uniranges@Base 0 1 + af_shaw_script_class@Base 0 1 + af_shaw_uniranges@Base 0 1 af_sinh_dflt_style_class@Base 0 1 af_sinh_nonbase_uniranges@Base 0 1 af_sinh_script_class@Base 0 1 @@ -425,10 +512,18 @@ af_taml_nonbase_uniranges@Base 0 1 af_taml_script_class@Base 0 1 af_taml_uniranges@Base 0 1 + af_tavt_dflt_style_class@Base 0 1 + af_tavt_nonbase_uniranges@Base 0 1 + af_tavt_script_class@Base 0 1 + af_tavt_uniranges@Base 0 1 af_telu_dflt_style_class@Base 0 1 af_telu_nonbase_uniranges@Base 0 1 af_telu_script_class@Base 0 1 af_telu_uniranges@Base 0 1 + af_tfng_dflt_style_class@Base 0 1 + af_tfng_nonbase_uniranges@Base 0 1 + af_tfng_script_class@Base 0 1 + af_tfng_uniranges@Base 0 1 af_thai_dflt_style_class@Base 0 1 af_thai_nonbase_uniranges@Base 0 1 af_thai_script_class@Base 0 1 @@ -437,6 +532,10 @@ af_tibt_nonbase_uniranges@Base 0 1 af_tibt_script_class@Base 0 1 af_tibt_uniranges@Base 0 1 + af_vaii_dflt_style_class@Base 0 1 + af_vaii_nonbase_uniranges@Base 0 1 + af_vaii_script_class@Base 0 1 + af_vaii_uniranges@Base 0 1 af_writing_system_classes@Base 0 1 afm_parser_funcs@Base 0 1 autofit_module_class@Base 0 1 @@ -460,6 +559,7 @@ ft_hash_str_init@Base 0 1 ft_hash_str_insert@Base 0 1 ft_hash_str_lookup@Base 0 1 + ft_lcd_filter_fir@Base 0 1 ft_lzwstate_done@Base 0 1 ft_lzwstate_init@Base 0 1 ft_lzwstate_io@Base 0 1 Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/freetype-2.7.1.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/freetype-2.7.1.tar.bz2 sont différents Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/freetype-2.8.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/freetype-2.8.tar.bz2 sont différents Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/freetype-doc-2.7.1.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/freetype-doc-2.7.1.tar.bz2 sont différents Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/freetype-doc-2.8.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/freetype-doc-2.8.tar.bz2 sont différents Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/ft2demos-2.7.1.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/ft2demos-2.7.1.tar.bz2 sont différents Les fichiers binaires /tmp/rhyMwKxR0E/freetype-2.7.1/ft2demos-2.8.tar.bz2 et /tmp/7KO7dJsAQi/freetype-2.8/ft2demos-2.8.tar.bz2 sont différents
--- End Message ---
--- Begin Message ---Source: freetype Source-Version: 2.8.1-1 We believe that the bug you reported is fixed in the latest version of freetype, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 863...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Steve Langasek <vor...@debian.org> (supplier of updated freetype package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 05 Jan 2018 00:42:36 +0000 Source: freetype Binary: libfreetype6 libfreetype6-dev freetype2-demos libfreetype6-udeb Architecture: source amd64 Version: 2.8.1-1 Distribution: unstable Urgency: medium Maintainer: Steve Langasek <vor...@debian.org> Changed-By: Steve Langasek <vor...@debian.org> Description: freetype2-demos - FreeType 2 demonstration programs libfreetype6 - FreeType 2 font engine, shared library files libfreetype6-dev - FreeType 2 font engine, development files libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb) Closes: 642354 857439 863623 870618 871470 883698 885324 Changes: freetype (2.8.1-1) unstable; urgency=medium . * Acknowledge NMUs; thanks to Laurent for the uploads. Closes: #857439, #863623. * debian/control: - Add pkg-config to the Build-Depends list (Closes: #885324). - Mark libfreetype6-dev Multi-Arch: same (Closes: #642354). - Remove the deprecated Priority: extra field from libfreetype6-udeb. * debian/patches/patches-*: Refresh existing patches. * debian/patches/patches-freetype/freetype-config-multi-arch.patch: - Remove the arch-dependent output of `freetype-config --libs`. Closes: #871470, #870618. - Exit with an error if freetype-config is called with --libtool. * debian/rules: - Include /usr/share/dpkg/architecture.mk. - Dynamically generate the shlibs dependency version (Closes: #883698). - Replace the autoconf definition of SIZEOF_LONG with the compile-time constant __SIZEOF_LONG__ to make libfreetype6-dev multi-arch compatible. * Thanks to Hugh McMaster <hugh.mcmas...@outlook.com> for preparing these changes. Checksums-Sha1: b39558bb99446bac4ca0e628642387a3eba51d04 2169 freetype_2.8.1-1.dsc 16b71c399c01af13c12d3557ad48d0569e9b77d4 38084 freetype_2.8.1-1.diff.gz af7ecb933a2c655ca337bddf7748674262eea6ae 713812 freetype2-demos-dbgsym_2.8.1-1_amd64.deb 54991c352bdb0f845fe592eb92d61c39675808e8 122724 freetype2-demos_2.8.1-1_amd64.deb b77fa624e6e827b6da373934f9bad6bb79b64388 7237 freetype_2.8.1-1_amd64.buildinfo a6a7a5090a3042b03c2d679e4ab286e3b0f53714 986492 libfreetype6-dbgsym_2.8.1-1_amd64.deb 18c62b67ee3eb1f41f6509691cf8a920d7bedc53 2656312 libfreetype6-dev_2.8.1-1_amd64.deb 8c6031e93653e7262240c5226dd1bf9144d226e1 315584 libfreetype6-udeb_2.8.1-1_amd64.udeb 89293e6942e9c2966fc97fc922b760cc27770856 460896 libfreetype6_2.8.1-1_amd64.deb Checksums-Sha256: fce83b951da237e6cdd121c073453f12a3334f28dd2929c0ffd522f3b7c39c37 2169 freetype_2.8.1-1.dsc 29c8352fb95549f7c3c5994ccd032bb0346eca5c1abe29bb0890238a922f61f6 38084 freetype_2.8.1-1.diff.gz 98aa1057282ac9f797f1c98711c5d670de5daa69bed46d6813fc442c1363b55d 713812 freetype2-demos-dbgsym_2.8.1-1_amd64.deb 2cf17a4daf6166acf276231a943a57d5e37a0db2981d64b96a974c11ee497f86 122724 freetype2-demos_2.8.1-1_amd64.deb f27fb44f59348d88fb20d0ef35899297ed41fabfaa7aad1baf14345d4baadadc 7237 freetype_2.8.1-1_amd64.buildinfo 054ba0652e10ff2589a9b784aed4f64c79fe6e2c9ee868843a880bb6a9312676 986492 libfreetype6-dbgsym_2.8.1-1_amd64.deb 5cc57841545907de3b3ccedebe1c31c2d4bfff4fc3190cf727c1f707a99d5e38 2656312 libfreetype6-dev_2.8.1-1_amd64.deb 4c36db2783ea1af2ad563c3f45026a8d9b6388e5c1e28576cb31d639fc7e4d9c 315584 libfreetype6-udeb_2.8.1-1_amd64.udeb 0822b9494256c43c490b6e550e33b3eab11c7f1eb108067b2a48ec6e2bd463cd 460896 libfreetype6_2.8.1-1_amd64.deb Files: 74dbf3c500ea2a64e2ae59fa8bddb890 2169 libs optional freetype_2.8.1-1.dsc 8cf34e4b20356820f9ec5ea8d1b74151 38084 libs optional freetype_2.8.1-1.diff.gz a4a970d2705bda2089b4e64de3ff7e0a 713812 debug optional freetype2-demos-dbgsym_2.8.1-1_amd64.deb 0c0b2f8274740e7487d7e24397bfe5fc 122724 utils optional freetype2-demos_2.8.1-1_amd64.deb 84afc999353de57c18e663866f0484fd 7237 libs optional freetype_2.8.1-1_amd64.buildinfo c6f3b24a30a7dda326c460fb980a4f85 986492 debug optional libfreetype6-dbgsym_2.8.1-1_amd64.deb 68fd8e75a41f517c0eed7a8e0a746237 2656312 libdevel optional libfreetype6-dev_2.8.1-1_amd64.deb 3f5e7eb4ee046bfe565a65e015f7c495 315584 debian-installer optional libfreetype6-udeb_2.8.1-1_amd64.udeb 03d5069b7cd9c30b62750edfc674f85b 460896 libs optional libfreetype6_2.8.1-1_amd64.deb Package-Type: udeb -----BEGIN PGP SIGNATURE----- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAlpOzVYSHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9nGUP/A3zqqf6etsFGyv+MU4kZr2U0fd+xn4v 9T/A2ynB7Z0ehg7LSmmogZIFGEQTlksjA73Mu2PLrzM8uV6mQ+9pogv8undVpWlK 6JYxKo3hbfbWLTOq5JBxpz2NjTfXgZTTSMbwdfAPXdavRMtDyCTPdCyEfb9duVN3 y7sFURDYC3inlrH1YWKsuxAkW6yBtkZR0y3pP6kpexSwZg/XpVhOOfSzdOWWVSBn IkDlPe2fKswI7NLn8GikXmVuBKJaE9bcGJaJ896siqj3YtJ+mzv8bR48sNBYJXMu ipq9P2hUVcjGldZcAs/+ltxD4ZkbGPIoGK8hwKZvSZVndWzKepnogOdQ90yy6K1f E4ku2EeM0QjN6Jy1E2+TcEg1BwHZrCxJOiAUVbQo07mvV8u9P7a3Sqoo2ZKKmMOi Wtc9xL56n7L/v8Z2PSk6SZRayORkM+Pw9VuLFM+3FM45xYsACWRr2yww0IBLRER3 1BIAskQ2LcyxwolTCigydn2GCXkXs7Bi0NbyODglMSWWpELM4RBltpImx3mGQ54f yCKX2r9D/GrgCQyvF1QAHErA/rKi2nW5vtXCJnFW7oUwmv3w8BnJZdX63DcJg2Km OUINlsEYQCKK2XH5q5Tvwdv2O24s2YD2JDVKDRrXJviZEtUkVcZ+cZY/c2X8BUu5 OEfxkI3zxWNj =CRju -----END PGP SIGNATURE-----
--- End Message ---
