notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
All times are UTC
Ukraine
We just patched an SQL injection. There is no evidence it was exploited. That doesn’t mean it wasn’t. Please change your password. You might want to hold off on that change. We have a few more to fix.
non port: print/freetype2/files/patch-src-lzw_ftzopen.c
SVNWeb

Number of commits found: 2

Sat, 28 Nov 2009
[ 20:06 marcus search for other commits by this committer ] Original commit  (Only the first 10 of 823 ports in this commit are shown above. View all ports for this commit)
Presenting GNOME 2.28.1 for FreeBSD.  The official release notes for this
release can be found at http://library.gnome.org/misc/release-notes/2.28/ .
Officially, this is mostly a polishing release in preparation for GNOME 3.0
due in about a year.

On the FreeBSD front, though, a lot went into this release.  Major thanks
goes to kwm and avl who did a lot of the porting work for this release.
In particular, kwm brought in Evolution MAPI support for better Microsoft
Exchange integration.  Avl made sure that the new gobject introspection
repository ports were nicely compartmentalized so that large dependencies
aren't brought in wholesale.

But, every GNOME team member (ahze, avl, bland, kwm, mezz, and myself)
contributed to this release.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 18 Apr 2009
[ 09:55 miwi search for other commits by this committer ] Original commit 
- Fix security problems

Note:
An integer overflow error within the "cff_charset_compute_cids()"
function in cff/cffload.c can be exploited to potentially cause
a heap-based buffer overflow via a specially crafted font.

Multiple integer overflow errors within validation functions in
sfnt/ttcmap.c can be exploited to bypass length validations and
potentially cause buffer overflows via specially crafted fonts.

An integer overflow error within the "ft_smooth_render_generic()"
function in smooth/ftsmooth.c can be exploited to potentially cause
a heap-based buffer overflow via a specially crafted font.

Approved by:    portmgr (pav)
Obtained from:  freetype git repo
Security:      
http://www.vuxml.org/freebsd/20b4f284-2bfc-11de-bdeb-0030843d3802.html

Number of commits found: 2