#31555 closed defect (fixed)

Update freetype to 2.10.4 - fixes a vulnerability

Reported by: mkoeppe Owned by:
Priority: blocker Milestone: sage-9.3
Component: packages: standard Keywords:
Cc: dimpase, fbissey, vbraun Merged in:
Authors: Matthias Koeppe Reviewers: Dima Pasechnik
Report Upstream: N/A Work issues:
Branch: bcf0286 (Commits, GitHub, GitLab) Commit: bcf028656a82388124dbed0406b5046afd6a015b
Dependencies: Stopgaps:

Status badges

Change History (9)

comment:1 Changed 17 months ago by mkoeppe

  • Branch set to u/mkoeppe/update_freetype_to_2_10_4___fixes_a_vulnerability

comment:2 Changed 17 months ago by mkoeppe

  • Authors set to Matthias Koeppe
  • Cc fbissey added
  • Commit set to bcf028656a82388124dbed0406b5046afd6a015b
  • Description modified (diff)
  • Status changed from new to needs_review

New commits:

bcf0286build/pkgs/freetype: Update to 2.10.4

comment:3 Changed 17 months ago by mkoeppe

  • Cc vbraun added

comment:4 Changed 16 months ago by dimpase

should we ban buggy old freetype, or at least bump up to something non-ancient (see #30014 for version numbers); 16.1 corresponds to an 8 years old version 2.4.12.

comment:5 Changed 16 months ago by mkoeppe

I don't think we should attempt to give security advisories with our configure script...

comment:6 Changed 16 months ago by dimpase

  • Reviewers set to Dima Pasechnik
  • Status changed from needs_review to positive_review

ok

comment:7 Changed 16 months ago by mkoeppe

Thanks!

comment:8 Changed 16 months ago by mkoeppe

  • Priority changed from critical to blocker

comment:9 Changed 16 months ago by vbraun

  • Branch changed from u/mkoeppe/update_freetype_to_2_10_4___fixes_a_vulnerability to bcf028656a82388124dbed0406b5046afd6a015b
  • Resolution set to fixed
  • Status changed from positive_review to closed
Note: See TracTickets for help on using tickets.