Opened 17 months ago
Closed 16 months ago
#31555 closed defect (fixed)
Update freetype to 2.10.4 - fixes a vulnerability
Reported by: | mkoeppe | Owned by: | |
---|---|---|---|
Priority: | blocker | Milestone: | sage-9.3 |
Component: | packages: standard | Keywords: | |
Cc: | dimpase, fbissey, vbraun | Merged in: | |
Authors: | Matthias Koeppe | Reviewers: | Dima Pasechnik |
Report Upstream: | N/A | Work issues: | |
Branch: | bcf0286 (Commits, GitHub, GitLab) | Commit: | bcf028656a82388124dbed0406b5046afd6a015b |
Dependencies: | Stopgaps: |
Description (last modified by )
Change History (9)
comment:1 Changed 17 months ago by
- Branch set to u/mkoeppe/update_freetype_to_2_10_4___fixes_a_vulnerability
comment:2 Changed 17 months ago by
- Cc fbissey added
- Commit set to bcf028656a82388124dbed0406b5046afd6a015b
- Description modified (diff)
- Status changed from new to needs_review
comment:3 Changed 17 months ago by
- Cc vbraun added
comment:4 Changed 16 months ago by
should we ban buggy old freetype, or at least bump up to something non-ancient (see #30014 for version numbers); 16.1 corresponds to an 8 years old version 2.4.12.
comment:5 Changed 16 months ago by
I don't think we should attempt to give security advisories with our configure script...
comment:6 Changed 16 months ago by
- Reviewers set to Dima Pasechnik
- Status changed from needs_review to positive_review
ok
comment:7 Changed 16 months ago by
Thanks!
comment:8 Changed 16 months ago by
- Priority changed from critical to blocker
comment:9 Changed 16 months ago by
- Branch changed from u/mkoeppe/update_freetype_to_2_10_4___fixes_a_vulnerability to bcf028656a82388124dbed0406b5046afd6a015b
- Resolution set to fixed
- Status changed from positive_review to closed
Note: See
TracTickets for help on using
tickets.
New commits:
build/pkgs/freetype: Update to 2.10.4