Opened 3 years ago

Closed 22 months ago

#54141 closed update (fixed)

graphite2 @1.3.9: update to 1.3.12

Reported by: l2dy (Zero King) Owned by: ryandesign (Ryan Schmidt)
Priority: Normal Milestone:
Component: ports Version:
Keywords: security haspatch Cc: Schamschula (Marius Schamschula)
Port: graphite2

Description


Change History (8)

comment:1 Changed 3 years ago by ryandesign (Ryan Schmidt)

Status: newaccepted

I've been verifying which of our many patches and workaround are still needed, and trying to determine what new patches might be needed for this version.

comment:2 Changed 3 years ago by l2dy (Zero King)

Keywords: security added

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10.

See https://www.mozilla.org/en-US/security/advisories/mfsa2017-15/#CVE-2017-7778.

comment:3 Changed 3 years ago by ryandesign (Ryan Schmidt)

Has duplicate #54513.

comment:4 Changed 2 years ago by l2dy (Zero King)

Summary: graphite2 @1.3.9: update to 1.3.10graphite2 @1.3.9: update to 1.3.11

comment:5 Changed 2 years ago by Schamschula (Marius Schamschula)

Cc: Schamschula added

comment:6 Changed 2 years ago by Schamschula (Marius Schamschula)

It looks like the homepage has moved to http://scripts.sil.org/cms/scripts/page.php?site_id=projects&item_id=graphite_home (ugly) and the source is now on GitHub: https://github.com/silnrsi/graphite

comment:7 Changed 22 months ago by ryandesign (Ryan Schmidt)

Keywords: haspatch added
Summary: graphite2 @1.3.9: update to 1.3.11graphite2 @1.3.9: update to 1.3.12

Nearly ready to merge this PR.

comment:8 Changed 22 months ago by dgilman (David Gilman)

Resolution: fixed
Status: acceptedclosed

In 88eb4637a61a79a8bfc27d2d019179aa67d50293/macports-ports (master):

graphite2: Update to 1.3.12

  • Use github 1.0 portgroup
  • Use cxx11 1.1 portgroup; 1.3.12 and later require C++11
  • Update to cmake 1.1 portgroup
  • Remove patch-src-Face.cpp.diff as it builds without this
  • Re-enable the featuremap test as it works now
  • Add fonttools and python36 test dependencies
  • Remove test.env as tests pass without it
  • Remove cppflags-replace no longer needed after cmake portgroup fix
  • Remove removal of -fno-stack-protector on Darwin 8 as upstream no longer uses this flag
  • Remove disabling segment caching code on PowerPC as upstream has removed the segment caching code as of 1.3.12
  • Remove muniversal 1.0 portgroup no longer needed due to above

See: #42872

Closes: #54141

Note: See TracTickets for help on using tickets.