|
Description
|
libXfont should be updated from 1.2.7 to 1.2.8, which provides these fixes:
Alan Coopersmith:
Actually use loadable font modules
Add #pragma weak for Sun cc where needed
Version bump: 1.2.8
Ben Byer:
added -flat_namespace to CFLAGS for Darwin
Matthieu Herrb:
Integer overflow vulnerabilities
Two of these are already in our tree as patches which can be removed when we use 1.2.8:
- loadable font modules: loadablefonts.patch - Sun bug 6534189
- integer overflows: security.patch - Sun bugs 6538282/6538286
The pragma weak change fixes a problem reported on the OpenSolaris xwin-discuss list:
http://www.opensolaris.org/jive/thread.jspa?threadID=27494&tstart=0
*** Test Case ***
Verify fixes for 6534189 & 6538282 are still present, using test cases in
those bug reports.
For the additional fix "Add #pragma weak for Sun cc where needed", run
"nm /usr/X11/lib/X11/xserver/libXfont.so | grep WEAK"
Lines should be printed listing at least all of these entries (more may be present
as well, this is just the set added by this fix):
ClientSignal
CopyISOLatin1Lowered
DeleteFontClientID
ErrorF
FatalError
FontModuleList
GetClientResolutions
GetDefaultPointSize
GetNewFontClientID
GetTimeInMillis
MakeAtom
NameForAtom
RegisterFPEFunctions
StoreFontClientFont
ValidAtom
Xalloc
Xcalloc
Xfree
XpClientIsBitmapClient
XpClientIsPrintClient
Xrealloc
client_auth_generation
find_old_font
init_fs_handlers
register_fpe_functions
remove_fs_handlers
serverClient
serverGeneration
set_font_authorizations
|