No idea about impact, but an OSS-Fuzz issue was patched at URL.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=850477db8a7183577b86abaa1a611b502be5259e commit 850477db8a7183577b86abaa1a611b502be5259e Author: Sam James <sam@gentoo.org> AuthorDate: 2023-02-12 05:34:50 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2023-02-12 05:59:03 +0000 media-libs/freetype: add 2.13.0 Bug: https://bugs.gentoo.org/881443 Signed-off-by: Sam James <sam@gentoo.org> media-libs/freetype/Manifest | 3 + media-libs/freetype/freetype-2.13.0.ebuild | 260 +++++++++++++++++++++++++++++ media-libs/freetype/freetype-9999.ebuild | 4 +- 3 files changed, 265 insertions(+), 2 deletions(-)
Ping. Do we still need to keep freetype 2.12.1-r1 around?
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=2f6d7004e06dfb3d395547c81289abf44cb1b2ac commit 2f6d7004e06dfb3d395547c81289abf44cb1b2ac Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-02-03 08:57:49 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-02-03 08:58:15 +0000 [ GLSA 202402-06 ] FreeType: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/840224 Bug: https://bugs.gentoo.org/881443 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202402-06.xml | 46 ++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+)
