https://bugzilla.redhat.com/show_bug.cgi?id=1271792
Bug ID: 1271792
Summary: repo-font-audit invalid option errors
Product: Fedora
Version: 23
Component: fontpackages
Assignee: nicolas.mailhot(a)laposte.net
Reporter: kvolny(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org,
nicolas.mailhot(a)laposte.net, paul(a)frixxon.co.uk,
tagoh(a)redhat.com
Description of problem:
Following https://fedoraproject.org/wiki/Font_package_lifecycle#2.a the step
with repo-font-audit doesn't work for me as the tool reports many "invalid
option" errors for coreutils programs it obviously tries to use.
Version-Release number of selected component (if applicable):
fontpackages-tools-1.44-14.fc23.noarch
How reproducible:
always
Steps to Reproduce:
0. # dnf install fontpackages-tools createrepo rpm-build
... whatever needed
1. cd ~/rpmbuild/SRPMS
2. wget https://kvolny.fedorapeople.org/comic-neue-fonts-2.2-1.fc23.src.rpm
3. rpmbuild --rebuild comic-neue-fonts-2.2-1.fc23.src.rpm
4. cd ../RPMS/noarch
5. mkdir /tmp/testrepo
6. mv comic*rpm /tmp/testrepo
7. createrepo /tmp/testrepo
8. repo-font-audit testrepo file:///tmp/testrepo
Actual results:
Looking for packages:
— with font metadata…
Error: 'Package' object has no attribute 'packagesize'
— that include files with common font extensions…
— that use the core X11 protocol…
Inspecting packages:
– -. ◔mkdir: invalid option -- '.'
Try 'mkdir --help' for more information.
/bin/repo-font-audit: line 388: cd: -.: invalid option
cd: usage: cd [-L|[-P [-e]] [-@]] [dir]
curl: (3) [globbing] bad range specification in column 90
◑rpm2cpio: *.rpm: No such file or directory
◕cat: invalid option -- '.'
Try 'cat --help' for more information.
cpio: premature end of archive
cat: invalid option -- '.'
Try 'cat --help' for more information.
touch: invalid option -- '.'
Try 'touch --help' for more information.
cat: invalid option -- '.'
Try 'cat --help' for more information.
cpio: premature end of archive
rm: invalid option -- '.'
Try 'rm ./-..cpio' to remove the file '-..cpio'.
Try 'rm --help' for more information.
● sed: invalid option -- '.'
Usage: sed [OPTION]... {script-only-if-no-other-script} [input-file]...
-n, --quiet, --silent
suppress automatic printing of pattern space
-e script, --expression=script
add the script to the commands to be executed
-f script-file, --file=script-file
add the contents of script-file to the commands to be executed
--follow-symlinks
follow symlinks when processing in place
-i[SUFFIX], --in-place[=SUFFIX]
edit files in place (makes backup if SUFFIX supplied)
-c, --copy
use copy instead of rename when shuffling files in -i mode
-b, --binary
does nothing; for compatibility with WIN32/CYGWIN/MSDOS/EMX (
open files in binary mode (CR+LFs are not treated specially))
-l N, --line-length=N
specify the desired line-wrap length for the `l' command
--posix
disable all GNU extensions.
-r, --regexp-extended
use extended regular expressions in the script.
-s, --separate
consider files as separate rather than as a single continuous
long stream.
-u, --unbuffered
load minimal amounts of data from the input files and flush
the output buffers more often
-z, --null-data
separate lines by NUL characters
--help
display this help and exit
--version
output version information and exit
If no -e, --expression, -f, or --file option is given, then the first
non-option argument is taken as the sed script to interpret. All
remaining arguments are names of input files; if no input files are
specified, then the standard input is read.
GNU sed home page: <http://www.gnu.org/software/sed/>.
General help using GNU software: <http://www.gnu.org/gethelp/>.
sed: invalid option -- '.'
Usage: sed [OPTION]... {script-only-if-no-other-script} [input-file]...
-n, --quiet, --silent
suppress automatic printing of pattern space
-e script, --expression=script
add the script to the commands to be executed
-f script-file, --file=script-file
add the contents of script-file to the commands to be executed
--follow-symlinks
follow symlinks when processing in place
-i[SUFFIX], --in-place[=SUFFIX]
edit files in place (makes backup if SUFFIX supplied)
-c, --copy
use copy instead of rename when shuffling files in -i mode
-b, --binary
does nothing; for compatibility with WIN32/CYGWIN/MSDOS/EMX (
open files in binary mode (CR+LFs are not treated specially))
-l N, --line-length=N
specify the desired line-wrap length for the `l' command
--posix
disable all GNU extensions.
-r, --regexp-extended
use extended regular expressions in the script.
-s, --separate
consider files as separate rather than as a single continuous
long stream.
-u, --unbuffered
load minimal amounts of data from the input files and flush
the output buffers more often
-z, --null-data
separate lines by NUL characters
--help
display this help and exit
--version
output version information and exit
If no -e, --expression, -f, or --file option is given, then the first
non-option argument is taken as the sed script to interpret. All
remaining arguments are names of input files; if no input files are
specified, then the standard input is read.
GNU sed home page: <http://www.gnu.org/software/sed/>.
General help using GNU software: <http://www.gnu.org/gethelp/>.
– -. ◔mkdir: invalid option -- '.'
Try 'mkdir --help' for more information.
/bin/repo-font-audit: line 388: cd: -.: invalid option
cd: usage: cd [-L|[-P [-e]] [-@]] [dir]
curl: (3) [globbing] bad range specification in column 90
◑rpm2cpio: *.rpm: No such file or directory
◕cat: invalid option -- '.'
Try 'cat --help' for more information.
cpio: premature end of archive
cat: invalid option -- '.'
Try 'cat --help' for more information.
touch: invalid option -- '.'
Try 'touch --help' for more information.
cat: invalid option -- '.'
Try 'cat --help' for more information.
cpio: premature end of archive
rm: invalid option -- '.'
Try 'rm ./-..cpio' to remove the file '-..cpio'.
Try 'rm --help' for more information.
● sed: invalid option -- '.'
Usage: sed [OPTION]... {script-only-if-no-other-script} [input-file]...
-n, --quiet, --silent
suppress automatic printing of pattern space
-e script, --expression=script
add the script to the commands to be executed
-f script-file, --file=script-file
add the contents of script-file to the commands to be executed
--follow-symlinks
follow symlinks when processing in place
-i[SUFFIX], --in-place[=SUFFIX]
edit files in place (makes backup if SUFFIX supplied)
-c, --copy
use copy instead of rename when shuffling files in -i mode
-b, --binary
does nothing; for compatibility with WIN32/CYGWIN/MSDOS/EMX (
open files in binary mode (CR+LFs are not treated specially))
-l N, --line-length=N
specify the desired line-wrap length for the `l' command
--posix
disable all GNU extensions.
-r, --regexp-extended
use extended regular expressions in the script.
-s, --separate
consider files as separate rather than as a single continuous
long stream.
-u, --unbuffered
load minimal amounts of data from the input files and flush
the output buffers more often
-z, --null-data
separate lines by NUL characters
--help
display this help and exit
--version
output version information and exit
If no -e, --expression, -f, or --file option is given, then the first
non-option argument is taken as the sed script to interpret. All
remaining arguments are names of input files; if no input files are
specified, then the standard input is read.
GNU sed home page: <http://www.gnu.org/software/sed/>.
General help using GNU software: <http://www.gnu.org/gethelp/>.
sed: invalid option -- '.'
Usage: sed [OPTION]... {script-only-if-no-other-script} [input-file]...
-n, --quiet, --silent
suppress automatic printing of pattern space
-e script, --expression=script
add the script to the commands to be executed
-f script-file, --file=script-file
add the contents of script-file to the commands to be executed
--follow-symlinks
follow symlinks when processing in place
-i[SUFFIX], --in-place[=SUFFIX]
edit files in place (makes backup if SUFFIX supplied)
-c, --copy
use copy instead of rename when shuffling files in -i mode
-b, --binary
does nothing; for compatibility with WIN32/CYGWIN/MSDOS/EMX (
open files in binary mode (CR+LFs are not treated specially))
-l N, --line-length=N
specify the desired line-wrap length for the `l' command
--posix
disable all GNU extensions.
-r, --regexp-extended
use extended regular expressions in the script.
-s, --separate
consider files as separate rather than as a single continuous
long stream.
-u, --unbuffered
load minimal amounts of data from the input files and flush
the output buffers more often
-z, --null-data
separate lines by NUL characters
--help
display this help and exit
--version
output version information and exit
If no -e, --expression, -f, or --file option is given, then the first
non-option argument is taken as the sed script to interpret. All
remaining arguments are names of input files; if no input files are
specified, then the standard input is read.
GNU sed home page: <http://www.gnu.org/software/sed/>.
General help using GNU software: <http://www.gnu.org/gethelp/>.
Analysing files…
♻
Consolidating data…
Conducting tests:
— Error: fonts deployed outside /usr/share/fonts
⇒ None!
— Error: fonts in packages that do not declare font metadata
⇒ None!
— Error: packages that mix different font families
⇒ None!
— Error: exact font duplication
⇒ None!
— Error: font faces duplicated by different packages
⇒ None!
— Error: fonts fc-query can not parse
⇒ None!
— Error: fonts not identified as such by libmagic
⇒ None!
— Error: broken symlinks to font files
⇒ None!
— Error: rpmlint
⇒ None!
— Error: fonts in packages that contain non-font data
⇒ None!
— Error: fonts in arch packages
⇒ None!
— Warning: fonts in packages that do not respect font naming conventions
⇒ None!
— Warning: bad font naming
⇒ None!
— Warning: core fonts use
⇒ None!
— Warning: font linking
⇒ None!
— Warning: font faces duplicated within a package
⇒ None!
— Warning: fonts that do not pass fontlint sanity checks
⇒ None!
— Warning: fonts with localized metadata but no English variant
⇒ None!
— Suggestion: fonts with partial script coverage
⇒ None!
— Suggestion: fonts with partial unicode block coverage
⇒ None!
Audit results:
– packages that declare font metadata:
⇒ None!
☛ File size is computed as extracted, while rpm is a compressed format.
☛ Mid-term, files in legacy PCF or Type1 formats need to be converted or
removed.
– font files in other packages (we should not find any!)
⇒ None!
– errors, warnings and suggestions:
⇒ None!
Packing mail data…
Packing result data…
Audit complete!
Run time: 9 s.
Number of items processed:
⇒ None!
1. Extracted data:
/home/kvolny/rpmbuild/RPMS/noarch/repo-font-audit-testrepo-20151014T175728Z.tar.xz
2. Short summary:
/home/kvolny/rpmbuild/RPMS/noarch/repo-font-audit-testrepo-20151014T175728Z-short.tar.xz
3. Mail data:
/home/kvolny/rpmbuild/RPMS/noarch/repo-font-audit-testrepo-20151014T175728Z-mail.tar.xz
This report was generated by the repo-font-audit command from:
http://fedoraproject.org/wiki/fontpackages
Please post questions, suggestions, patches or bug reports to:
https://admin.fedoraproject.org/mailman/listinfo/fonts
(subscription required)
♻
Expected results:
(no such errors)
Additional info:
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=5nIiUgzabR&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1376999
Bug ID: 1376999
Summary: comic-neue-fonts-2.3 is available
Product: Fedora
Version: rawhide
Component: comic-neue-fonts
Keywords: FutureFeature, Triaged
Assignee: kvolny(a)redhat.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org, kvolny(a)redhat.com
Latest upstream release: 2.3
Current version/release in rawhide: 2.2-3.fc24
URL: http://comicneue.com/
Please consult the package updates policy before you issue an update to a
stable branch: https://fedoraproject.org/wiki/Updates_Policy
More information about the service that created this bug can be found at:
https://fedoraproject.org/wiki/Upstream_release_monitoring
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from anitya:
https://release-monitoring.org/project/8250/
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1543407
Bug ID: 1543407
Summary: fontawesome-fonts-5.0.6 is available
Product: Fedora
Version: rawhide
Component: fontawesome-fonts
Keywords: FutureFeature, Triaged
Assignee: pvoborni(a)redhat.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org, mrunge(a)redhat.com,
pvoborni(a)redhat.com
Latest upstream release: 5.0.6
Current version/release in rawhide: 4.7.0-3.fc27
URL: http://fontawesome.io
Please consult the package updates policy before you issue an update to a
stable branch: https://fedoraproject.org/wiki/Updates_Policy
More information about the service that created this bug can be found at:
https://fedoraproject.org/wiki/Upstream_release_monitoring
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from anitya:
https://release-monitoring.org/project/826/
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=825115
Bug ID: 825115
QA Contact: extras-qa(a)fedoraproject.org
Severity: unspecified
Version: 16
Priority: unspecified
CC: fonts-bugs(a)lists.fedoraproject.org,
i18n-bugs(a)lists.fedoraproject.org, psatpute(a)redhat.com
Assignee: psatpute(a)redhat.com
Summary: [kn_IN] Lohit Kannada glyphs of consonants with vowel
signs -II, -EE, -OO and -AI should be optimized
Regression: ---
Story Points: ---
Classification: Fedora
OS: Unspecified
Reporter: samjnaa(a)gmail.com
Type: Bug
Documentation: ---
Hardware: Unspecified
Mount Type: ---
Status: NEW
Component: lohit-kannada-fonts
Product: Fedora
Description of problem:
Currently the Lohit Kannada fonts unnecessarily contain separate glyphs for
consonants with vowel signs -II, -EE, -OO and -AI. These are merely sequences
of other glyphs.
In the case of -II, -EE, -OO the glyphs are the same as those of the
corresponding short vowels plus a separate glyph 0CD5 Kannada Length Mark ೕ
(unlike in Telugu where the length mark ligates with the syllable). Therefore
instead of doing substitutions of:
CONSONANT + VOWEL_SIGN_II/EE/OO --> CONSONANT_VOWELSIGN_II/EE/OO
the optimized way would be to do:
CONSONANT + VOWEL_SIGN_II/EE/OO --> CONSONANT_VOWELSIGN_I/E/O LENGTH_MARK
If this is done, any changes that are reflected on the
CONSONANT_VOWELSIGN_I/E/O glyphs would automatically reflect for the long
vowels as well without additional work being needed. For instance, see my
recent report of bug 825104. If that bug is fixed for short vowels I, E and O,
automatically it would reflect for II, EE and OO also.
As for -AI, it is merely sequence of glyph for -E plus 0CD6 Kannada AI Length
Mark ೖ. So instead of doing substitutions of:
CONSONANT + VOWEL_SIGN_AI --> CONSONANT_VOWELSIGN_AI
the optimized way would be to do:
CONSONANT + VOWEL_SIGN_AI --> CONSONANT_VOWELSIGN_E AI_LENGTH_MARK
with same benefits as above.
Further, when handling combinations of:
CONSONANT1 + VIRAMA + CONSONANT2 + VOWEL_SIGN_II/EE/OO/AU
by separating the length mark as recommended here, the sub-base form of
CONSONANT2 can be placed closer to the base CONSONANT1 which is also
typographically a desirable factor in a good font. The rules would be:
CONSONANT1 + VIRAMA + CONSONANT2 + VOWEL_SIGN_II/EE/OO/AU -->
CONSONANT1_VOWEL_SIGN_I/E/O + SUB_BASE_CONSONANT_2 + (AI_)LENGTH_MARK
Version-Release number of selected component (if applicable):
2.5.1
How reproducible:
Examine the internals of Lohit Kannada font.
Actual results:
Currently there are separate glyphs for consonants with vowel signs -II, -EE,
-OO and -AI unnecessarily. These are merely sequences of other glyphs.
Therefore any change effected on the component glyphs has to be re-done here.
Expected results:
The superfluous glyphs should be removed and the appropriate effect should be
achieved by appropriate smartfont rules as indicated above.
Additional info:
This would also reduce the size of the font. Not an issue on laptops/desktops
but nowadays Lohit fonts are finding their way into smaller screens such as
smartphones, and it would be good to have a trim font with small footprint.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1542331
Bug ID: 1542331
Summary: Please update for for new version
Product: Fedora
Version: rawhide
Component: paktype-naskh-basic-fonts
Assignee: psatpute(a)redhat.com
Reporter: psatpute(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org, nav007(a)gmail.com,
psatpute(a)redhat.com
Description of problem:
New release PakType-Release-2017-06-25.zip
https://sourceforge.net/projects/paktype/files/PakType-Release-2017-06-25.z…
Version-Release number of selected component (if applicable):
paktype-naskh-basic-fonts-4.1-8.fc27.noarch
How reproducible:
everytime
Steps to Reproduce:
1. Check version in Fedora
2. Check in upstream
https://sourceforge.net/projects/paktype/files/PakType-Release-2017-06-25.z…
3.
Actual results:
downstream is not updated.
Expected results:
Should be updated to latest version
Additional info:
Please do this for other paktype-* as well.
--
You are receiving this mail because:
You are on the CC list for the bug.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
Summary: [hi_IN][Dependent Vowels]Press backspace key it delete the whole char and letter before it
https://bugzilla.redhat.com/show_bug.cgi?id=500110
Summary: [hi_IN][Dependent Vowels]Press backspace key it delete
the whole char and letter before it
Product: Fedora
Version: 10
Platform: i386
OS/Version: Linux
Status: NEW
Severity: medium
Priority: low
Component: pango
AssignedTo: besfahbo(a)redhat.com
ReportedBy: kxiong(a)redhat.com
QAContact: extras-qa(a)fedoraproject.org
CC: besfahbo(a)redhat.com, fedora-fonts-bugs-list(a)redhat.com
Classification: Fedora
Target Release: ---
Description of problem:
In gedit press Backspace key to delete the whole char,it delete both the whole
char and the letter before it
Version-Release number of selected component (if applicable):
pango-devel-1.22.1-1.fc10.i386
pango-1.22.1-1.fc10.i386
pangomm-2.14.0-2.fc10.i386
How reproducible:
always
Steps to Reproduce:
1.In gedit input dabenा
2.Press Backspace key to delete the whole char ा
Actual results:
It delete the whole char and the letter n when pressing the Backspace key.
Expected results:
It should only delete the whole char.
Additional info:
1. U+093E ा
2. U+093F ि
3. U+0940 ी
4. U+0941 ु
5. U+0942 ू
6. U+0943 ृ
7. U+0944 ॄ
8. U+0945 ॅ
9. U+0946 ॆ
10. U+0947 े
11. U+0948 ै
12. U+0949 ॉ
13. U+094B ो
14. U+094C ौ
in Dependent Vowels all have the same problem
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
Summary: Please rebuild using external Adobe CMap and AGLFN data
https://bugzilla.redhat.com/show_bug.cgi?id=525881
Summary: Please rebuild using external Adobe CMap and AGLFN
data
Product: Fedora
Version: rawhide
Platform: All
OS/Version: Linux
Status: NEW
Severity: medium
Priority: low
Component: freetype
AssignedTo: besfahbo(a)redhat.com
ReportedBy: nicolas.mailhot(a)laposte.net
QAContact: extras-qa(a)fedoraproject.org
CC: besfahbo(a)redhat.com, kevin(a)tigcc.ticalc.org,
fedora-fonts-bugs-list(a)redhat.com
Blocks: 182235,473302
Classification: Fedora
Description of problem:
The Debian fonttool packager noticed a problem in fonttool's embedded Adobe
CMap and AGLFN data and got Adobe to release them under a good license
This data is embeded in many packages, including yours
Please rebuild your package using an external shared Adobe CMap and AGLFN data
package
FE-LEGAL since this was all triggered by a legal check Debian-side
See also
http://bonedaddy.net/pabs3/log/2009/09/24/adobe-data-freed/http://lwn.net/Articles/354360/http://opensource.adobe.com/wiki/display/cmap/CMap+Resources
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1332250
Bug ID: 1332250
Summary: Incorrect font configuration
Product: Fedora
Version: rawhide
Component: open-sans-fonts
Assignee: pvoborni(a)redhat.com
Reporter: dag.odenhall(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org,
pvoborni(a)redhat.com
When a website requests Open Sans, Firefox uses Comfortaa. I have both fonts
installed. I don't know if the following is the cause, because the matching
works correctly with fc-match, but I discovered this and it's still wrong, I
think.
The open-sans-fonts package includes this fontconfig rule:
<alias>
<family>Open Sans</family>
<prefer>
<family>sans-serif</family>
</prefer>
</alias>
In my understanding of fontconfig, this is saying "Edit the font family list
for Open Sans and prepend the sans-serif font family" i.e. Open Sans itself is
given *less* priority than all other sans-serif fonts. The
aajohan-comfortaa-fonts package includes this (correct) rule:
<alias>
<family>sans-serif</family>
<prefer>
<family>Comfortaa</family>
</prefer>
</alias>
And so perhaps C being early in the alphabet or perhaps because being the next
fontconfig file in my conf.d (I don't fully understand fontconfig) the combined
effect ends up being "When looking for Open Sans, the first match is sans-serif
which in turn is Comfortaa".
I think the Open Sans rule above should be edited to something closer to the
Comfortaa rule above, like:
<alias>
<family>sans-serif</family>
<prefer>
<family>Open Sans</family>
</prefer>
</alias>
The second rule it contains is also wrong, I think, and not like how any other
fonts are configured:
<alias>
<family>sans-serif</family>
<default>
<family>Open Sans</family>
</default>
</alias>
Should probably also swap the families like so:
<alias>
<family>Open Sans</family>
<default>
<family>sans-serif</family>
</default>
</alias>
This Firefox bug seems relevant but I think this is a bug in the packaged font
configuration and really unrelated to Firefox (I didn't read the whole bug):
https://bugzilla.mozilla.org/show_bug.cgi?id=1245811
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1321551
Bug ID: 1321551
Summary: RFE: Recommend some specific general purpose font
Product: Fedora
Version: rawhide
Component: fontconfig
Assignee: tagoh(a)redhat.com
Reporter: ville.skytta(a)iki.fi
QA Contact: extras-qa(a)fedoraproject.org
CC: fonts-bugs(a)lists.fedoraproject.org,
i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com,
tagoh(a)redhat.com
Currently fontconfig has a dependency on font(:lang=en). For minimal setups
where fontconfig is involved in that don't specify anything more specific than
that, it results in getting the first satisfying package by alphabetical sort
order to be installed. At the moment that is aajohan-comfortaa-fonts, which is
not a very good default, and could change based on what names of packages are
available.
Instead, I suggest adding (in addition to the existing hard dependency on
font(:lang=en)) a Recommends that would by default (with dnf) pull in something
that is a better default and already a default in common Fedora installations,
such as abattis-cantarell-fonts which AFAIK is the default for GNOME. Some
other potential candidates would be liberation-sans-fonts and
dejavu-sans-fonts. Not sure if Suggests would work for this purpose, or if it
needs to be Recommends.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1444911
Bug ID: 1444911
Summary: CVE-2017-7864 freetype: heap-based buffer overflow
related to the tt_size_reset function
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: amaris(a)redhat.com
CC: behdad(a)fedoraproject.org, bmcclain(a)redhat.com,
cfergeau(a)redhat.com, dblechte(a)redhat.com,
eedri(a)redhat.com, erik-fedora(a)vanpienbroek.nl,
fedora-mingw(a)lists.fedoraproject.org,
fonts-bugs(a)lists.fedoraproject.org, gklein(a)redhat.com,
kevin(a)tigcc.ticalc.org, lsurette(a)redhat.com,
mgoldboi(a)redhat.com, michal.skrivanek(a)redhat.com,
mkasik(a)redhat.com, rbalakri(a)redhat.com,
rh-spice-bugs(a)redhat.com, rjones(a)redhat.com,
sherold(a)redhat.com, srevivo(a)redhat.com,
ydary(a)redhat.com, ykaul(a)redhat.com
FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a heap-based
buffer overflow related to the tt_size_reset function in truetype/ttobjs.c.
Bug report:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=509
Upstream patch:
https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=e669959…
--
You are receiving this mail because:
You are on the CC list for the bug.