modules.cfg | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 enable the gxvalid and otvalid table validation modules
 The 'ftvalid' demo in the freetype2-demos package is only useful if certain
 extra extensions are enabled in freetype. These extensions are not enabled
 upstream by default, but there's no reason for us not to enable them.

include/freetype/config/ftoption.h | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 enable subpixel rendering to provide lcd colour filtering.

ft2docs/docs/css/freetype2.css | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 comment out references to fonts.googleapis.com to prevent lintian
 from warning about potential privacy-breach-generic issues.

ft2docs/docs/design/design-1.html | 4 2 + 2 - 0 !
ft2docs/docs/design/design-2.html | 4 2 + 2 - 0 !
ft2docs/docs/design/design-3.html | 4 2 + 2 - 0 !
ft2docs/docs/design/design-4.html | 4 2 + 2 - 0 !
ft2docs/docs/design/design-5.html | 4 2 + 2 - 0 !
ft2docs/docs/design/design-6.html | 4 2 + 2 - 0 !
ft2docs/docs/design/index.html | 4 2 + 2 - 0 !
ft2docs/docs/documentation.html | 4 2 + 2 - 0 !
ft2docs/docs/ft2faq.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-1.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-2.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-3.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-4.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-5.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-6.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/glyphs-7.html | 4 2 + 2 - 0 !
ft2docs/docs/glyphs/index.html | 4 2 + 2 - 0 !
ft2docs/docs/index.html | 4 2 + 2 - 0 !
ft2docs/docs/tutorial/index.html | 4 2 + 2 - 0 !
ft2docs/docs/tutorial/step1.html | 4 2 + 2 - 0 !
ft2docs/docs/tutorial/step2.html | 4 2 + 2 - 0 !
ft2docs/docs/tutorial/step3.html | 4 2 + 2 - 0 !
22 files changed, 44 insertions(+), 44 deletions(-)

 use a button for donations instead of an image
 of the documentation. Commenting out the relevant <li> tag prevents lintian
 from raising several privacy-breach-donation errors.

ft2demos/src/ftbench.c | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 exit if the number of glyphs is zero to avoid a heap overflow.
 Fixes CVE-2022-31782.

src/base/ftobjs.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 clear correct document ownership flags to prevent a wild free.
 This issue was discovered with an SVG-based font with some documents
 compressed and other uncompressed. After loading the first compressed
 document, the ownership flag on the glyph slot was set to true but never
 set to false. As a result, after loading a compressed document, a glyph
 from an uncompressed document would load fine, but when this glyph slot
 was cleared it would try to free its document resulting in a wild free.

ft2demos/graph/rules.mk | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 pass debian's hardening cflags, cppflags and ldflags to the demo programs

src/truetype/ttgxvar.c | 18 11 + 7 - 0 !
1 file changed, 11 insertions(+), 7 deletions(-)

 prevent integer overflow in tt_hvadvance_adjust().
 Fixes CVE-2023-2004.

src/sfnt/sfdriver.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 disable colrv1 support in freetype 2.12.1.
 FreeType 2.12.1 shipped with COLRv1 support enabled. This was unintentional,
 as the partial implementation shipped is incomplete and incompatible with
 the final COLRv1 API.
 .
 Applications attempting to use this version of the COLRv1 API will get
 unexpected (and incorrect) results.

src/base/ftobjs.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 use correct predicate before calling get_colr_glyph_paint()
 This ensures Chromium doesn't crash when the experimental COLRv1 API is disabled.

src/truetype/ttgload.c | 9 8 + 1 - 0 !
1 file changed, 8 insertions(+), 1 deletion(-)

 [patch] minimal stop-gap fix for cve-2025-27363