diff --git a/debian/changelog b/debian/changelog index ca4a164..3f517ab 100644 --- a/debian/changelog +++ b/debian/changelog @@ -7,7 +7,11 @@ ubuntu-dev-tools (0.102) UNRELEASED; urgency=low [ Kees Cook ] * mk-sbuild: update examples to include "-A". - -- Kees Cook Tue, 10 Aug 2010 11:46:32 -0700 + [ Benjamin Drung ] + * suspicious-source: whitelist font source formats. Thanks to Nicolas + Spalinger for the patch (LP: #365147). + + -- Benjamin Drung Tue, 10 Aug 2010 23:13:05 +0200 ubuntu-dev-tools (0.101) unstable; urgency=low diff --git a/suspicious-source b/suspicious-source index 8bd7216..e4ed8e1 100755 --- a/suspicious-source +++ b/suspicious-source @@ -20,11 +20,17 @@ import os import sys default_whitelisted_mimetypes = [ - "application/xml", + "application/vnd.font-fontforge-sfd", # font source: fontforge "application/x-elc", "application/x-empty", + "application/x-font-otf", # font object and source + "application/x-font-ttf", # font object and source + "application/x-font-woff", # font object and source "application/x-symlink", + "application/xml", "audio/x-wav", + "font/otf", # font object and source + "font/ttf", # font object and source "image/gif", "image/jpeg", "image/png", @@ -58,7 +64,21 @@ default_whitelisted_mimetypes = [ ] default_whitelisted_extensions = [ - ".rsa" + ".fea", # font source format: afdko (Adobe font development kit for OpenType) + ".fog", # font source format: Fontographer + ".g2n", # font source format: fontforge + ".gdh", # font source format: Graphite (headers) + ".gdl", # font source format: Graphite + ".glyph", # font source format: cross-toolkit UFO + ".plate", # font source format: Spiro + ".rsa", + ".sfd", # font source format: fontforge + ".sfdir", # font source format: fontforge + ".ttx", # font source format: fonttools + ".ufo", # font source format: cross-toolkit UFO + ".vfb" # font source format: FontLab + ".vtp", # font source format: OpenType (VOLT) + ".xgf", # font source format: Xgridfit ] def main(whitelisted_mimetypes, whitelisted_extensions, directory, verbose=False):