new file mode 100644

@@ -0,0 +1,23 @@

+diff --git a/src/psaux/t1decode.c b/src/psaux/t1decode.c

+index af7b465..7dd4513 100644

+--- a/src/psaux/t1decode.c

+@@ -780,10 +780,19 @@

+             /* point without adding any point to the outline    */

+             idx = decoder->num_flex_vectors++;

+             if ( idx > 0 && idx < 7 )

++            {

++              /* in malformed fonts it is possible to have other */

++              /* opcodes in the middle of a flex (which don't    */

++              /* increase `num_flex_vectors'); we thus have to   */

++              /* check whether we can add a point                */

++              if ( FT_SET_ERROR( t1_builder_check_points( builder, 1 ) ) )

++                goto Syntax_Error;

++

+               t1_builder_add_point( builder,

+                                     x,

+                                     y,

+                                     (FT_Byte)( idx == 3 || idx == 6 ) );

++            }

+           }

+           break;

@@ -1,7 +1,7 @@

 Summary:	software font engine.

 Name:		freetype2

 Version:	2.7.1

-Release:	3%{?dist}

+Release:	4%{?dist}

 License:	BSD/GPL

 URL:		http://www.freetype.org/

 Group:		System Environment/Libraries

@@ -12,6 +12,7 @@ Source0:	http://download.savannah.gnu.org/releases/freetype/freetype-%{version}.

 Patch0:         CVE-2017-7857-and-CVE-2017-7858.patch

 Patch1:         CVE-2017-7864.patch

 Patch2:         CVE-2017-8287.patch

+Patch3:         freetype2-CVE-2017-8105.patch

 BuildRequires:	libtool

 BuildRequires:	zlib-devel

@@ -29,6 +30,7 @@ It contains the libraries and header files to create applications

 %patch0 -p1

 %patch1 -p1

 %patch2 -p1

+%patch3 -p1

 %build

 ./configure \

@@ -63,6 +65,8 @@ make -k check |& tee %{_specdir}/%{name}-check-log || %{nocheck}

 %{_libdir}/pkgconfig/*.pc

 %changelog

+*       Fri Nov 03 2017 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 2.7.1-4

+-       CVE-2017-8105

 *       Mon May 15 2017 Priyesh Padmavilasom <ppadmavilasom@vmware.com> 2.7.1-3

 -       CVE-2017-8287

 *       Fri Apr 28 2017 Dheeraj Shetty <dheerajs@vmware.com> 2.7.1-2

@@ -3,7 +3,7 @@

 Summary:	OpenJDK

 Name:		openjdk

 Version:	1.8.0.151

-Release:	1%{?dist}

+Release:	2%{?dist}

 License:	GNU GPL

 URL:		https://openjdk.java.net

 Group:		Development/Tools

@@ -20,6 +20,8 @@ BuildRequires:	unzip

 BuildRequires:  zlib-devel

 BuildRequires:	ca-certificates

 BuildRequires:	chkconfig

+BuildRequires:  freetype2-devel

+Requires:       freetype2

 Requires:       openjre = %{version}-%{release}

 Requires:       chkconfig

 AutoReqProv: 	no

@@ -229,6 +231,8 @@ rm -rf %{buildroot}/*

 %{_libdir}/jvm/OpenJDK-%{version}/src.zip

 %changelog

+*       Fri Nov 03 2017 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 1.8.0.151-2

+-       Upgrade requires to include freetype2 from photon OS repo

 *	Thu Oct 19 2017 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 1.8.0.151-1

 -	Upgraded to version 1.8.0.151

 *	Thu Sep 14 2017 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 1.8.0.141-2

@@ -110,8 +110,6 @@ class constants(object):

         "icu",

         "harfbuzz",

         "harfbuzz-devel",

-        "freetype2",

-        "freetype2-devel",

         "alsa-lib",

         "alsa-lib-devel",

         "xcb-proto",

@@ -6,8 +6,6 @@ x86_64/alsa-lib-1.0.29-1.x86_64.rpm

 x86_64/alsa-lib-devel-1.0.29-1.x86_64.rpm

 x86_64/fontconfig-2.11.1-1.x86_64.rpm

 x86_64/fontconfig-devel-2.11.1-1.x86_64.rpm

-x86_64/freetype2-2.5.5-1.x86_64.rpm

-x86_64/freetype2-devel-2.5.5-1.x86_64.rpm

 x86_64/glib-2.48.2-1.ph1.x86_64.rpm

 x86_64/glib-devel-2.48.2-1.ph1.x86_64.rpm

 x86_64/harfbuzz-0.9.40-1.x86_64.rpm