freetype-commit
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Git][freetype/freetype][master] [truetype] Fix integer overflow.

From: Werner Lemberg (@wl)
Subject: [Git][freetype/freetype][master] [truetype] Fix integer overflow.
Date: Sat, 19 Jun 2021 05:04:08 +0000

Werner Lemberg pushed to branch master at FreeType / FreeType

Commits:

2 changed files:

Changes:

  • ChangeLog
    1 
    +2021-06-19  Werner Lemberg  <david@freetype.org>
    2 
    +
    3 
    +	[truetype] Fix integer overflow.
    4 
    +
    5 
    +	Reported as
    6 
    +
    7 
    +	  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35312
    8 
    +
    9 
    +	* src/truetype/ttinterp.c (Ins_JMPR): Use `ADD_LONG`.
    10 
    +
    1 11 
     2021-06-19  Werner Lemberg  <david@freetype.org>
    2 12
    3 13 
     	[autofit] Prevent hinting if there are too many segments.

  • src/truetype/ttinterp.c
    ... ... @@ -3593,7 +3593,7 @@
    3593 3593 
           return;
    3594 3594 
         }
    3595 3595
    3596 
    -    exc->IP += args[0];
    3596 
    +    exc->IP = ADD_LONG( exc->IP, args[0] );
    3597 3597 
         if ( exc->IP < 0                                             ||
    3598 3598 
              ( exc->callTop > 0                                    &&
    3599 3599 
                exc->IP > exc->callStack[exc->callTop - 1].Def->end ) )


    • View it on GitLab.
    You're receiving this email because of your account on gitlab.freedesktop.org. If you'd like to receive fewer emails, you can adjust your notification settings.

    reply via email to
    [Prev in Thread] Current Thread [Next in Thread]