freetype-commit
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Git][freetype/freetype][master] * src/truetype/ttgxvar.c (tt_hvadvance_

From: Werner Lemberg (@wl)
Subject: [Git][freetype/freetype][master] * src/truetype/ttgxvar.c (tt_hvadvance_adjust): Integer overflow.
Date: Mon, 14 Nov 2022 18:19:57 +0000

Werner Lemberg pushed to branch master at FreeType / FreeType

Commits:

  • e6fda039
    by Werner Lemberg at 2022-11-14T19:18:19+01:00 
    * src/truetype/ttgxvar.c (tt_hvadvance_adjust): Integer overflow.

Reported as

  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50462

1 changed file:

Changes:

  • src/truetype/ttgxvar.c
    ... ... @@ -42,6 +42,7 @@
    42 42 
     #include <ft2build.h>
    43 43 
     #include <freetype/internal/ftdebug.h>
    44 44 
     #include FT_CONFIG_CONFIG_H
    45 
    +#include <freetype/internal/ftcalc.h>
    45 46 
     #include <freetype/internal/ftstream.h>
    46 47 
     #include <freetype/internal/sfnt.h>
    47 48 
     #include <freetype/tttags.h>
    ... ... @@ -1207,7 +1208,7 @@
    1207 1208 
                       delta == 1 ? "" : "s",
    1208 1209 
                       vertical ? "VVAR" : "HVAR" ));
    1209 1210
    1210 
    -      *avalue += delta;
    1211 
    +      *avalue = ADD_INT( *avalue, delta );
    1211 1212 
         }
    1212 1213
    1213 1214 
       Exit:


    • View it on GitLab.
    You're receiving this email because of your account on gitlab.freedesktop.org. Manage all notifications · Help

    reply via email to
    [Prev in Thread] Current Thread [Next in Thread]