Google Git
Sign in
skia / third_party / freetype2 / 1ea343228d8987afae5f58908581c1e59e26e9ad
commit1ea343228d8987afae5f58908581c1e59e26e9ad[log] [tgz]
authorWerner Lemberg <wl@gnu.org>Sat Jun 03 06:52:13 2017 +0200
committerWerner Lemberg <wl@gnu.org>Sat Jun 03 06:52:13 2017 +0200
tree1edc34a46038737fc06f01cfb7b5c5340524d89a
parentc5a225413ffd6f3e032cede5a14d64a2c2c047a2 [diff]
[cff, truetype] Integer overflows.

Reported as

  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2047
  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2057

* src/cff/cf2hints.c (cf2_hintmap_map): Use OVERFLOW_SUB_INT32.

* src/truetype/ttinterp.c (Ins_ADD): Use OVERFLOW_ADD_LONG.
(Ins_SUB): Use OVERFLOW_SUB_LONG.
(Ins_NEG): Use NEG_LONG.
4 files changed
tree: 1edc34a46038737fc06f01cfb7b5c5340524d89a
  1. builds/
  2. devel/
  3. docs/
  4. include/
  5. objs/
  6. src/
  7. .gitignore
  8. .mailmap
  9. autogen.sh
  10. ChangeLog
  11. ChangeLog.20
  12. ChangeLog.21
  13. ChangeLog.22
  14. ChangeLog.23
  15. ChangeLog.24
  16. ChangeLog.25
  17. ChangeLog.26
  18. CMakeLists.txt
  19. configure
  20. Jamfile
  21. Jamrules
  22. Makefile
  23. modules.cfg
  24. README
  25. README.git
  26. version.sed
  27. vms_make.com