commit | dbeb7bce7f76cdd786ce4022e0b45a653f68db5d | [log] [tgz] |
---|---|---|
author | Werner Lemberg <wl@gnu.org> | Thu Jun 15 19:39:50 2017 +0200 |
committer | Werner Lemberg <wl@gnu.org> | Thu Jun 15 19:39:50 2017 +0200 |
tree | aea3c738de3c83b6ed199c8866fa0ddfd75704bb | |
parent | 79e3789f81e14266578e71196ce71ecf5381d142 [diff] |
[bdf, cff] Integer overflows. Reported as https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2244 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2261 * src/bdf/bdfdrivr.c (BDF_Face_Init): Replace calls to FT_ABS with direct code to avoid value negation. * src/cff/cf2blues.c (cf2_blues_capture): Use SUB_INT32 and ADD_INT32.