diff options
author | Werner Lemberg <wl@gnu.org> | 2017-05-30 22:35:41 +0200 |
---|---|---|
committer | Werner Lemberg <wl@gnu.org> | 2017-05-30 22:35:41 +0200 |
commit | 9b710cd56eb66c379686e82d7fe371c212aebc37 (patch) | |
tree | 283db99521eefba393c8b3143bf2274668d8a9d7 /ChangeLog | |
parent | 0e7b9f864f517dfe0bc37419c037dd299fdd2a27 (diff) | |
download | freetype2-9b710cd56eb66c379686e82d7fe371c212aebc37.tar.gz |
[cff] 32bit integer overflow run-time errors 1/2 (#46149).
This commit handles the old engine.
* src/cff/cffgload.c: Include FT_INTERNAL_CALC_H.
(cff_decoder_parse_charstrings): Use OVERFLOW_ADD_LONG and
OVERFLOW_SUB_LONG where needed.
* src/cff/cffparse.c: Include FT_INTERNAL_CALC_H.
(power_ten_limits): New static array.
(do_fixed): Use it to prevent multiplication overflow.
(cff_parser_run): Use OVERFLOW_ADD_LONG.
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 15 |
1 files changed, 15 insertions, 0 deletions
@@ -1,5 +1,20 @@ 2017-05-30 Werner Lemberg <wl@gnu.org> + [cff] 32bit integer overflow run-time errors 1/2 (#46149). + + This commit handles the old engine. + + * src/cff/cffgload.c: Include FT_INTERNAL_CALC_H. + (cff_decoder_parse_charstrings): Use OVERFLOW_ADD_LONG and + OVERFLOW_SUB_LONG where needed. + + * src/cff/cffparse.c: Include FT_INTERNAL_CALC_H. + (power_ten_limits): New static array. + (do_fixed): Use it to prevent multiplication overflow. + (cff_parser_run): Use OVERFLOW_ADD_LONG. + +2017-05-30 Werner Lemberg <wl@gnu.org> + [psaux] Correctly handle sequences of multiple number signs. * src/psaux/psconv.c (PS_Conv_Strtol, PS_Conv_ToFixed): Return zero |