diff options
author | Werner Lemberg <wl@gnu.org> | 2017-06-27 06:16:04 +0200 |
---|---|---|
committer | Werner Lemberg <wl@gnu.org> | 2017-06-27 06:16:04 +0200 |
commit | dde8f5abbe5a27af2186c3f0e2c702612d7ca930 (patch) | |
tree | bb118a01a2c113dde7e08f9a48ad3b06881d15d2 /ChangeLog | |
parent | b27cef27ffc37cb14190a1860523d6a1aa9bc783 (diff) | |
download | freetype2-dde8f5abbe5a27af2186c3f0e2c702612d7ca930.tar.gz |
[truetype] Integer overflows.
Reported as
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2384
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2391
* src/base/ftcalc.c (FT_MulDiv, FT_MulDiv_No_Round, FT_DivFix): Use
NEG_LONG.
* src/truetype/ttinterp.c (Ins_SxVTL): Use NEG_LONG.
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 14 |
1 files changed, 14 insertions, 0 deletions
@@ -1,3 +1,17 @@ +2017-06-27 Werner Lemberg <wl@gnu.org> + + [truetype] Integer overflows. + + Reported as + + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2384 + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2391 + + * src/base/ftcalc.c (FT_MulDiv, FT_MulDiv_No_Round, FT_DivFix): Use + NEG_LONG. + + * src/truetype/ttinterp.c (Ins_SxVTL): Use NEG_LONG. + 2017-06-24 Werner Lemberg <wl@gnu.org> [truetype] Integer overflows. |