oss-fuzz 50099: Fix mistake in setting CFF data buffer limit

for fdarray subfonts
author: Chris Liddell <chris.liddell@artifex.com> 2022-08-15 14:13:26 +0100
committer: Chris Liddell <chris.liddell@artifex.com> 2022-08-15 15:40:06 +0100
commit: 2b3b754fe12591dc26309fc92fcefac12ca5a6af (patch)
tree: 00493f333302b9e6884bf4afd91ace85e3abf7db
parent: be2dd780341922ea945ad6abc7cfeed3400c2afe (diff)
download: ghostpdl-2b3b754fe12591dc26309fc92fcefac12ca5a6af.tar.gz
1 files changed, 3 insertions, 2 deletions
diff --git a/pdf/pdf_font1C.c b/pdf/pdf_font1C.c
index 83398c34d..382a9dea3 100644
--- a/pdf/pdf_font1C.c
+++ b/pdf/pdf_font1C.c
@@ -819,7 +819,8 @@ pdfi_read_cff_dict(byte *p, byte *e, pdfi_gs_cff_font_priv *ptpriv, cff_font_off
 
     n = 0;
     while (p < e && code >= 0) {
-        b0 = *p++;
+        b0 = *p;
+        p++;
 
         switch (b0) {
             case 22:
@@ -1833,7 +1834,7 @@ pdfi_read_cff(pdf_context *ctx, pdfi_gs_cff_font_priv *ptpriv)
                 pdf_font_cff *pdffont = NULL;
                 gs_font_type1 *pt1font;
 
-                pdfi_init_cff_font_priv(ctx, &fdptpriv, font->cffdata, (font->cffend - font->cffdata) + 1, true);
+                pdfi_init_cff_font_priv(ctx, &fdptpriv, font->cffdata, (font->cffend - font->cffdata), true);
 
                 offsets.private_off = 0;
author	Chris Liddell <chris.liddell@artifex.com>	2022-08-15 14:13:26 +0100
committer	Chris Liddell <chris.liddell@artifex.com>	2022-08-15 15:40:06 +0100
commit	2b3b754fe12591dc26309fc92fcefac12ca5a6af (patch)
tree	00493f333302b9e6884bf4afd91ace85e3abf7db
parent	be2dd780341922ea945ad6abc7cfeed3400c2afe (diff)
download	ghostpdl-2b3b754fe12591dc26309fc92fcefac12ca5a6af.tar.gz