[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[ft] UVS support in freetype-2.4.x is broken under legacy-compatible con
From: |
mpsuzuki |
Subject: |
[ft] UVS support in freetype-2.4.x is broken under legacy-compatible configuration |
Date: |
Fri, 5 Nov 2010 00:35:42 +0900 |
Dear all,
I apologize that UVS support of freetype-2.4.x is broken under
legacy-compatible configuration (it's default configuration for
'configure && make && make install'-ed binary).
The bug causes a crash by NULL pointer dereference in UVS
support functions, but I think it is not exploitable bug.
Even if a malicious font is given, the client won't be
crashed by this bug, as far as the client does not call UVS
support functions.
It is already fixed in latest revision on GIT. The detailed
analysis and the patch (applicable to all revisions since
the bug was introduced) is available from savannah bugzilla:
https://savannah.nongnu.org/bugs/index.php?31545
Regards,
mpsuzuki
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [ft] UVS support in freetype-2.4.x is broken under legacy-compatible configuration,
mpsuzuki <=