[ft] UVS support in freetype-2.4.x is broken under legacy-compatible con

freetype

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ft] UVS support in freetype-2.4.x is broken under legacy-compatible con

From:	mpsuzuki
Subject:	[ft] UVS support in freetype-2.4.x is broken under legacy-compatible configuration
Date:	Fri, 5 Nov 2010 00:35:42 +0900

Dear all,

I apologize that UVS support of freetype-2.4.x is broken under
legacy-compatible configuration (it's default configuration for
'configure && make && make install'-ed binary).

The bug causes a crash by NULL pointer dereference in UVS
support functions, but I think it is not exploitable bug.
Even if a malicious font is given, the client won't be
crashed by this bug, as far as the client does not call UVS
support functions.

It is already fixed in latest revision on GIT. The detailed
analysis and the patch (applicable to all revisions since
the bug was introduced) is available from savannah bugzilla:

        https://savannah.nongnu.org/bugs/index.php?31545

Regards,
mpsuzuki

[Prev in Thread]

Current Thread

[Next in Thread]

[ft] UVS support in freetype-2.4.x is broken under legacy-compatible configuration, mpsuzuki <=

Prev by Date: [ft] dll for FreeType V2.4.3
Next by Date: [ft] FreeType 2.4.3 DLL
Previous by thread: [ft] dll for FreeType V2.4.3
Next by thread: [ft] FreeType 2.4.3 DLL
Index(es):
- Date
- Thread