[ft] Freetype crashing

freetype

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ft] Freetype crashing

From:	Robin Watts
Subject:	[ft] Freetype crashing
Date:	Wed, 19 Dec 2012 19:17:43 +0000
User-agent:	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Thunderbird/17.0

Hi all,

I have a test file here that when fed into MuPDF causes Freetype to diewith a SEGV.

It seems that in ft_stroker_border_export, we append the border pointsto the outline points; this is great, except border->num_points is anint, and outline->num_points is a short, hence we can overflow.

I can share the test file for this via direct email, but I can't post itto the list (or to a public bugtracker). I have a patch to fix theproblem, but I'm the first to admit that it may not be ideal.


I submit it here for your delight, delectation, mocking opportunities etc.

Please let me know if there is anything else I can do to help get thisfixed in the next version of freetype.


Merry Xmas!

Robin

freetype-SEGV.patch
Description: Text document

[Prev in Thread]

Current Thread

[Next in Thread]

[ft] Freetype render issue, Johnson Y. Yan, 2012/12/08
- [ft] Freetype crashing, Robin Watts <=
  - Re: [ft] Freetype crashing, Werner LEMBERG, 2012/12/20
  - Re: [ft] Freetype crashing, Werner LEMBERG, 2012/12/21

Prev by Date: [ft] (no subject)
Next by Date: Re: [ft] Freetype crashing
Previous by thread: [ft] Freetype render issue
Next by thread: Re: [ft] Freetype crashing
Index(es):
- Date
- Thread