kc3-lang/freetype

Browse

Commit d353f6e0123a0acffe5068b2e5d0cd2b5c93d196

Werner Lemberg 2015-10-10T06:54:46

* src/pcf/pcfread.c (pcf_read_TOC): Check stream size (#46162). 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26

diff --git a/ChangeLog b/ChangeLog
index afd34e9..4cc2e53 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,7 @@
+2015-10-10  Werner Lemberg  <wl@gnu.org>
+
+	* src/pcf/pcfread.c (pcf_read_TOC): Check stream size (#46162).
+
 2015-10-09  Werner Lemberg  <wl@gnu.org>
 
 	* src/gzip/ftgzip.c (FT_Stream_OpenGzip): Use real stream size.
diff --git a/src/pcf/pcfread.c b/src/pcf/pcfread.c
index afad278..6a248cf 100644
--- a/src/pcf/pcfread.c
+++ b/src/pcf/pcfread.c
@@ -106,6 +106,9 @@ THE SOFTWARE.
          toc->count   == 0                )
       return FT_THROW( Invalid_File_Format );
 
+    if ( stream->size < 16 )
+      return FT_THROW( Invalid_File_Format );
+
     /* we need 16 bytes per TOC entry */
     if ( toc->count > stream->size >> 4 )
     {
kmx.io     mail     discord kmxgit v0.4.0