kc3-lang/freetype/src/sfnt

Diff

• Show log

  Commit

• Hash : 04272824
  Author :
  Date : 2022-10-17T18:18:49
  

  [sfnt] Guard individual `COLR` v1 paint field reads.
  
  * src/sfnt/ttcolr.c (ENSURE_READ_BYTES): New macro.
  (read_paint): Use it – after the start pointer `p` has been checked for
  whether it allows reading the format byte, each successive paint table field
  read need to be bounds-checked before reading further values.
  
  Reported as
  
    https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52404
  

• Files

• module.mk
• pngshim.c
• pngshim.h
• rules.mk
• sfdriver.c
• sfdriver.h
• sferrors.h
• sfnt.c
• sfobjs.c
• sfobjs.h
• sfwoff.c
• sfwoff.h
• sfwoff2.c
• sfwoff2.h
• ttbdf.c
• ttbdf.h
• ttcmap.c
• ttcmap.h
• ttcmapc.h
• ttcolr.c
• ttcolr.h
• ttcpal.c
• ttcpal.h
• ttkern.c
• ttkern.h
• ttload.c
• ttload.h
• ttmtx.c
• ttmtx.h
• ttpost.c
• ttpost.h
• ttsbit.c
• ttsbit.h
• ttsvg.c
• ttsvg.h
• woff2tags.c
• woff2tags.h

• Properties

• Git HTTP	https://git.kmx.io/kc3-lang/freetype.git
  Git SSH	git@git.kmx.io:kc3-lang/freetype.git
  Public access ?	public
  Description	https://gitlab.freedesktop.org/freetype/freetype
  Users
  Tags