Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Evergreen:11.1
ft2demos
bnc629447_CVE-2010-2808.diff
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File bnc629447_CVE-2010-2808.diff of Package ft2demos
From 81f3472c0ba7b8f6466e2e214fa8c1c17fade975 Mon Sep 17 00:00:00 2001 From: suzuki toshiya <mpsuzuki@hiroshima-u.ac.jp> Date: Fri, 06 Aug 2010 05:11:54 +0000 Subject: Fix Savannah bug #30658. * src/base/ftobjs.c (Mac_Read_POST_Resource): Check the total length of collected POST segments does not overrun the allocated buffer. --- diff --git a/src/base/ftobjs.c b/src/base/ftobjs.c index 9dce576..13c126f 100644 --- freetype-2.3.12/src/base/ftobjs.c.orig 2010-08-10 17:35:52.674129719 +0200 +++ freetype-2.3.12/src/base/ftobjs.c 2010-08-10 17:49:05.001254449 +0200 @@ -1574,7 +1574,14 @@ pfb_data[pfb_pos++] = 0; } + + error = FT_Err_Cannot_Open_Resource; + if ( pfb_pos > pfb_len || pfb_pos + rlen > pfb_len ) + goto Exit2; + error = FT_Stream_Read( stream, (FT_Byte *)pfb_data + pfb_pos, rlen ); + if ( error ) + goto Exit2; pfb_pos += rlen; }
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor