ReceiveTempSMS
/
Al-Qurtas-Islamic-bank-The-Best-Bank-in-Iraq
forked from minhngoc25a/freetype2
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix Ghostscript Coverity issue #3904. 

* src/truetype/ttgxvar.c (ft_var_readpackedpoints): Protect against
zero value of `runcnt'.
This commit is contained in:
Werner Lemberg 2009-03-21 07:48:34 +01:00
parent 7171ff5782
commit 16bd51c819
2 changed files with 40 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
ChangeLog
View File

@ -1,3 +1,10 @@
2009-03-21 Werner Lemberg <wl@gnu.org>
Fix Ghostscript Coverity issue #3904.
* src/truetype/ttgxvar.c (ft_var_readpackedpoints): Protect against
zero value of `runcnt'.
2009-03-20 Werner Lemberg <wl@gnu.org> 2009-03-20 Werner Lemberg <wl@gnu.org>
Fix `make multi' run. Fix `make multi' run.

58
src/truetype/ttgxvar.c
View File

@ -4,7 +4,7 @@
/* */ /* */
/* TrueType GX Font Variation loader */ /* TrueType GX Font Variation loader */
/* */ /* */
/* Copyright 2004, 2005, 2006, 2007, 2008 by */ /* Copyright 2004, 2005, 2006, 2007, 2008, 2009 by */
/* David Turner, Robert Wilhelm, Werner Lemberg, and George Williams. */ /* David Turner, Robert Wilhelm, Werner Lemberg, and George Williams. */
/* */ /* */
/* This file is part of the FreeType project, and may only be used, */ /* This file is part of the FreeType project, and may only be used, */
@ -16,30 +16,31 @@
/***************************************************************************/ /***************************************************************************/
/***************************************************************************/ /*************************************************************************/
/* */ /* */
/* Apple documents the `fvar', `gvar', `cvar', and `avar' tables at */ /* Apple documents the `fvar', `gvar', `cvar', and `avar' tables at */
/* */ /* */
/* http://developer.apple.com/fonts/TTRefMan/RM06/Chap6[fgca]var.html */ /* http://developer.apple.com/fonts/TTRefMan/RM06/Chap6[fgca]var.html */
/* */ /* */
/* The documentation for `fvar' is inconsistent. At one point it says */ /* The documentation for `fvar' is inconsistent. At one point it says */
/* that `countSizePairs' should be 3, at another point 2. It should be 2. */ /* that `countSizePairs' should be 3, at another point 2. It should */
/* */ /* be 2. */
/* The documentation for `gvar' is not intelligible; `cvar' refers you to */ /* */
/* `gvar' and is thus also incomprehensible. */ /* The documentation for `gvar' is not intelligible; `cvar' refers you */
/* */ /* to `gvar' and is thus also incomprehensible. */
/* The documentation for `avar' appears correct, but Apple has no fonts */ /* */
/* with an `avar' table, so it is hard to test. */ /* The documentation for `avar' appears correct, but Apple has no fonts */
/* */ /* with an `avar' table, so it is hard to test. */
/* Many thanks to John Jenkins (at Apple) in figuring this out. */ /* */
/* */ /* Many thanks to John Jenkins (at Apple) in figuring this out. */
/* */ /* */
/* Apple's `kern' table has some references to tuple indices, but as there */ /* */
/* is no indication where these indices are defined, nor how to */ /* Apple's `kern' table has some references to tuple indices, but as */
/* interpolate the kerning values (different tuples have different */ /* there is no indication where these indices are defined, nor how to */
/* classes) this issue is ignored. */ /* interpolate the kerning values (different tuples have different */
/* */ /* classes) this issue is ignored. */
/***************************************************************************/ /* */
/*************************************************************************/
#include <ft2build.h> #include <ft2build.h>
@ -158,6 +159,9 @@
runcnt = runcnt & GX_PT_POINT_RUN_COUNT_MASK; runcnt = runcnt & GX_PT_POINT_RUN_COUNT_MASK;
first = points[i++] = FT_GET_USHORT(); first = points[i++] = FT_GET_USHORT();
if ( !runcnt )
goto Exit;
/* first point not included in runcount */ /* first point not included in runcount */
for ( j = 0; j < runcnt; ++j ) for ( j = 0; j < runcnt; ++j )
points[i++] = (FT_UShort)( first += FT_GET_USHORT() ); points[i++] = (FT_UShort)( first += FT_GET_USHORT() );
@ -166,11 +170,15 @@
{ {
first = points[i++] = FT_GET_BYTE(); first = points[i++] = FT_GET_BYTE();
if ( !runcnt )
goto Exit;
for ( j = 0; j < runcnt; ++j ) for ( j = 0; j < runcnt; ++j )
points[i++] = (FT_UShort)( first += FT_GET_BYTE() ); points[i++] = (FT_UShort)( first += FT_GET_BYTE() );
} }
} }
Exit:
return points; return points;
} }