From 38b349c41b2456d533cf60fb966a32d1a665dc8f Mon Sep 17 00:00:00 2001 From: Alexei Podtelezhnikov Date: Mon, 18 Oct 2021 20:35:28 -0400 Subject: [PATCH] [pcf] Zero out the allocated properties. Fallout reported as https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40033 * src/pcf/pcfread.c (pcf_get_properties): Use FT_NEW_ARRAY and zero out `properties` in case of failure. --- src/pcf/pcfread.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/pcf/pcfread.c b/src/pcf/pcfread.c index 4c6823ac2..e60a0a514 100644 --- a/src/pcf/pcfread.c +++ b/src/pcf/pcfread.c @@ -613,7 +613,8 @@ THE SOFTWARE. strings[string_size] = '\0'; - if ( FT_QNEW_ARRAY( properties, nprops ) ) + /* zero out in case of failure */ + if ( FT_NEW_ARRAY( properties, nprops ) ) goto Bail; face->properties = properties;