Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
Menu
Open sidebar
GNOME
pango
Commits
4e6248d7
Commit
4e6248d7
authored
Feb 17, 2011
by
Behdad Esfahbod
Browse files
Bug 639882 - Heap corruption in font parsing with FreeType2 backend
parent
12de1ecf
Changes
1
Hide whitespace changes
Inline
Side-by-side
pango/pangoft2-render.c
View file @
4e6248d7
...
...
@@ -121,9 +121,14 @@ pango_ft2_font_render_box_glyph (int width,
box
->
bitmap
.
width
=
width
;
box
->
bitmap
.
rows
=
height
;
box
->
bitmap
.
pitch
=
height
;
box
->
bitmap
.
pitch
=
width
;
box
->
bitmap
.
buffer
=
g_malloc0
(
box
->
bitmap
.
rows
*
box
->
bitmap
.
pitch
);
box
->
bitmap
.
buffer
=
g_malloc0_n
(
box
->
bitmap
.
rows
,
box
->
bitmap
.
pitch
);
if
(
G_UNLIKELY
(
!
box
->
bitmap
.
buffer
))
{
g_slice_free
(
PangoFT2RenderedGlyph
,
box
);
return
NULL
;
}
/* draw the box */
for
(
j
=
0
;
j
<
line_width
;
j
++
)
...
...
@@ -226,6 +231,11 @@ pango_ft2_font_render_glyph (PangoFont *font,
rendered
->
bitmap_left
=
face
->
glyph
->
bitmap_left
;
rendered
->
bitmap_top
=
face
->
glyph
->
bitmap_top
;
if
(
G_UNLIKELY
(
!
rendered
->
bitmap
.
buffer
))
{
g_slice_free
(
PangoFT2RenderedGlyph
,
rendered
);
return
NULL
;
}
return
rendered
;
}
else
...
...
@@ -276,6 +286,8 @@ pango_ft2_renderer_draw_glyph (PangoRenderer *renderer,
if
(
rendered_glyph
==
NULL
)
{
rendered_glyph
=
pango_ft2_font_render_glyph
(
font
,
glyph
);
if
(
rendered_glyph
==
NULL
)
return
;
add_glyph_to_cache
=
TRUE
;
}
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
