fontconfig: Branch 'main' - 2 commits
GitLab Mirror
gitlab-mirror at kemper.freedesktop.org
Mon Jun 30 01:16:03 UTC 2025
src/fcfreetype.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
New commits:
commit fb14dc46b3f15e189ccd29e3b9958f8d0739d2f3
Merge: a7a03d6 b9bec06
Author: Akira TAGOH <akira at tagoh.org>
Date: Mon Jun 30 01:16:00 2025 +0000
Merge branch 'issues/481' into 'main'
Fix a heap buffer overflow
See merge request fontconfig/fontconfig!446
commit b9bec06d73340f1b5727302d13ac3df307b7febc
Author: Akira TAGOH <akira at tagoh.org>
Date: Mon Jun 30 09:05:18 2025 +0900
Fix a heap buffer overflow
https://gitlab.freedesktop.org/fontconfig/fontconfig/-/issues/481
Changelog: fixed
diff --git a/src/fcfreetype.c b/src/fcfreetype.c
index 7a4d981..0a87d27 100644
--- a/src/fcfreetype.c
+++ b/src/fcfreetype.c
@@ -2661,7 +2661,7 @@ FcFontCapabilities (FT_Face face)
goto bail;
maxsize = (((FT_ULong)gpos_count + (FT_ULong)gsub_count) * OTLAYOUT_LEN +
- (issilgraphitefont ? strlen(fcSilfCapability) : 0));
+ (issilgraphitefont ? strlen(fcSilfCapability) + 1: 0));
complex_ = malloc (sizeof (FcChar8) * maxsize);
if (!complex_)
goto bail;
More information about the Fontconfig
mailing list