CVS commit: xsrc

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: xsrc
From: Matthias Drochner <drochner%netbsd.org@localhost>
Date: Thu, 5 Apr 2007 16:34:02 +0000 (UTC)

Module Name:    xsrc
Committed By:   drochner
Date:           Thu Apr  5 16:34:02 UTC 2007

Modified Files:
        xsrc/dist/freetype/src/bdf: bdflib.c
        xsrc/xfree/xc/extras/freetype2/src/bdf: bdflib.c

Log Message:
pull in a patch from freetype CVS:
* src/bdf/bdflib.c (setsbit, sbitset): Handle values >= 128
  gracefully.
  (_bdf_set_default_spacing): Increase `name' buffer size to 256 and
  issue an error for longer names.
  (_bdf_parse_glyphs): Limit allowed number of glyphs in font to the
  number of code points in Unicode.

This fixes CVE-2007-1351.

Thanks tron for basic testing.


To generate a diff of this commit:
cvs rdiff -r1.1.1.1 -r1.2 xsrc/dist/freetype/src/bdf/bdflib.c
cvs rdiff -r1.2 -r1.3 xsrc/xfree/xc/extras/freetype2/src/bdf/bdflib.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [yamt-idlelwp] src/sys/sys
Next by Date: CVS commit: src/sys/compat
Previous by Thread: CVS commit: [yamt-idlelwp] src/sys/sys
Next by Thread: CVS commit: src/sys/compat
Indexes:

Home | Main Index | Thread Index | Old Index