commit | 3ed3a96181625286f5899118f884fb4b125ebda2 | [log] [tgz] |
---|---|---|
author | Werner Lemberg <wl@gnu.org> | Sun Jun 11 13:50:37 2017 +0200 |
committer | Werner Lemberg <wl@gnu.org> | Sun Jun 11 13:50:37 2017 +0200 |
tree | c2f2c3d557d17ddc09c68773433a4e7b64e9cb7f | |
parent | 5f2a72cbc716703cd1e38f21e4cc52624a819e18 [diff] |
[cff] Integer overflows. Reported as https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2200 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2210 * src/cff/cf2hints.c (cf2_hintmap_insertHint): Use SUB_INT32 and ADD_INT32. * src/cff/cf2intrp.c (cf2_interpT2CharString) <cf2_cmdVMOVETO>: Use ADD_INT32.