[cairo-bugs] [Bug 101547] Heap buffer overflow at cairo-truetype-subset.c:1299, CVE-2017-9814
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Tue May 8 01:03:09 UTC 2018
https://bugs.freedesktop.org/show_bug.cgi?id=101547
--- Comment #13 from Bryce Harrington <bryce at osg.samsung.com> ---
Created attachment 139416
--> https://bugs.freedesktop.org/attachment.cgi?id=139416&action=edit
Convert boilerplate code to _cairo_malloc
Here's a shot at converting the remaining malloc()'s in boilerplate/ to use
_cairo_malloc. I notice though that the boilerplate code has its own xmalloc()
routine that calls exit() on error; I'm not certain whether or not that should
be used here instead of _cairo_malloc?
--
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.cairographics.org/archives/cairo-bugs/attachments/20180508/192f3a7f/attachment.html>
More information about the cairo-bugs
mailing list