| commit | ca8ac8acdad662230ae37998c6c4091bb39402b6 | [log] [tgz] |
|---|---|---|
| author | Raph Levien <raph@google.com> | Wed Jan 06 14:31:23 2016 -0800 |
| committer | Raph Levien <raph@google.com> | Thu Jan 07 21:39:25 2016 +0000 |
| tree | f2142f959da7f25a1c70efcfea0db2a853d194bf | |
| parent | 6299a6ba13906c695f7a4f6748f7bc5856a110e5 [diff] |
Reject fonts with invalid ranges in cmap A corrupt or malicious font may have a negative size in its cmap range, which in turn could lead to memory corruption. This patch detects the case and rejects the font, and also includes an assertion in the sparse bit set implementation if we missed any such case. External issue: https://code.google.com/p/android/issues/detail?id=192618 Bug: 26413177 Change-Id: Icc0c80e4ef389abba0964495b89aa0fae3e9f4b2