fdo-mirrors/cairo
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/cairo/cairo.git synced 2026-05-06 11:38:16 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Range-check FDSelect value during CFF subsetting.

Browse source
This commit is contained in:
Jonathan Kew 2026-04-19 13:01:56 +01:00
parent 7dc050967f
commit d80b44afa4
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
src/cairo-cff-subset.c
View file

@ -1876,6 +1876,10 @@ cairo_cff_font_subset_fontdict (cairo_cff_font_t *font)
}
fd = font->fdselect[gid];
if (fd < 0 || (unsigned int) fd >= font->num_fontdicts) {
free (reverse_map);
return CAIRO_INT_STATUS_UNSUPPORTED;
}
if (reverse_map[fd] < 0) {
font->fd_subset_map[font->num_subset_fontdicts] = fd;
reverse_map[fd] = font->num_subset_fontdicts++;