~ubuntu-branches/ubuntu/intrepid/pango1.0/intrepid-security

Viewing changes to pango/pangofc-fontmap.c

Committer: Bazaar Package Importer
Author(s): Marc Deslauriers
Date: 2009-05-05 08:51:21 UTC
mfrom: (67.1.1 intrepid-proposed)
Revision ID: james.westby@ubuntu.com-20090505085121-2orafza27d0b61f9

Tags: 1.22.2-0ubuntu1.1

* SECURITY UPDATE: Possible remote code execution via integer overflow
  with very long glyphstrings
  - debian/patches/13_security_CVE-2009-1194.patch: check length so we
    don't overflow in pango/glyphstring.c.
  - CVE-2009-1194

Show diffs side-by-side

added added

removed removed

pango/pangofc-fontmap.c

484

PangoFcFontMap *fcfontmap = PANGO_FC_FONT_MAP (object);

485

PangoFcFontMapPrivate *priv = fcfontmap->priv;

486

487

pango_fc_font_map_cache_clear (fcfontmap);

487

488

/* Shutdown, so we clear the fonts and mark them as shut down */

489

pango_fc_font_map_shutdown (fcfontmap);

490

488

491

g_queue_free (priv->fontset_cache);

489

492

g_hash_table_destroy (priv->coverage_hash);

490

493

Older »