Description: Vulnerability Remediation

IssueNo: https://gitee.com/openharmony/third_party_freetype/issues/I56E40 Feature or Bugfix: Bugfix Binary Source:No Signed-off-by: N zxt <zhangxingtai@huawei.com>

Description: Vulnerability Remediation
IssueNo: https://gitee.com/openharmony/third_party_freetype/issues/I56E40 Feature or Bugfix: Bugfix Binary Source:No Signed-off-by: N zxt <zhangxingtai@huawei.com>
9fdec3ff · zxt · sunman4 · d5a080cb · 9fdec3ff · 9fdec3ff
隐藏空白更改
内联并排

Showing with 4 addition and 1 deletion

src/base/ftobjs.c src/base/ftobjs.c +3 -0

src/sfnt/sfobjs.c src/sfnt/sfobjs.c +1 -1

未找到文件。
--- a/src/base/ftobjs.c
+++ b/src/base/ftobjs.c
@@ -3244,6 +3244,9 @@
    if ( !face )
      return FT_THROW( Invalid_Face_Handle );

+    if ( !face->size )
+      return FT_THROW( Invalid_Size_Handle );
+	
    if ( !req || req->width < 0 || req->height < 0 ||
         req->type >= FT_SIZE_REQUEST_TYPE_MAX )
      return FT_THROW( Invalid_Argument );

--- a/src/sfnt/sfobjs.c
+++ b/src/sfnt/sfobjs.c
@@ -528,7 +528,7 @@
    face_index = FT_ABS( face_instance_index ) & 0xFFFF;

    /* value -(N+1) requests information on index N */
-    if ( face_instance_index < 0 )
+    if ( face_instance_index < 0 && face_index > 0)
      face_index--;

    if ( face_index >= face->ttc_header.count )