walkero
/
harfbuzz
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

sanitize variationStore in CFF2 against its size

This commit is contained in:
Michiharu Ariza 2018-12-05 17:04:55 -08:00
parent d9dabc00e9
commit c31092ab34
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/hb-ot-cff2-table.hh
View File

@ -115,7 +115,7 @@ struct CFF2VariationStore
inline bool sanitize (hb_sanitize_context_t *c) const
{
TRACE_SANITIZE (this);
return_trace (likely (c->check_struct (this)) && varStore.sanitize (c));
return_trace (likely (c->check_struct (this)) && c->check_range (&varStore, size) && varStore.sanitize (c));
}
inline bool serialize (hb_serialize_context_t *c, const CFF2VariationStore *varStore)