[Webkit-unassigned] [Bug 18352] crash loading malicious font

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Apr 10 00:09:03 PDT 2008


------- Comment #7 from jdaggett at mozilla.com  2008-04-10 00:09 PDT -------
Note that the font has bad glyph data, the bug is caused by the specific
charstring used for the 'o' glyph.  So my guess is that ATS will probably
activate the font but will run into problems when attempting to measure and/or
rasterize the actual glyphs.  My guess is that ATSUI code is not properly
handling some ATS-related error and accessing random memory, hence the error.

Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list