[Webkit-unassigned] [Bug 228893] [GTK] WTFCrash in WebCore::FontCache::lastResortFallbackFont
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Aug 17 07:36:16 PDT 2021
https://bugs.webkit.org/show_bug.cgi?id=228893
--- Comment #6 from Carlos Garcia Campos <cgarcia at igalia.com> ---
The issue seems to be the unsigned short cast here:
https://gitlab.freedesktop.org/freetype/freetype/-/blob/master/src/base/ftobjs.c#L3229
when 65536 is passed that's 0, but for 65537 we get 1 and so on, that's why 65536 is the only problematic value. The reason why it only fails for some fonts is the driver, the truetype driver size request implementation returns an error when ppem is 0, but the cff doesn't. So, I guess this is a Freetype limitation and we should ensure font size is always < 65536.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210817/57fab1eb/attachment.htm>
More information about the webkit-unassigned
mailing list