summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Expand)AuthorFilesLines
2016-05-30fserve: Fix a buffer read overrun in _fs_client_accessJeremy Huddleston Sequoia1-3/+1
2016-05-30fserve: Silence a -Wformat warningJeremy Huddleston Sequoia1-2/+2
2016-05-30bitmap: Bail out on invalid input to FontFileMakeDir instead of calling callo...Jeremy Huddleston Sequoia1-0/+4
2016-05-30FreeType: Correct an allocation sizeJeremy Huddleston Sequoia1-1/+1
2016-05-30Fix warningsKeith Packard3-9/+8
2015-10-21Use NO_WEAK_SYMBOLS instead of -flat_namespaceJeremy Huddleston Sequoia1-10/+1
2015-10-21stubs: Add missing externs for declarations in the NO_WEAK_SYMBOLS && PIC stu...Jeremy Huddleston Sequoia1-23/+23
2015-10-20Fix is*() usage.Thomas Klausner4-11/+11
2015-07-28bdfReadCharacters: Allow negative DWIDTH valuesBenjamin Tissoires1-1/+1
2015-03-17bdfReadCharacters: ensure metrics fit into xCharInfo struct [CVE-2015-1804]Alan Coopersmith1-2/+24
2015-03-17bdfReadCharacters: bailout if a char's bitmap cannot be read [CVE-2015-1803]Alan Coopersmith1-1/+4
2015-03-17bdfReadProperties: property count needs range check [CVE-2015-1802]Alan Coopersmith1-1/+3
2015-02-26Set close-on-exec for font file I/O.Christos Zoulas2-6/+11
2014-11-05Use 'imdent' to realign cpp indentation levels in fslibos.hAlan Coopersmith1-109/+109
2014-11-05Remove unneeded checks for #ifndef X_NOT_POSIXAlan Coopersmith1-2/+0
2014-06-27Make shared library work on Cygwin/MinGWYaakov Selkowitz25-28/+182
2014-05-23Use default glyphs when getting 16-bit font with 8-bit textKeith Packard1-1/+5
2014-05-23Don't build unused code in bitmapfunc.c if all bitmap formats are disabledAlan Coopersmith1-0/+15
2014-05-23Don't compile bitmap source files for disabled formatsAlan Coopersmith1-7/+17
2014-05-23Drop imake/monolithic compatibility #define mappingAlan Coopersmith2-32/+0
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_list_info()Alan Coopersmith1-0/+54
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_list()Alan Coopersmith1-0/+15
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_glyphs()Alan Coopersmith1-1/+28
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_extent_info()Alan Coopersmith1-0/+10
2014-05-12CVE-2014-0211: integer overflow in fs_alloc_glyphs()Alan Coopersmith1-1/+6
2014-05-12CVE-2014-0211: integer overflow in fs_read_extent_info()Alan Coopersmith1-1/+11
2014-05-12CVE-2014-0210: unvalidated length fields in fs_read_query_info()Alan Coopersmith2-0/+46
2014-05-12CVE-2014-0211: Integer overflow in fs_get_reply/_fs_start_readAlan Coopersmith1-0/+18
2014-05-12CVE-2014-0210: unvalidated lengths when reading replies from font serverAlan Coopersmith1-6/+38
2014-05-12CVE-2014-0210: unvalidated length in _fs_recv_conn_setup()Alan Coopersmith1-2/+18
2014-05-12CVE-2014-0209: integer overflow of realloc() size in lexAlias()Alan Coopersmith1-0/+4
2014-05-12CVE-2014-0209: integer overflow of realloc() size in FontFileAddEntry()Alan Coopersmith1-0/+5
2014-04-24fs_send_open_font needs to allow namelen of 0 when FontReopen is setAlan Coopersmith1-1/+1
2014-04-23Clean up warnings when src/fc is built with -DDEBUGAlan Coopersmith1-3/+1
2014-04-23Allow enabling src/fc DEBUG helpers via CPPFLAGSAlan Coopersmith1-1/+2
2014-04-21Check if pointer returned by BufFileCreate is NULL before writing to itAlan Coopersmith1-2/+4
2014-04-11Fix buffer read overrunPeter Harris1-1/+1
2014-01-29Warning fixes.Keith Packard13-46/+52
2014-01-08Remove redundant setting of 'len' in SPropRecValList_add_by_font_capAlan Coopersmith1-1/+0
2014-01-08Initialize (unused) data field in fsListCataloguesReq before sending it.Alan Coopersmith1-0/+1
2014-01-08Remove redundant declaration of FontFileStartListFonts()Alan Coopersmith1-5/+0
2014-01-08Fix unused variable 'dir' warningsAlan Coopersmith2-7/+0
2013-12-30Limit additional sscanf strings to fit buffer sizesAlan Coopersmith1-3/+11
2013-12-30CVE-2013-6462: unlimited sscanf overflows stack buffer in bdfReadCharacters()Alan Coopersmith1-1/+1
2013-12-13Don't leak old allocation if realloc fails to enlarge itAlan Coopersmith2-11/+18
2013-11-22Make serverGeneration unsignedJulien Cristau1-1/+1
2013-11-01Replace malloc(strlen)+strcpy/strcat calls with strdupAlan Coopersmith3-12/+5
2013-11-01xstrdup -> strdupAlan Coopersmith3-31/+2
2013-06-24Require ANSI C89 pre-processor, drop pre-C89 token pasting supportAlan Coopersmith1-5/+0
2013-06-02Protect config.h inclusion with ifdef HAVE_CONFIG_H, like usual.Thomas Klausner1-0/+2