https://bugzilla.redhat.com/show_bug.cgi?id=1241552
Bug ID: 1241552 Summary: Buffer overrun with pango_ft2_render_layout_line() with undersized FT_Bitmap. Product: Fedora Version: 22 Component: pango Severity: high Assignee: tagoh@redhat.com Reporter: peter@peter-b.co.uk QA Contact: extras-qa@fedoraproject.org CC: fonts-bugs@lists.fedoraproject.org, i18n-bugs@lists.fedoraproject.org, tagoh@redhat.com
Description of problem:
pango installed from the F22 "updates" repo contains a critical bug that causes a buffer overrun on 64-bit architectures when rendering a glyph into a FT_Bitmap that is too small.
When pango 1.36.8 is built from source on the same system, no buffer overrun is observed (using valgrind).
Version-Release number of selected component (if applicable):
pango-1.36.8-5.fc22.x86_64
How reproducible:
Always.
Steps to Reproduce:
See http://quality.runrev.com/show_bug.cgi?id=15581 for detailed instructions for reproducing, plus logs.