Attachment #192438 for bug #271234

Lines 270-275 Link Here

(-)freetype-pre1.4/lib/ttgload.c.freetype-pre1.4-CVE-2006-1861-null-pointer (+4 lines)
270	j = 0;	270	j = 0;
271	flag = exec->pts.touch;	271	flag = exec->pts.touch;
272		272
		273	/* CVE-2006-1861 */
		274	if ( flag == NULL )
		275	return TT_Err_Invalid_Composite; /* for lack of a better err code */
		276
273	while ( j < n_points )	277	while ( j < n_points )
274	{	278	{
275	Byte c, cnt;	279	Byte c, cnt;

Return to bug 271234