Fix potential vulnerable cloned function #299

npt-1707 · 2025-12-21T21:15:50Z

npt-1707 commented

2025-12-21 21:15:50 +00:00

First-time contributor

Summary

Our tool detected a potential overflow vulnerability in contrib/sdk/sources/freetype/src/sfnt/ttsbit.c which was cloned from 257c270bd2 but did not receive the security patch. The original issue was reported and fixed under CVE-2014-9666.

Proposed Fix

Apply the same patch as the one in freetype/freetype to eliminate the vulnerability.

Reference

https://nvd.nist.gov/vuln/detail/CVE-2014-9666
257c270bd2

### Summary Our tool detected a potential overflow vulnerability in `contrib/sdk/sources/freetype/src/sfnt/ttsbit.c` which was cloned from https://github.com/freetype/freetype/commit/257c270bd25e15890190a28a1456e7623bba4439 but did not receive the security patch. The original issue was reported and fixed under [CVE-2014-9666](https://nvd.nist.gov/vuln/detail/CVE-2014-9666). ### Proposed Fix Apply the same patch as the one in freetype/freetype to eliminate the vulnerability. ### Reference https://nvd.nist.gov/vuln/detail/CVE-2014-9666 https://github.com/freetype/freetype/commit/257c270bd25e15890190a28a1456e7623bba4439

npt-1707 added 1 commit 2025-12-21 21:15:50 +00:00

contrib/sdk/sources/freetype/src/sfnt/ttsbit.c: (tt_sbit_decoder_init): Protect against addition and multiplication overflow.

Build system / Check kernel codestyle (pull_request) Has been cancelled

Details

Build system / Build (pull_request) Has been cancelled

Details

ccf97296d0

mxlgv commented

2026-01-07 01:29:13 +00:00

See: #300 (comment)

See: https://git.kolibrios.org/KolibriOS/kolibrios/pulls/300#issuecomment-3798

mxlgv closed this pull request