From owner-cvs-all@FreeBSD.ORG  Sat Oct 16 17:00:28 2004
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 985CF16A4CE; Sat, 16 Oct 2004 17:00:28 +0000 (GMT)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 8BA4B43D2F; Sat, 16 Oct 2004 17:00:28 +0000 (GMT)
	(envelope-from glewis@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.11/8.12.11) with ESMTP id i9GH0Shl021763;
	Sat, 16 Oct 2004 17:00:28 GMT
	(envelope-from glewis@repoman.freebsd.org)
Received: (from glewis@localhost)
	by repoman.freebsd.org (8.12.11/8.12.11/Submit) id i9GH0SGn021762;
	Sat, 16 Oct 2004 17:00:28 GMT
	(envelope-from glewis)
Message-Id: <200410161700.i9GH0SGn021762@repoman.freebsd.org>
From: Greg Lewis <glewis@FreeBSD.org>
Date: Sat, 16 Oct 2004 17:00:28 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org,
	cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: ports/java/jdk14/files
	patch-awt_fontmanager_fontObject.cpp
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Oct 2004 17:00:28 -0000

glewis      2004-10-16 17:00:28 UTC

  FreeBSD ports repository

  Added files:
    java/jdk14/files     patch-awt_fontmanager_fontObject.cpp 
  Log:
  . In the ReadChunk() function, change an assert() to be a "test for a
    condition and return NULL".  Take account of the NULL in the
    appropriate place (which is somewhat worrisome in itself since
    ReadChunk() has always had the possibility of returning NULL).
    This makes loading a font file a little more resilient to specially
    crafted font data which can be used, for example, by an applet to
    crash the browser plugin by triggering the assert().  Such an applet
    was mentioned on Bugtraq:
  
    http://www.securityfocus.com/archive/1/367331/2004-06-26/2004-07-02/0
  
    and can be found at
  
    http://www.illegalaccess.org/cms/?q=node/view/9
  
    This change stops the browser plugin from crashing.
  . Fix some warnings regarding formats in debugging printf's.
  
  Revision  Changes    Path
  1.1       +53 -0     ports/java/jdk14/files/patch-awt_fontmanager_fontObject.cpp (new)