[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [ft-devel] details on iPhone exploit caused by FreeType?
|
From: |
Алексей Подтележников |
|
Subject: |
Re: [ft-devel] details on iPhone exploit caused by FreeType? |
|
Date: |
Thu, 14 Jul 2011 20:42:21 -0400 |
On Thu, Jul 14, 2011 at 12:00 PM, Werner LEMBERG <address@hidden> wrote:
>
> Here's the answer from Matthias.
>
>> 1) Fix2Int does shift before conversion. How does it solve the
>> undefined behavior with negative numbers?
>
> After the shift, the upper half is undefined.
This is wrong. Undefined means undefined in all halves.
Realistically though, the top bit in the lower part is still undefined,
depending if the sign bit is shifted or not.
I think it should be (FT_Int) ( (FT_UInt)(f) >> 16 )
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, (continued)
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Алексей Подтележников, 2011/07/08
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Werner LEMBERG, 2011/07/09
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Алексей Подтележников, 2011/07/09
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Werner LEMBERG, 2011/07/09
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Алексей Подтележников, 2011/07/09
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Werner LEMBERG, 2011/07/10
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Алексей Подтележников, 2011/07/11
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Werner LEMBERG, 2011/07/11
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Алексей Подтележников, 2011/07/14
- Re: [ft-devel] details on iPhone exploit caused by FreeType?, Werner LEMBERG, 2011/07/14
- Re: [ft-devel] details on iPhone exploit caused by FreeType?,
Алексей Подтележников <=
Re: [ft-devel] details on iPhone exploit caused by FreeType?, Alan Coopersmith, 2011/07/28