1. 02 Sep, 2020 1 commit
    • Michal's avatar
      evict just font faces owned solely by cache · e79cbe0a
      Michal authored
      These are font faces with reference count 1. Their scaled fonts were already evicted from cairo holdover cache. This should be more functionally equivalent to old behaviour except that eviction is done lazily and not eagerly.
      e79cbe0a
  2. 01 Sep, 2020 2 commits
  3. 30 Aug, 2020 2 commits
  4. 29 Aug, 2020 4 commits
    • Tobias Deiminger's avatar
      Splash bilinear scaling: Don't try read behind end · 6a7dae79
      Tobias Deiminger authored
      Source line iteration in Splash::scaleImageYuXuBilinear already tries
      to prevent a read behind source image end, as the comment indicates it
      and as it's conceptually reasonable. But the check for (currentSrcRow < srcHeight)
      is wrong and doesn't do what it claims.
      
      currentSrcRow will only ever increase to srcHeight - 1 after
      scaledHeight iterations. Therefore the check always evaluates to
      true, and src() is aways called. Intention was to prevented the line
      fetch for the last run and leave line2 identical to line1 (the "extra padding").
      
      Nothing bad happened, because SplashOutputDev::imageSrc and alphaImageSrc
      gracefully handle the behind-end read. Should be corrected either.
      6a7dae79
    • Albert Astals Cid's avatar
      CI: Update qt6 archives · 78e6050a
      Albert Astals Cid authored
      78e6050a
    • Albert Astals Cid's avatar
      qt6: workaround QTBUG-86318 · a9fc7f0b
      Albert Astals Cid authored
      a9fc7f0b
    • Albert Astals Cid's avatar
      qt6: Remove unused include · 418a9373
      Albert Astals Cid authored
      418a9373
  5. 27 Aug, 2020 2 commits
  6. 26 Aug, 2020 1 commit
  7. 25 Aug, 2020 2 commits
  8. 24 Aug, 2020 3 commits
  9. 22 Aug, 2020 2 commits
  10. 21 Aug, 2020 9 commits
  11. 19 Aug, 2020 1 commit
  12. 18 Aug, 2020 6 commits
  13. 10 Aug, 2020 1 commit
  14. 09 Aug, 2020 2 commits
    • Even Rouault's avatar
      8c4d5da8
    • Even Rouault's avatar
      JBIG2: avoid abort() on large memory allocation · 9e853438
      Even Rouault authored
      Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24772
      
      When numInputSyms + numNewSyms is large enough, a fatal out of memory
      allocation can occur in JArithmeticDecoderStats() constructor per
      
      ```
          #0 0xf7f6bf19 in [vdso]
          #1 0xf7d40d08 in gsignal (/lib32/libc.so.6+0x2bd08)
          #2 0xf7d42206 in abort (/lib32/libc.so.6+0x2d206)
          #3 0xbdc0049 in gmalloc(unsigned int, bool) gdal/poppler/goo/gmem.h:52:5
          #4 0xbdf3c61 in gmallocn(int, int, bool) gdal/poppler/goo/gmem.h:119:12
          #5 0xc1391fd in JArithmeticDecoderStats::JArithmeticDecoderStats(int) gdal/poppler/poppler/JArithmeticDecoder.cc:36:30
          #6 0xc1130d5 in JBIG2Stream::resetIntStats(int) gdal/poppler/poppler/JBIG2Stream.cc:4052:25
          #7 0xc1083df in JBIG2Stream::readSymbolDictSeg(unsigned int, unsigned int, unsigned int*, unsigned int) gdal/poppler/poppler/JBIG2Stream.cc:1624:9
          #8 0xc105305 in JBIG2Stream::readSegments() gdal/poppler/poppler/JBIG2Stream.cc:1318:18
          #9 0xc103f5a in JBIG2Stream::reset() gdal/poppler/poppler/JBIG2Stream.cc:1142:5
      ```
      
      Avoid it and return nicely.
      9e853438
  15. 08 Aug, 2020 2 commits