690541 – overflow in tranformation from fixed point formats 26.6 to 24.8

Bug 690541 - overflow in tranformation from fixed point formats 26.6 to 24.8

Summary: overflow in tranformation from fixed point formats 26.6 to 24.8

Status:	CONFIRMED

Alias:	None

Product:	Ghostscript
Classification:	Unclassified
Component:	Graphics Library (show other bugs)
Version:	master
Hardware:	Macintosh MacOS X

Importance:	P4 normal
Assignee:	Chris Liddell (chrisl)

URL:
Keywords:

Duplicates (1):	690460 (view as bug list)
Depends on:
Blocks:

Reported:	2009-06-16 07:16 UTC by Henry Stiles
Modified:	2021-02-14 17:18 UTC (History)
CC List:	3 users (show)

See Also:
Customer:
Word Size:	---

Attachments
c310.bin.asm (185 bytes, application/octet-stream) 2009-06-16 07:20 UTC, Henry Stiles	Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Henry Stiles 2009-06-16 07:16:04 UTC

using the attachment and running pcl6 with any device at 600 dpi, put a
conditional (x < 0) breakpoint on gx_path_add_line_points.  Two stack frames up
the argument was converted from 26.6 to float, one stack frame up the float is
converted to 24.8 and overflows.  The problem is systemic, I don't see any range
checking when changing fixed point formats.

Comment 1 Henry Stiles 2009-06-16 07:20:22 UTC

Created attachment 5114 [details]
c310.bin.asm

Comment 2 Henry Stiles 2009-06-16 07:33:13 UTC

*** Bug 690460 has been marked as a duplicate of this bug. ***

Comment 3 Henry Stiles 2009-06-17 10:19:30 UTC

this bug is masked by rev 9798.

Comment 4 Ken Sharp 2010-09-08 13:48:50 UTC

Passing this one to Chris for future consideration, especially in light of moving to FreeType for PCL & XPS as well as PostScript/PDF.

Comment 5 Peter Cherepanov 2021-02-14 17:18:50 UTC

No files in the ghostpdl directory currently contain the string  "gx_path_add_line_points". It is not clear how to reproduce this bug report.