mirror of https://github.com/google/oss-fuzz.git
d83e3f543d
The upstream build of the fuzzer currently builds freetype --without-zlib and --without-png so these are not needed. In addition, because of the way these dependencies are used they must be built with the sanitizer in order to detect interesting issues like CVE-2020-15999, where FreeType may call into libpng incorrectly but it is libpng which actually does the reads and writes. This has been proposed upstream at https://github.com/freetype/freetype2-testing/pull/86 which uses prefixes to ensure that the system symbols are never used, but it would be beneficial to not have them available at all. |
||
|---|---|---|
| .. | ||
| Dockerfile | ||
| build.sh | ||
| project.yaml | ||