Mark low-level text classes as security critical

These files process raw end user provided data and apply structure to it, through layout and Unicode algorithms. Extra care should be taken when reviewing changes to these files. Pick-to: 6.8 6.9 Change-Id: Iba86aec1a185bbbcd40aa2b8d4d0d839bb99ba0d Reviewed-by: Eirik Aavitsland <[email protected]>
author: Eskil Abrahamsen Blomfeldt <[email protected]> 2025-03-10 13:39:09 +0100
committer: Eskil Abrahamsen Blomfeldt <[email protected]> 2025-03-11 17:01:14 +0100
commit: 2198cdc40630713670064334fb34dc2255980800 (patch)
tree: fdd9c3e8a64402a728bfea4b0d8be45099b01c58
parent: 6704e55a9c04014097cc2e90fd75b20ae5da56c8 (diff)
2 files changed, 2 insertions, 0 deletions
diff --git a/src/gui/text/qtextengine.cpp b/src/gui/text/qtextengine.cpp
index 293d4485bb8..70176a0a7bf 100644
--- a/src/gui/text/qtextengine.cpp
+++ b/src/gui/text/qtextengine.cpp
@@ -1,5 +1,6 @@
 // Copyright (C) 2021 The Qt Company Ltd.
 // SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
+// Qt-Security score:critical reason:data-parser
 
 #include <QtGui/private/qtguiglobal_p.h>
 #include "qdebug.h"
diff --git a/src/gui/text/qtextlayout.cpp b/src/gui/text/qtextlayout.cpp
index 46ba2e69e3c..3e48ad706ce 100644
--- a/src/gui/text/qtextlayout.cpp
+++ b/src/gui/text/qtextlayout.cpp
@@ -1,5 +1,6 @@
 // Copyright (C) 2016 The Qt Company Ltd.
 // SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
+// Qt-Security score:critical reason:data-parser
 
 #include "qtextlayout.h"
 #include "qtextengine_p.h"
author	Eskil Abrahamsen Blomfeldt <[email protected]>	2025-03-10 13:39:09 +0100
committer	Eskil Abrahamsen Blomfeldt <[email protected]>	2025-03-11 17:01:14 +0100
commit	2198cdc40630713670064334fb34dc2255980800 (patch)
tree	fdd9c3e8a64402a728bfea4b0d8be45099b01c58
parent	6704e55a9c04014097cc2e90fd75b20ae5da56c8 (diff)