freetype: uninitialized pointer use in BDF parser _bdf_parse_glyphs() (#35641)

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap write operation and memory corruption or possibly execute arbitrary code via crafted glyph or bitmap data in a BDF font that lacks an ENCODI...