[bug #23826] Segmentation fault when opening/browsing file

From: Roland Illig <INVALID NOREPLY gnu org>
To: Roland Illig <roland illig gmx de>, Tobias Mieth <tobias mieth gmx de>, mc-devel gnome org
Subject: [bug #23826] Segmentation fault when opening/browsing file
Date: Fri, 19 Dec 2008 10:46:32 +0000

Update of bug #23826 (project mc):

                  Status:                    None => Invalid                
             Open/Closed:                    Open => Closed                 

    _______________________________________________________

Follow-up Comment #1:

I cannot reproduce the bug with the current mc from CVS HEAD, nor with the
"upstream" git archive that Debian uses. But when I apply the Debian patch, it
crashes.

You can tell the Debian people that it crashes because of:

#0  0x00007fa499e76f90 in strchr () from /lib/libc.so.6
#1  0x000000000045d51f in my_type_of (c=1048064) at edit.c:1821
#2  0x0000000000460372 in edit_execute_cmd (edit=0x22997c0, 
    command=<value optimized out>, char_for_insertion=<value optimized out>)
    at edit.c:1869
#3  0x00000000004619fa in edit_execute_key_command (edit=0x22997c0,
command=9, 
    char_for_insertion=4294967295) at edit.c:2293

my_type_of(c) is called with c == 1046064 (a strange value). This is not zero
(for which a check exists) but later used as an "unsigned char" in strchr(),
where it is interpreted as zero. Because of that, the function my_type_of
tries to read behind the option_chars_move_whole_word string, which leads to
the segmentation fault.

Please, if you use Debian, don't complain to the upstream authors. Complain
to the Debian people.

    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/bugs/?23826>

_______________________________________________
  Nachricht geschickt von/durch Savannah
  http://savannah.gnu.org/

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]