GNU bug report logs - #16140
24.3.50; GC tries to free invalid font objects

Previous Next

Package: emacs;

Reported by: Eli Zaretskii <eliz <at> gnu.org>

Date: Sat, 14 Dec 2013 09:52:01 UTC

Severity: normal

Tags: moreinfo

Merged with 16414, 17071, 17602, 17771

Found in versions 24.3.50, 24.3.91, 24.4.50

Fixed in version 24.3.93

Done: Glenn Morris <rgm <at> gnu.org>

Bug is archived. No further changes may be made.

Full log

Message #11 received at 16140 <at> debbugs.gnu.org (full text, mbox):

From: Dmitry Antipov <dmantipov <at> yandex.ru>
To: Eli Zaretskii <eliz <at> gnu.org>
Cc: 16140 <at> debbugs.gnu.org
Subject: Re: bug#16140: 24.3.50; GC tries to free invalid font objects
Date: Mon, 16 Dec 2013 19:26:59 +0400

On 12/16/2013 12:00 PM, Dmitry Antipov wrote:

> On 12/14/2013 01:51 PM, Eli Zaretskii wrote:
>
>> When I originally saw this, fnt->driver was NULL.  I added protection
>> against that, but then it crashed with non-NULL but still invalid
>> pointer.  Such pointers should never end up in font objects, so how
>> come they do?
>
> Hm...I've tried bloat-font quite a lot with my MinGW build, but didn't
> see anything similar.  Anyway, r115541 has an extra check for valid
> font driver pointer in font objects; if you hit this eassert, please
> let me know.

BTW, this may be caused by heap corruption, which I found and described
in Bug#16165.

Dmitry
This bug report was last modified 10 years and 285 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.