GNU bug report logs - #5609
23.1.92; segfault in composition_compute_stop_pos

Previous Next

Package: emacs;

Reported by: Sven Joachim <svenjoac <at> gmx.de>

Date: Sat, 20 Feb 2010 17:09:03 UTC

Severity: normal

Done: Chong Yidong <cyd <at> stupidchicken.com>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Kenichi Handa <handa <at> m17n.org>
To: YAMAMOTO Mitsuharu <mituharu <at> math.s.chiba-u.ac.jp>
Cc: svenjoac <at> gmx.de, 5609 <at> debbugs.gnu.org
Subject: bug#5609: 23.1.92; segfault in composition_compute_stop_pos
Date: Fri, 26 Feb 2010 10:23:04 +0900

In article <wlk4u051xc.wl%mituharu <at> math.s.chiba-u.ac.jp>, YAMAMOTO Mitsuharu <mituharu <at> math.s.chiba-u.ac.jp> writes:

> Actually I suspected this out-of-boundary `endpos' value in
> http://lists.gnu.org/archive/html/bug-gnu-emacs/2010-01/msg00522.html

>   I suspect the problematic case is that `charpos + field_width' in
>   reseat_to_string exceeds the length of the given string.  The value of
>   `field_width' is 12 by default when displaying buffer names.

Ya, at that time, I fixed only some other part related the
same problem.

> Also, I guess the upper limit of `endpos' is `SCHARS (it->string)'
> instead of `charpos + SCHARS (it->string)' at line 5614 below.  Could
> you confirm if it is correct?

Of course, you are right!  I've just installed a fix.

---
Kenichi Handa
handa <at> m17n.org
This bug report was last modified 15 years and 162 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.