[Bug 567643] SIGSEGV inside Pango in gtk_label_size_request with large multiline string running downloaded copy of OpenXenCenter

bugzilla at redhat.com bugzilla at redhat.com
Tue Feb 23 18:51:38 UTC 2010 

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


https://bugzilla.redhat.com/show_bug.cgi?id=567643

Dave Malcolm <dmalcolm at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |besfahbo at redhat.com,
                   |                            |fonts-bugs at lists.fedoraproj
                   |                            |ect.org
          Component|python                      |pango
         AssignedTo|dmalcolm at redhat.com         |besfahbo at redhat.com
            Summary|[abrt] crash in             |SIGSEGV inside Pango in
                   |python-2.6.2-2.fc12         |gtk_label_size_request with
                   |                            |large multiline string
                   |                            |running downloaded copy of
                   |                            |OpenXenCenter
               Flag|                            |needinfo?(btucker at osteopath
                   |                            |ic.org)

--- Comment #2 from Dave Malcolm <dmalcolm at redhat.com> 2010-02-23 13:51:36 EST ---
Thank you for reporting this bug.

How reproducible is this problem?  If you run the program from a terminal, is
an error message printed?

What is the output of running the following command?
  rpm -q pygtk2 pango gtk2

Looking at the backtrace, it looks like the problem occurred in thread #1 in
"can_break_at" within Pango.  It looks like Pango is trying to calculate the
size of a GtkLabel, but that label has an extremely large multiline string
(assuming that I'm reading this correctly; I'm referring to frame #3 of thread
#1 where I see this string fragment:
0x39eed2f "\nIntel(R) Xeon(R) CPU", ' ' <repeats 11 times>, "E5530  @
2.40GHz\nIntel(R) Xeon(R) CPU", ' ' <repeats 11 times>, "E5530  @
2.40GHz\nIntel(R) Xeon(R) CPU", ' ' <repeats 11 times>, "E5530  @
2.40GHz\nIntel(R) Xeon(R) CPU", ' ' <repeats 11 times>, "E5530  @
2.40GHz\nIntel(R"...

Does pango needs to be bullet-proofed against this kind of input? 
Alternatively, the process is using: 
  /home/bruce/Downloads/openxencenter/oxcgtkvnc.so
  ./liboxcgtk-vnc-1.0.so.0
and perhaps these embed their own copy of Pango.

Reassigning component from "python" to "pango";  hopefully the pango maintainer
will be able to figure this out further or reassign as necessary.

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the fonts-bugs mailing list