[cairo-bugs] [Bug 47245] New: Stack smashing in composite_boxes (trigger segfault if built with stack protector)

Mon Mar 12 11:28:00 PDT 2012

https://bugs.freedesktop.org/show_bug.cgi?id=47245

             Bug #: 47245
           Summary: Stack smashing in composite_boxes (trigger segfault if
                    built with stack protector)
    Classification: Unclassified
           Product: cairo
           Version: 1.10.3
          Platform: Other
        OS/Version: Linux (All)
            Status: NEW
          Severity: major
          Priority: medium
         Component: general
        AssignedTo: cworth at cworth.org
        ReportedBy: lucab at debian.org
         QAContact: cairo-bugs at cairographics.org

This is a forwarded bug from Inkscape bugtracker, please follow-up at
https://bugs.launchpad.net/inkscape/+bug/910100

It looks like some stack corruption is going on within composite_boxes(), which
triggers segfaults in Inkscape if built with stack protector enabled (as in
Ubuntu).

#4  0x00007ffff0673260 in __stack_chk_fail ()
   from /lib/x86_64-linux-gnu/libc.so.6
No symbol table info available.
#5  0x00007ffff16a3172 in composite_boxes (extents=0x7fffffffd510, 
    boxes=<optimized out>, compositor=<optimized out>)
    at
/build/buildd/cairo-1.11.3+git20120228.3c665102/src/cairo-spans-compositor.c:609

For the full backtrace and the original bug procedure, see the report on
launchpad.
A reduced crashing input-file is available there too.

-- 
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.