Bug 265253 – particular mail crahes evolution

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 265253 - particular mail crahes evolution


Summary:	particular mail crahes evolution


Status:	RESOLVED DUPLICATE of bug 255883

Product:	GtkHtml
Classification:	Other
Component:	Rendering
Version:	unspecified
Hardware:	Other All

Importance:	Normal blocker
Target Milestone:	2.0.0
Assigned To:	gtkhtml-maintainers
QA Contact:	Evolution QA team

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2004-09-03 08:38 UTC by Radek Doulik
Modified:	2004-09-29 19:21 UTC

See Also:
GNOME target:	---
GNOME version:	---

Attachments
crashing mail (43.29 KB, application/octet-stream) 2004-09-03 08:38 UTC, Radek Doulik	Details

Description Radek Doulik 2004-09-03 08:38:14 UTC

attached mail was sent to us by Alan Cox

Comment 1 Radek Doulik 2004-09-03 08:38:58 UTC

Created attachment 44161 [details]
crashing mail

Comment 2 Radek Doulik 2004-09-03 08:41:40 UTC

Hi Alan,

please could you add information to this bugreport? Which version of
evolution does it crash. If you have a backtrace, please attach it to
this bugreport.

Thanks
Radek

Comment 3 Radek Doulik 2004-09-03 16:50:01 UTC

Info from Alan:

Unfortunately my account on your bugzilla is broken (has been for a long
long time but nobody ever cared to fix it)

["The name  is not a valid username. Either you misspelled it, or the
person has not registered for a Bugzilla account."]
(even though it will send me the password for it!)

Anyway the data you want is
----------------------------
2.6.8 kernel, Fedora Core 2, Evolution 1.4.6 (RH 1.4.6-2). Our own
Evolution package maintainer has duplicated this although it seems quite
sensitive to memory layout. No traces are produced it just goes "pop"

Comment 4 Gerardo Marin 2004-09-04 06:17:38 UTC

Tested in 1.5.94.2 on SLES and NLD: it takes a noticeable amount of
time to render, slowing all the UI, but finally appears with no problem.
Tested in evolution1.5-1.5.93.0.200408170632-0.snap.ximian.6.1 running
on Red Hat 9.0: No crash or noticeable sign of delay.
Tested in evolution-1.4.6.0.200404240701-0.snap.ximian.6.1 running on
Red Hat 9.0 shows no problem at all.

valgrind shows no misbehavior at all.

We certainly need a backtrace since this is not reproducible.
Alan: if you have trouble accessing this report do not hesitate to
send information to Radek or myself

RH gtkhtml packages are

gtkhtml3.1-3.1.20.0.200408170632-0.snap.ximian.6.1
libgtkhtml3.1_7-3.1.13.0.200405171248-0.snap.ximian.6.1
libgtkhtml3.1_10-3.1.16.0.200406241827-0.snap.ximian.6.1
libgtkhtml3.0_4-3.0.10.0.200405020658-0.snap.ximian.6.1
libgtkhtml3.1_9-3.1.14.0.200406021442-0.snap.ximian.6.1
libgtkhtml3.1_11-3.1.20.0.200408170632-0.snap.ximian.6.1
libgtkhtml3.0_2-3.0.9-0.ximian.6.1
gtkhtml3.0-devel-3.0.10.0.200405020658-0.snap.ximian.6.1
gtkhtml-1.1.8-5
gtkhtml2-devel-2.2.4-0.ximian.6.4
gtkhtml3.1-devel-3.1.20.0.200408170632-0.snap.ximian.6.1

Comment 5 Gerardo Marin 2004-09-04 06:18:48 UTC

Moving to needinfo. We certainly need it.

Comment 6 alan 2004-09-04 17:49:36 UTC

No idea about RH9. That has the image library holes so it wouldn't be
a problem there anyway. The environment we are seeing it reliably
under is current updated Fedora Core 2. It seems quite sensitive to
memory layout but our own maintainer can duplicate it

Evolution 1.4.6.2
GtkHTML3 3.0.10.1

I'll let you know what I hear back from the RH evolution maintainer
(dmalcolm@redhat)

Comment 7 JP Rosevear 2004-09-06 05:10:37 UTC

I talked briefly to Dave Malcolm about this and he was unable to
replicate, but he mentioned someone else could.  We'd love it if
valgrind could be run on this.

Comment 8 Dave Malcolm 2004-09-29 19:02:08 UTC

OK, here are some results from running valgrind on a FC2 test box; 
should I track down the pango-debuginfo package and rerun? (I'm not
too familiar with valgrind yet)

evolution-1.4.6-2
gtkhtml3-3.0.10-1
pango-1.4.0-2

Have to suppress the error limit due to _lots_ of errors on startup...

valgrind --num-callers=64 --tool=memcheck --run-libc-freeres=no
--alignment=8 --db-attach=no --error-limit=no /usr/bin/evolution-1.4

(lots of errors booting up)
Try viewing the suspect email:
==29421==
==29421== Invalid read of size 2
==29421==    at 0x1DA8D032: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0x1DA8D435: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0xBF079C: _pango_engine_shape_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0xBFE00D: pango_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C51FC: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C485A: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56CE6E9: html_iframe_new (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569A310: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569EC18: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==  Address 0x1DA8834A is not stack'd, malloc'd or (recently)
free'd
==29421==
==29421== Invalid read of size 4
==29421==    at 0xBEA0B9: pango_glyph_string_extents_range (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C438C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4827: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56CE6E9: html_iframe_new (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569A310: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569EC18: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5697BC8: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A06EA: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==  Address 0x1D457BA0 is 0 bytes after a block of size 80 alloc'd
==29421==    at 0x1B9054EA: realloc (vg_replace_malloc.c:197)
==29421==    by 0x930630: g_realloc (in /usr/lib/libglib-2.0.so.0.400.0)
==29421==    by 0xBE9E0C: pango_glyph_string_set_size (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x1DA8D14A: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0x1DA8D435: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0xBF079C: _pango_engine_shape_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0xBFE00D: pango_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C51FC: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C485A: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==
==29421== Invalid read of size 4
==29421==    at 0xBEA12D: pango_glyph_string_extents_range (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C438C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4827: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56CE6E9: html_iframe_new (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569A310: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569EC18: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5697BC8: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A06EA: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==  Address 0x1D457BA4 is 4 bytes after a block of size 80 alloc'd
==29421==    at 0x1B9054EA: realloc (vg_replace_malloc.c:197)
==29421==    by 0x930630: g_realloc (in /usr/lib/libglib-2.0.so.0.400.0)
==29421==    by 0xBE9E0C: pango_glyph_string_set_size (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x1DA8D14A: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0x1DA8D435: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0xBF079C: _pango_engine_shape_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0xBFE00D: pango_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C51FC: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C485A: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==
==29421== Invalid read of size 4
==29421==    at 0xBEA178: pango_glyph_string_extents_range (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C438C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4827: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56CE6E9: html_iframe_new (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569A310: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x569EC18: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5697BC8: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A06EA: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==  Address 0x1D457BA4 is 4 bytes after a block of size 80 alloc'd
==29421==    at 0x1B9054EA: realloc (vg_replace_malloc.c:197)
==29421==    by 0x930630: g_realloc (in /usr/lib/libglib-2.0.so.0.400.0)
==29421==    by 0xBE9E0C: pango_glyph_string_set_size (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x1DA8D14A: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0x1DA8D435: (within
/usr/lib/pango/1.4.0/modules/pango-hangul-fc.so)
==29421==    by 0xBF079C: _pango_engine_shape_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0xBFE00D: pango_shape (in
/usr/lib/libpango-1.0.so.0.399.1)
==29421==    by 0x56C51FC: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C485A: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C4901: html_text_request_word_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56C542C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567A7FE: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0CBE: html_object_calc_min_width (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x567B253: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x568026C: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56803E7: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56B0B11: html_object_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A1293: html_engine_calc_size (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A02C2: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A073F: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56A0807: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x5668949: gtk_html_stream_close (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x566F545: gtk_html_end (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x1C0FBB5F: (within
/usr/lib/evolution/1.4/components/libevolution-mail.so)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CE56D: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7453: g_signal_emit (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56691A3: (within /usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x56AED84:
html_g_cclosure_marshal_VOID__STRING_POINTER (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)
==29421==    by 0x99415F: g_closure_invoke (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A8194: (within /usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7156: g_signal_emit_valist (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x9A7543: g_signal_emit_by_name (in
/usr/lib/libgobject-2.0.so.0.400.0)
==29421==    by 0x56CF985: html_iframe_init (in
/usr/lib/libgtkhtml-3.0.so.4.0.0)

Comment 9 Radek Doulik 2004-09-29 19:12:19 UTC

so it looks like hangul pango crasher => duplicate

Comment 10 Radek Doulik 2004-09-29 19:13:07 UTC

it is fixed in pango 1.6

*** This bug has been marked as a duplicate of 255883 ***

Comment 11 Radek Doulik 2004-09-29 19:21:53 UTC

just to be sure, Alan, what version of pango do you have installed?