GNOME Bugzilla – Bug 317362
should not allow overlong window titles
Last modified: 2006-03-29 04:52:52 UTC
Setting an enormously long window title can crash the window manager or even the X server. (See also https://bugzilla.mozilla.org/show_bug.cgi?id=167315 .) Gtk+ should prevent this from happening through gtk_window_set_title. Steps to reproduce: 0) Compile & run the attached testcase 1) Watch metacity crash repeatedly
Created attachment 52738 [details] testcase
I have a stack trace of the Metacity crashing with Christian's testcase in bug 317364; it appears to crash somewhere deep into pango and cairo but doesn't mean much to me. *shrug*
Hmm, I have not been able to crash server or client by feeding long strings to pango_renderer_draw_layout(). It does get very slow though, so maybe we should do some clipping.
Here it crashes with length >= 0x5553; Elijah said in bug 317364 that he needed a much higher value to crash. Also the window list applet crashes when hiding the tooltip with the window title, with a trace similar to the one Elijah has in bug 317364.
The crash has been worked around inside cairo, as far as I know.