After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 350555 - Script-Fu lava close GIMP
Script-Fu lava close GIMP
Status: RESOLVED FIXED
Product: GIMP
Classification: Other
Component: General
2.3.x
Other All
: Normal major
: 2.4
Assigned To: GIMP Bugs
GIMP Bugs
: 350226 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2006-08-09 10:41 UTC by katoda
Modified: 2008-01-15 14:08 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description katoda 2006-08-09 10:41:47 UTC 
While using Filter->Rendering->Lava, GIMP crashes during oil painting.
Comment 1 Sven Neumann 2006-08-09 14:53:07 UTC 
plug_in_params_to_args() is being called with pspecs=NULL and n_pspecs=0, which seems to be allowed according to the checks at the start of the function. The function doesn't correctly deal with this situation though, thus the crash:

+ Trace 70136

  • #7 plug_in_params_to_args
  • #8 gimp_plug_in_handle_message
  • #9 gimp_plug_in_recv_message
    at plug-in-params.c line 70 






Comment 2


Michael Natterer





          2006-08-09 21:23:11 UTC
        



Fixed in CVS:

2006-08-09  Michael Natterer  <mitch@gimp.org>

	* app/plug-in/plug-in-params.c (plug_in_params_to_args): it's a
	bad idea to access an array before checking if it's long enough.
	Fixes bug #350555. Also added some comments, the logic here is
	really weird.







Comment 3


Michael Natterer





          2006-08-10 08:59:06 UTC
        



Fixed the bug triggering the crash:

2006-08-10  Michael Natterer  <mitch@gimp.org>

	* plug-ins/common/oilify.c (run): the plug-in has one return
	value, not two (the trigger of the crasher in bug #350555).







Comment 4


Sven Neumann





          2006-08-15 06:26:57 UTC
        



*** Bug 350226 has been marked as a duplicate of this bug. ***