After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 702267 - Gnumeric segfaults in dim_start
Gnumeric segfaults in dim_start
Status: RESOLVED FIXED
Product: Gnumeric
Classification: Applications
Component: General
git master
Other Linux
: Normal critical
: ---
Assigned To: Jody Goldberg
Jody Goldberg
Depends on:
Blocks:
 
 
Reported: 2013-06-14 13:53 UTC by jutaky
Modified: 2013-06-14 14:35 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description jutaky 2013-06-14 13:53:45 UTC 
This one is actually a sample I intended to fuzz, but the sample itself crashes Gnumeric.

Git versions of glib, libgsf, libxml2, goffice and gnumeric.

Test case: http://test.progysm.com/browser.gnumeric


Program received signal SIGSEGV, Segmentation fault.
0x00007ffff79a4e5d in dim_start (xin=0x7fffffffe150, attrs=0x898370) at sheet-object-graph.c:953
953		for (i = 0; i < desc->series.num_dim; i++)
(gdb) bt

+ Trace 232058

  • #0 dim_start
    at sheet-object-graph.c line 953
  • #1 push_child
    at gsf-libxml.c line 648
  • #2 lookup_child
    at gsf-libxml.c line 684
  • #3 gsf_xml_in_start_element
    at gsf-libxml.c line 758
  • #4 xmlParseStartTag__internal_alias
    at parser.c line 8612
  • #5 xmlParseElement__internal_alias
    at parser.c line 9975
  • #6 xmlParseContent__internal_alias
    at parser.c line 9885
  • #7 xmlParseElement__internal_alias
    at parser.c line 10058
  • #8 xmlParseContent__internal_alias
    at parser.c line 9885
  • #9 xmlParseElement__internal_alias
    at parser.c line 10058
  • #10 xmlParseContent__internal_alias
    at parser.c line 9885
  • #11 xmlParseElement__internal_alias
    at parser.c line 10058
  • #12 xmlParseContent__internal_alias
    at parser.c line 9885
  • #13 xmlParseElement__internal_alias
    at parser.c line 10058
  • #14 xmlParseContent__internal_alias
    at parser.c line 9885
  • #15 xmlParseElement__internal_alias
    at parser.c line 10058
  • #16 xmlParseContent__internal_alias
    at parser.c line 9885
  • #17 xmlParseElement__internal_alias
    at parser.c line 10058
  • #18 xmlParseContent__internal_alias
    at parser.c line 9885
  • #19 xmlParseElement__internal_alias
    at parser.c line 10058
  • #20 xmlParseContent__internal_alias
    at parser.c line 9885
  • #21 xmlParseElement__internal_alias
    at parser.c line 10058
  • #22 xmlParseContent__internal_alias
    at parser.c line 9885
  • #23 xmlParseElement__internal_alias
    at parser.c line 10058
  • #24 xmlParseContent__internal_alias
    at parser.c line 9885
  • #25 xmlParseElement__internal_alias
    at parser.c line 10058
  • #26 xmlParseDocument__internal_alias
    at parser.c line 10742
  • #27 gsf_xml_in_doc_parse
    at gsf-libxml.c line 1280
  • #28 read_file_common
    at xml-sax-read.c line 3342
  • #29 gnm_xml_file_open
    at xml-sax-read.c line 3471
  • #30 go_file_opener_open_real
    at app/file.c line 159
  • #31 go_file_opener_open
    at app/file.c line 417
  • #32 workbook_view_new_from_input
    at workbook-view.c line 1272
  • #33 workbook_view_new_from_uri
    at workbook-view.c line 1332
  • #34 main
    at main-application.c line 321 

--
Juha Kylmänen
Research Assistant, OUSPG
Comment 1 Morten Welinder 2013-06-14 14:35:25 UTC 
This problem has been fixed in our software repository. The fix will go into the next software release. Thank you for your bug report.