<<< Date Index >>>     <<< Thread Index >>>

Re: [Mutt] #2790: re-executing a "too long" 'color body ...' cmd



#2790: re-executing a "too long" 'color body ...' cmd causes segv crash after a
while

Comment (by me):

 I just did a test running Mutt under valgrind with the following in my
 ~/.muttrc :

 color body green white 'this is a really long string that has an
 (optional|opt) field inside of it and will it cause a corruption?'

 As described in the bug report, I switched among at several mailboxes
 probably about 10 times, viewing messages in each mailbox.  I didn't see
 any problems with memory access, with the exception of the following which
 appears to be related to the iconv library:

 ==7105== Invalid read of size 4
 ==7105==    at 0x4014759: (within /lib/ld-2.5.so)
 ==7105==    by 0x40078D9: (within /lib/ld-2.5.so)
 ==7105==    by 0x4010D94: (within /lib/ld-2.5.so)
 ==7105==    by 0x400CFA5: (within /lib/ld-2.5.so)
 ==7105==    by 0x40108ED: (within /lib/ld-2.5.so)
 ==7105==    by 0x42FA031: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x400CFA5: (within /lib/ld-2.5.so)
 ==7105==    by 0x42FA1E4: __libc_dlopen_mode (in
 /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x4215049: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x421456A: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x4214C63: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x420D52B: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==  Address 0x45E8D3C is 44 bytes inside a block of size 47 alloc'd
 ==7105==    at 0x4020620: malloc (vg_replace_malloc.c:149)
 ==7105==    by 0x421512F: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x421456A: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x4214C63: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x420D52B: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x420C093: (within /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x420BCF9: iconv_open (in /lib/tls/i686/cmov/libc-2.5.so)
 ==7105==    by 0x80B1992: mutt_iconv_open (charset.c:366)
 ==7105==    by 0x80B1B99: mutt_convert_string (charset.c:461)
 ==7105==    by 0x80A27B6: rfc2047_decode (rfc2047.c:709)
 ==7105==    by 0x80A2A87: rfc2047_decode_adrlist (rfc2047.c:900)
 ==7105==    by 0x8093691: mutt_read_rfc822_header (parse.c:1432)

 There are a whole bunch of those, probably one for each time I viewed a
 message.

 me

-- 
Ticket URL: <http://dev.mutt.org/trac/ticket/2790#comment:2>