Status: Untriaged Owner: [EMAIL PROTECTED] Labels: Type-Bug Pri-2 OS-All Area-Misc
New issue 5301 by [EMAIL PROTECTED]: uninitialized memory read in layout test LayoutTests\svg\W3C-SVG-1.1\animate-elem-03-t.svg http://code.google.com/p/chromium/issues/detail?id=5301 From a recent purify run: [W] UMR: Uninitialized memory read in WebCore::SVGTextRunWalker<SVGTextRunWalkerDrawTextData::WebCore>::walk(Text Run::WebCore const&,bool,String::WebCore const&,int,int) {3 occurrences} Reading 4 bytes from 0x0013cfe8 (4 bytes at 0x0013cfe8 uninitialized) Address 0x0013cfe8 points into a thread's stack Address 0x0013cfe8 is 4 bytes past the start of local variable 'data' in WebCore::Font::drawTextUsingSVGFont(GraphicsContext::WebCore *,TextRun::WebCore const&,FloatPoint::WebCore const&,int,int)const Thread ID: 0x258 Error location WebCore::SVGTextRunWalker<SVGTextRunWalkerDrawTextData::WebCore>::walk(Text Run::WebCore const&,bool,String::WebCore const&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\svg\svgfont.cpp:288] WebCore::Font::drawTextUsingSVGFont(GraphicsContext::WebCore *,TextRun::WebCore const&,FloatPoint::WebCore const&,int,int)const [c:\b\slave\pl\build\src\third_party\webkit\webcore\svg\svgfont.cpp:511] WebCore::Font::drawText(GraphicsContext::WebCore *,TextRun::WebCore const&,FloatPoint::WebCore const&,int,int)const [c:\b\slave\pl\build\src\third_party\webkit\webcore\platform\graphics\font. cpp:484] WebCore::GraphicsContext::drawText(TextRun::WebCore const&,IntPoint::WebCore const&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\platform\graphics\graph icscontext.cpp:304] WebCore::SVGInlineTextBox::paintCharacters(struct WebCore::RenderObject::PaintInfo &,int,int,struct WebCore::SVGChar const &,wchar_t const *,int,class WebCore::SVGPaintServer *) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\svginlinetext box.cpp:400] WebCore::SVGRootInlineBoxPaintWalker::chunkPortionCallback(SVGInlineTextBox ::WebCore *,int,AffineTransform::WebCore const&,SVGChar::WebCore * const const&,SVGChar::WebCore * const const&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\svgrootinline box.cpp:539] WebCore::SVGTextChunkWalker<SVGRootInlineBoxPaintWalker::WebCore>::()(SVGIn lineTextBox::WebCore *,int,AffineTransform::WebCore const&,SVGChar::WebCore * const const&,SVGChar::WebCore * const const&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\svgcharacterl ayoutinfo.h:342] WebCore::SVGRootInlineBox::walkTextChunks(SVGTextChunkWalkerBase::WebCore *,SVGInlineTextBox::WebCore const*) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\svgrootinline box.cpp:1689] WebCore::SVGRootInlineBox::paint(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\svgrootinline box.cpp:599] WebCore::RenderFlow::paintLines(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderflow.cp p:434] WebCore::RenderBlock::paintContents(PaintInfo::RenderObject::WebCore&,int,i nt) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.c pp:1603] WebCore::RenderBlock::paintObject(PaintInfo::RenderObject::WebCore&,int,int ) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.c pp:1692] WebCore::RenderBlock::paint(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.c pp:1517] WebCore::RenderSVGText::paint(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgtext .cpp:202] WebCore::RenderSVGContainer::paint(PaintInfo::RenderObject::WebCore&,int,in t) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcont ainer.cpp:350] WebCore::RenderSVGContainer::paint(PaintInfo::RenderObject::WebCore&,int,in t) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcont ainer.cpp:350] WebCore::RenderSVGContainer::paint(PaintInfo::RenderObject::WebCore&,int,in t) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcont ainer.cpp:350] WebCore::RenderBox::paint(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderbox.cpp :341] WebCore::RenderSVGRoot::paint(PaintInfo::RenderObject::WebCore&,int,int) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgroot .cpp:192] WebCore::RenderLayer::paintLayer(RenderLayer::WebCore *,GraphicsContext::WebCore *,IntRect::WebCore const&,bool,PaintRestriction::WebCore,RenderObject::WebCore *,bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderlayer.c pp:1776] WebCore::RenderLayer::paintLayer(RenderLayer::WebCore *,GraphicsContext::WebCore *,IntRect::WebCore const&,bool,PaintRestriction::WebCore,RenderObject::WebCore *,bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderlayer.c pp:1801] WebCore::RenderLayer::paint(GraphicsContext::WebCore *,IntRect::WebCore const&,PaintRestriction::WebCore,RenderObject::WebCore *) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderlayer.c pp:1618] WebCore::FrameView::paintContents(GraphicsContext::WebCore *,IntRect::WebCore const&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\page\frameview.cpp:1190 ] WebCore::ScrollView::paint(GraphicsContext::WebCore *,IntRect::WebCore const&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\platform\scrollview.cpp :633] WebFrameImpl::CaptureImage(scoped_ptr<BitmapPlatformDeviceWin::gfx> *,bool) [c:\b\slave\pl\build\src\webkit\glue\webframe_impl.cc:1470] TestShell::DumpImage(class WebFrame *,class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > const &) [c:\b\slave\pl\build\src\webkit\tools\test_shell\test_shell.cc:173] TestShell::RunFileTest(char const*,TestParams::TestShell const&) [c:\b\slave\pl\build\src\webkit\tools\test_shell\test_shell_win.cc:306] main [c:\b\slave\pl\build\src\webkit\tools\test_shell\test_shell_main.cc:378] _tmainCRTStartup [f:\sp\vctools\crt_bld\self_x86\crt\src\crt0.c:327] -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Chromium-bugs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/chromium-bugs?hl=en -~----------~----~----~----~------~----~------~--~---
![[chromium-bugs] Issue 5301 in chromium: uninitialized memory read in layout test LayoutTests\svg\W3C-SVG-1.1\animate-elem-03-t.svg](/search?l=chromium-bugs@googlegroups.com&q=subject:%22%5C%5Bchromium%5C-bugs%5C%5D+Issue+5301+in+chromium%5C%3A+uninitialized+memory+read+in+layout+test++LayoutTests%5C%5Csvg%5C%5CW3C%5C-SVG%5C-1.1%5C%5Canimate%5C-elem%5C-03%5C-t.svg%22&o=newest){kind=link}
