So after a little investigation, it seems that the call to ft_setjmp in tt_face_build_cmaps is the culprit. It overwrites well past the end of the allocated buffer and into other stack space. This appears to come about due to the size of a jmp_buf changing between libc6 versions. (The extra space now appears to store the AltiVec registers).
Presumably libfreetype6 was built against an older version of libc6 with a smaller jmp_buf, and so when setjmp goes to write to it, it shreds the rest of the stack that follows. So in short, a recompile against a recent libc6 (looking at 2.3.5-9 here) should fix it. :) HTH, Bernard. -- Bernard Blackham <bernard at blackham dot com dot au> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
