[Libreoffice-bugs] [Bug 78513] New: Other: Buffer overrun in Python UNO initialization (possibly explaining random errors)

[bugzilla-daemon]

https://bugs.freedesktop.org/show_bug.cgi?id=78513

          Priority: medium
            Bug ID: 78513
          Assignee: libreoffice-bugs@lists.freedesktop.org
           Summary: Other: Buffer overrun in Python UNO initialization
                    (possibly explaining random errors)
          Severity: normal
    Classification: Unclassified
                OS: Linux (All)
          Reporter: jim.av...@gmail.com
          Hardware: Other
        Whiteboard: BSA
            Status: UNCONFIRMED
           Version: 4.2.4.1 rc
         Component: Spreadsheet
           Product: LibreOffice

Created attachment 98799
  --> https://bugs.freedesktop.org/attachment.cgi?id=98799&action=edit
Test script which runs valgrind with desired args on libre office

Valgrind reports some 8-byte reads which extend 4 bytes beyond the end of
malloc'd space.  This would cause unpredictable garbage to be returend in the
last 4 bytes, and might possibly explain some "unreproducible" bugs I've been
chasing in some Basic macros. The problem exists in LO 4.2.4.0 but I'm
attaching traces from 4.3-alpha1 (May 5 build).

Here's typical valgrind output (greatly reduced):

== Invalid read of size 8
==    at: __wcscpy_ssse3 (wcscpy-ssse3.S:146)
==    by: calculate_path (getpath.c:751)
==    by: Py_GetProgramFullPath (getpath.c:879)
==    by: _PySys_Init (sysmodule.c:1615)
==    by: _Py_InitializeEx_Private (pythonrun.c:338)
==    by: pyuno_loader::CreateInstance() in
/opt/libreofficedev4.3.SAVED_May4/program/libpythonloaderlo.so
       -snip-
==  Address 0x1fd01478 is 1,544 bytes inside a block of size 1,548 alloc'd

The full trace log will be attached

Steps to reproduce:
1. Download the attached "test.sh" script and "spreadsheet.ods"
2. Edit test.sh to point to your LO install dir, or else pass
    arguments /path/to/libreofficedir spreadsheet.ods
3. When prompted to enable macros, click NO (do not enable)
4. When the document is opened, just close it; the test is done

Current behavior: valgrind reports buffer overruns

Expected behavior: not that

Operating System: Ubuntu
Version: 4.2.4.1 rc

-- 
You are receiving this mail because:
You are the assignee for the bug.

_______________________________________________
Libreoffice-bugs mailing list
Libreoffice-bugs@lists.freedesktop.org
http://lists.freedesktop.org/mailman/listinfo/libreoffice-bugs