[Libreoffice-bugs] [Bug 84760] New: Reproducible crash when editing text in table

bugzilla-daemon Tue, 07 Oct 2014 09:01:45 -0700

https://bugs.freedesktop.org/show_bug.cgi?id=84760


            Bug ID: 84760
           Summary: Reproducible crash when editing text in table
           Product: LibreOffice
           Version: 4.3.1.2 release
          Hardware: x86-64 (AMD64)
                OS: Linux (All)
            Status: UNCONFIRMED
          Severity: major
          Priority: medium
         Component: Writer
          Assignee: [email protected]
          Reporter: [email protected]

Created attachment 107507
  --> https://bugs.freedesktop.org/attachment.cgi?id=107507&action=edit
simplified test case file for crash; instructions (also) inside

Open attached file in Libreoffice 4.3.1.2 (Gentoo official package, x86-64). 

Place the cursor at the end of the second line of the right table column, 
directly between „/“ and the line break. Enter (without the quotation marks) 
„ 0(+0)“. On entering the closing bracket, LibreOffice crashes.

Here's the backtrace of the core dump. More information on request.

Core was generated by `/usr/lib64/libreoffice/program/soffice.bin --writer
testcase.odt --splash-pipe='.
Program terminated with signal 11, Segmentation fault.
#0  0x00007f0b9b88540b in ScriptRun::next() () from
/usr/lib64/libreoffice/program/libvcllo.so
(gdb) bt
#0  0x00007f0b9b88540b in ScriptRun::next() () from
/usr/lib64/libreoffice/program/libvcllo.so
#1  0x00007f0b9b881a11 in HbLayoutEngine::layout(ServerFontLayout&,
ImplLayoutArgs&) ()
   from /usr/lib64/libreoffice/program/libvcllo.so
#2  0x00007f0b9b6a52d6 in OutputDevice::ImplLayout(rtl::OUString const&, int,
int, Point const&, long, int const*) const () from
/usr/lib64/libreoffice/program/libvcllo.so
#3  0x00007f0b9b6a55a4 in OutputDevice::GetTextArray(rtl::OUString const&,
int*, int, int) const ()
   from /usr/lib64/libreoffice/program/libvcllo.so
#4  0x00007f0b76e3d634 in SwFntObj::GetTextSize(SwDrawTextInfo&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#5  0x00007f0b76e57739 in SwSubFont::_GetTxtSize(SwDrawTextInfo&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#6  0x00007f0b76dd530f in SwTxtSizeInfo::GetTxtSize(SwScriptInfo const*, int,
int, unsigned short, unsigned short&, unsigned short&) const () from
/usr/lib64/libreoffice/program/../program/libswlo.so
#7  0x00007f0b76dd29b9 in SwTxtGuess::Guess(SwTxtPortion const&,
SwTxtFormatInfo&, unsigned short) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#8  0x00007f0b76e0888d in SwTxtPortion::_Format(SwTxtFormatInfo&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#9  0x00007f0b76dea834 in SwTxtFormatter::BuildPortions(SwTxtFormatInfo&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#10 0x00007f0b76deb968 in SwTxtFormatter::FormatLine(int) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#11 0x00007f0b76dc7b44 in SwTxtFrm::FormatLine(SwTxtFormatter&, bool) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#12 0x00007f0b76dcb990 in SwTxtFrm::_Format(SwTxtFormatter&, SwTxtFormatInfo&,
bool) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
---Type <return> to continue, or q <return> to quit---
#13 0x00007f0b76dcc8a7 in SwTxtFrm::_Format(SwParaPortion*) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#14 0x00007f0b76dcd1b1 in SwTxtFrm::Format(SwBorderAttrs const*) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#15 0x00007f0b76d023e3 in SwCntntFrm::MakeAll() ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#16 0x00007f0b76d004ed in SwFrm::PrepareMake() ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#17 0x00007f0b76d32c5c in SwLayAction::_TurboAction(SwCntntFrm const*) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#18 0x00007f0b76d32f4a in SwLayAction::TurboAction() ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#19 0x00007f0b76d3661d in SwLayAction::Action() ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#20 0x00007f0b7701ba49 in SwViewShell::ImplEndAction(bool) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#21 0x00007f0b76b36141 in SwCrsrShell::EndAction(bool) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#22 0x00007f0b76c9ade2 in SwEditShell::EndAllAction() ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#23 0x00007f0b76c86544 in SwEditShell::Insert2(rtl::OUString const&, bool) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#24 0x00007f0b772d985f in SwWrtShell::Insert(rtl::OUString const&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#25 0x00007f0b7717e9d7 in SwEditWin::FlushInBuffer() ()
---Type <return> to continue, or q <return> to quit---
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#26 0x00007f0b77185f2e in SwEditWin::KeyInput(KeyEvent const&) ()
   from /usr/lib64/libreoffice/program/../program/libswlo.so
#27 0x00007f0b9b61a22f in ImplHandleKey(Window*, unsigned short, unsigned
short, unsigned short, unsigned short, bool) () from
/usr/lib64/libreoffice/program/libvcllo.so
#28 0x00007f0b9b61c885 in ImplWindowFrameProc(Window*, SalFrame*, unsigned
short, void const*) ()
   from /usr/lib64/libreoffice/program/libvcllo.so
#29 0x00007f0b8f9912bc in X11SalFrame::HandleKeyEvent(XKeyEvent*) ()
   from /usr/lib64/libreoffice/program/libvclplug_genlo.so
#30 0x00007f0b8f9920e7 in X11SalFrame::Dispatch(_XEvent*) ()
   from /usr/lib64/libreoffice/program/libvclplug_genlo.so
#31 0x00007f0b8f9556f8 in SalX11Display::Dispatch(_XEvent*) ()
   from /usr/lib64/libreoffice/program/libvclplug_genlo.so
#32 0x00007f0b92313aaf in SalKDEDisplay::checkDirectInputEvent(_XEvent*) ()
   from /usr/lib64/libreoffice/program/libvclplug_kde4lo.so
#33 0x00007f0b92313b31 in SalKDEDisplay::Yield() ()
   from /usr/lib64/libreoffice/program/libvclplug_kde4lo.so
#34 0x00007f0b8f954805 in DisplayYield(int, SalX11Display*) ()
   from /usr/lib64/libreoffice/program/libvclplug_genlo.so
#35 0x00007f0b92318e06 in KDEXLib::socketNotifierActivated(int) ()
   from /usr/lib64/libreoffice/program/libvclplug_kde4lo.so
#36 0x00007f0b9231aaaf in KDEXLib::qt_static_metacall(QObject*,
QMetaObject::Call, int, void**) ()
   from /usr/lib64/libreoffice/program/libvclplug_kde4lo.so
#37 0x00007f0b900838da in QMetaObject::activate (sender=sender@entry=0x758b90, 
    m=m@entry=0x7f0b903d3980 <QSocketNotifier::staticMetaObject>, 
---Type <return> to continue, or q <return> to quit---
    local_signal_index=local_signal_index@entry=0,
argv=argv@entry=0x7fff6642c5e0)
    at kernel/qobject.cpp:3547
#38 0x00007f0b900cf0fe in QSocketNotifier::activated (this=this@entry=0x758b90,
_t1=10)
    at .moc/release-shared/moc_qsocketnotifier.cpp:102
#39 0x00007f0b9008c81b in QSocketNotifier::event (this=0x758b90,
e=0x7fff6642c910)
    at kernel/qsocketnotifier.cpp:316
#40 0x00007f0b9059f1ec in QApplicationPrivate::notify_helper
(this=this@entry=0x7404e0, 
    receiver=receiver@entry=0x758b90, e=e@entry=0x7fff6642c910) at
kernel/qapplication.cpp:4562
#41 0x00007f0b905a59a0 in QApplication::notify (this=this@entry=0x7386e0, 
    receiver=receiver@entry=0x758b90, e=e@entry=0x7fff6642c910) at
kernel/qapplication.cpp:4348
#42 0x00007f0b9177750a in KApplication::notify (this=0x7386e0,
receiver=0x758b90, event=0x7fff6642c910)
    at
/var/tmp/portage/kde-base/kdelibs-4.14.1/work/kdelibs-4.14.1/kdeui/kernel/kapplication.cpp:311
#43 0x00007f0b9006f7fd in QCoreApplication::notifyInternal (this=0x7386e0,
receiver=0x758b90, 
    event=event@entry=0x7fff6642c910) at kernel/qcoreapplication.cpp:949
#44 0x00007f0b9009db36 in sendEvent (event=0x7fff6642c910, receiver=<optimized
out>)
    at kernel/qcoreapplication.h:231
#45 socketNotifierSourceDispatch (source=0x741f80) at
kernel/qeventdispatcher_glib.cpp:117
#46 0x00007f0b945fdbe4 in g_main_dispatch (context=0x740f80)
    at
/var/tmp/portage/dev-libs/glib-2.40.0-r1/work/glib-2.40.0/glib/gmain.c:3064
#47 g_main_context_dispatch (context=context@entry=0x740f80)
    at
/var/tmp/portage/dev-libs/glib-2.40.0-r1/work/glib-2.40.0/glib/gmain.c:3663
#48 0x00007f0b945fde28 in g_main_context_iterate
(context=context@entry=0x740f80, block=block@entry=1, 
    dispatch=dispatch@entry=1, self=<optimized out>)
    at
/var/tmp/portage/dev-libs/glib-2.40.0-r1/work/glib-2.40.0/glib/gmain.c:3734
#49 0x00007f0b945fdecc in g_main_context_iteration (context=0x740f80,
may_block=1)
---Type <return> to continue, or q <return> to quit---
    at
/var/tmp/portage/dev-libs/glib-2.40.0-r1/work/glib-2.40.0/glib/gmain.c:3795
#50 0x00007f0b9009cdee in QEventDispatcherGlib::processEvents (this=0x741260,
flags=...)
    at kernel/qeventdispatcher_glib.cpp:450
#51 0x00007f0b9063d6a6 in QGuiEventDispatcherGlib::processEvents
(this=<optimized out>, flags=...)
    at kernel/qguieventdispatcher_glib.cpp:204
#52 0x00007f0b92318ab9 in KDEXLib::processYield(bool, bool) ()
   from /usr/lib64/libreoffice/program/libvclplug_kde4lo.so
#53 0x00007f0b9b7f2b4e in Application::Yield() () from
/usr/lib64/libreoffice/program/libvcllo.so
#54 0x00007f0b9b7f2be5 in Application::Execute() () from
/usr/lib64/libreoffice/program/libvcllo.so
#55 0x00007f0b9ff00c73 in desktop::Desktop::Main() ()
   from /usr/lib64/libreoffice/program/libsofficeapp.so
#56 0x00007f0b9b7f7301 in ImplSVMain() () from
/usr/lib64/libreoffice/program/libvcllo.so
#57 0x00007f0b9b7f7322 in SVMain() () from
/usr/lib64/libreoffice/program/libvcllo.so
#58 0x00007f0b9ff24315 in soffice_main () from
/usr/lib64/libreoffice/program/libsofficeapp.so
#59 0x000000000040074b in main ()
(gdb)

-- 
You are receiving this mail because:
You are the assignee for the bug.

_______________________________________________
Libreoffice-bugs mailing list
[email protected]
http://lists.freedesktop.org/mailman/listinfo/libreoffice-bugs

[Libreoffice-bugs] [Bug 84760] New: Reproducible crash when editing text in table

Reply via email to