http://bugs.freedesktop.org/show_bug.cgi?id=18445
Summary: glAreTexturesResident can corrupt application stack and
cause crash
Product: Mesa
Version: CVS
Platform: x86 (IA32)
OS/Version: All
Status: NEW
Severity: normal
Priority: medium
Component: GLX
AssignedTo: [email protected]
ReportedBy: [EMAIL PROTECTED]
in glx/x11/indirect.c (implementation of glAreTexturesResident) line 5112
__glXReadReply is called with reply_is_always_array set to GL_TRUE.
This seems to make __glXReadReply to read 4*reply.length bytes of
data to the dest pointer.
But the residences pointer in glAreTexturesResident is to GLboolean data
(single byte) and it can actually point to a single byte of data.
At least on my application this manages to corrupt the stack at the
level where I have the corresponding variable defined.
(and because of stack corruption, this can take some time to debug)
Eero
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Mesa3d-dev mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/mesa3d-dev
