Bug#761226: libreoffice-writer: Segmentation fault on special document content/input
tag 761226 + confirmed thanks Hi, On Thu, Sep 11, 2014 at 04:55:47PM -0400, Jason Rhinelander wrote: libreoffice-writer will segfault when a file contains content such as: (1)(2)(3)aa This can be in an existing file being opened, or simply typed or pasted into a blank document. Indeed :/ (Tried by typing it into a blank document) Variations I've tried that also trigger the segfault: - Adding spaces around (before, between, and after) the parenthesized values. - changing the 1,2,3 values to any other numbers. - adding more numbers (parenthesized or not) between (3) and aa. Variations that avoid the segfault: - Changing any of the 1,2,3 values to non-numeric values. - Making the trailing content consist of a single letter. (The segfault occurs in the original example only when something follows the first a.) - Prior content on the line. e.g. a line with a(1)(2)(3)aa seems okay. - Making the trailing content consist only of numbers (whether or not parenthesized). Neither (1)(1)(1) 42 56 12345 nor (1)(1)(1)(42) trigger the segfault, but (1)(1)(1) 42 56 12345 aa does. A backtrace is attached. Thanks for those infos. Will forward upstream. Or maybe not, seems to work for me in 4.3.2 rc1... Regards, Rene -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#761226: libreoffice-writer: Segmentation fault on special document content/input
Package: libreoffice-writer Version: 1:4.3.1-1 Severity: important Dear Maintainer, libreoffice-writer will segfault when a file contains content such as: (1)(2)(3)aa This can be in an existing file being opened, or simply typed or pasted into a blank document. Variations I've tried that also trigger the segfault: - Adding spaces around (before, between, and after) the parenthesized values. - changing the 1,2,3 values to any other numbers. - adding more numbers (parenthesized or not) between (3) and aa. Variations that avoid the segfault: - Changing any of the 1,2,3 values to non-numeric values. - Making the trailing content consist of a single letter. (The segfault occurs in the original example only when something follows the first a.) - Prior content on the line. e.g. a line with a(1)(2)(3)aa seems okay. - Making the trailing content consist only of numbers (whether or not parenthesized). Neither (1)(1)(1) 42 56 12345 nor (1)(1)(1)(42) trigger the segfault, but (1)(1)(1) 42 56 12345 aa does. A backtrace is attached. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-2-amd64 (SMP w/8 CPU cores) Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libreoffice-writer depends on: ii libabw-0.1-1 0.1.0-2 ii libc6 2.19-10 ii libe-book-0.1-10.1.1-2 ii libgcc11:4.9.1-13 ii libicu52 52.1-5 ii libmwaw-0.3-3 0.3.1-2 ii libodfgen-0.1-10.1.1-2 ii libreoffice-base-core 1:4.3.1-1 ii libreoffice-core 1:4.3.1-1 ii librevenge-0.0-0 0.0.1-3 ii libstdc++6 4.9.1-13 ii libwpd-0.10-10 0.10.0-2 ii libwpg-0.3-3 0.3.0-3 ii libwps-0.3-3 0.3.0-2 ii libxml22.9.1+dfsg1-4 ii uno-libs3 4.3.1-1 ii ure4.3.1-1 ii zlib1g 1:1.2.8.dfsg-2 Versions of packages libreoffice-writer recommends: pn libreoffice-math none Versions of packages libreoffice-writer suggests: ii default-jre [java5-runtime]2:1.7-52 ii fonts-crosextra-caladea20130214-1 pn fonts-crosextra-carlitonone ii libreoffice-base 1:4.3.1-1 pn libreoffice-gcjnone ii libreoffice-java-common1:4.3.1-1 ii openjdk-7-jre [java5-runtime] 7u65-2.5.2-3 Versions of packages libreoffice-core depends on: ii fontconfig2.11.0-6.1 ii fonts-opensymbol 2:102.6+LibO4.3.1-1 ii libatk1.0-0 2.12.0-1 ii libboost-date-time1.55.0 1.55.0+dfsg-2 ii libc6 2.19-10 ii libcairo2 1.12.16-5 ii libclucene-contribs1 2.3.3.4-4 ii libclucene-core1 2.3.3.4-4 ii libcmis-0.4-4 0.4.1-7 ii libcups2 1.7.5-1 ii libcurl3-gnutls 7.38.0-1 ii libdbus-1-3 1.8.6-2 ii libdbus-glib-1-2 0.102-1 ii libeot0 0.01-3 ii libexpat1 2.1.0-6 ii libexttextcat-2.0-0 3.4.4-1 ii libfontconfig12.11.0-6.1 ii libfreetype6 2.5.2-1.1 ii libgcc1 1:4.9.1-13 ii libgdk-pixbuf2.0-02.30.8-1 ii libgl1-mesa-glx [libgl1] 10.2.6-1 ii libglew1.10 1.10.0-3 ii libglib2.0-0 2.40.0-5 ii libgltf-0.0-0 0.0.0-2 ii libglu1-mesa [libglu1]9.0.0-2 ii libgraphite2-31.2.4-3 ii libgtk2.0-0 2.24.24-1 ii libharfbuzz-icu0 0.9.35-1 ii libharfbuzz0b 0.9.35-1 ii libhunspell-1.3-0 1.3.3-2 ii libhyphen02.8.7-3 ii libice6 2:1.0.9-1 ii libicu52 52.1-5 ii libjpeg8 8d1-1 ii liblangtag1 0.5.1-2 ii liblcms2-22.6-3 ii libldap-2.4-2 2.4.39-1.1+b1 ii libmythes-1.2-0 2:1.2.4-1 ii libneon27-gnutls 0.30.0-4 ii libnspr4 2:4.10.7-1 ii libnss3 2:3.17-1 ii libnss3-1d2:3.17-1 ii libodfgen-0.1-1 0.1.1-2 ii libpango-1.0-01.36.7-1 ii libpangocairo-1.0-0 1.36.7-1 ii libpangoft2-1.0-0 1.36.7-1 ii libpng12-01.2.50-2 ii librdf0 1.0.17-1+b1 ii libreoffice-common1:4.3.1-1 ii librevenge-0.0-0 0.0.1-3 ii libsm62:1.2.2-1 ii libssl1.0.0 1.0.1i-2 ii libstdc++64.9.1-13 ii libx11-6 2:1.6.2-3 ii libxext6 2:1.3.2-1 ii libxinerama1 2:1.1.3-1 ii libxml2 2.9.1+dfsg1-4 ii libxrandr22:1.4.2-1 ii libxrender1 1:0.9.8-1 ii libxslt1.11.1.28-2 ii libxt61:1.1.4-1