Hi
The following command crashes with vim-8.0.154 and older:
$ vim -e -s -u NONE -c tabnew -c 'call feedkeys("q:", "x!")'
Crash happens at eval.c:10365 which dereferences a NULL
pointer since TabPageIdxs is NULL:
10363 /* Init TabPageIdxs[] to zero: Clicking outside of tabs has
no effect. */
10364 for (scol = 0; scol < Columns; ++scol)
!!10365 TabPageIdxs[scol] = 0;
Vim-7.4.52 which comes with ubuntu-14.04 does not crash.
So it's a regression. Doing a bissection, I see that it started to
crash in this change:
===
commit 5f8a14b9dea094b8bbab94cfc1e8da8e633fbc01
Author: Bram Moolenaar <[email protected]>
Date: Thu Jan 21 23:34:58 2016 +0100
patch 7.4.1151
Problem: Missing change to eval.c
Solution: Also change feedkeys().
===
Attached patch fixes it, but I'm not sure whether
it's the right way to fix it.
Bug was found using afl-fuzz.
Regards
Dominique
--
--
You received this message from the "vim_dev" maillist.
Do not top-post! Type your reply below the text you are replying to.
For more information, visit http://www.vim.org/maillist.php
---
You received this message because you are subscribed to the Google Groups
"vim_dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
