Dominique wrote:
> The following command crashes with vim-8.0.154 and older:
>
> $ vim -e -s -u NONE -c tabnew -c 'call feedkeys("q:", "x!")'
>
> Crash happens at eval.c:10365 which dereferences a NULL
> pointer since TabPageIdxs is NULL:
>
> 10363 /* Init TabPageIdxs[] to zero: Clicking outside of tabs has
> no effect. */
> 10364 for (scol = 0; scol < Columns; ++scol)
> !!10365 TabPageIdxs[scol] = 0;
>
> Vim-7.4.52 which comes with ubuntu-14.04 does not crash.
> So it's a regression. Doing a bissection, I see that it started to
> crash in this change:
>
> ===
> commit 5f8a14b9dea094b8bbab94cfc1e8da8e633fbc01
> Author: Bram Moolenaar <[email protected]>
> Date: Thu Jan 21 23:34:58 2016 +0100
>
> patch 7.4.1151
> Problem: Missing change to eval.c
> Solution: Also change feedkeys().
> ===
>
> Attached patch fixes it, but I'm not sure whether
> it's the right way to fix it.
>
> Bug was found using afl-fuzz.
Patch was not attached...
--
hundred-and-one symptoms of being an internet addict:
226. You sit down at the computer right after dinner and your spouse
says "See you in the morning."
/// Bram Moolenaar -- [email protected] -- http://www.Moolenaar.net \\\
/// sponsor Vim, vote for features -- http://www.Vim.org/sponsor/ \\\
\\\ an exciting new programming language -- http://www.Zimbu.org ///
\\\ help me help AIDS victims -- http://ICCF-Holland.org ///
--
--
You received this message from the "vim_dev" maillist.
Do not top-post! Type your reply below the text you are replying to.
For more information, visit http://www.vim.org/maillist.php
---
You received this message because you are subscribed to the Google Groups
"vim_dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
