Segmentation fault caused by bug in makeinfo

bug-texinfo

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Segmentation fault caused by bug in makeinfo

From:	Andreas Vögele
Subject:	Segmentation fault caused by bug in makeinfo
Date:	Sun, 1 May 2005 10:00:33 +0200

There seems to be a bug in textinfo/makeinfo/multi.c in the functionoutput_multitable_row().

If a column contains only whitespace the following code may cause asegmentation fault. The problem is that the offset is only checked forzero before the loop but not while the loop is decrementing the offset.


  /* remove trailing whitespace from each column */
  [...]
  if (envs[i].output_paragraph_offset)

while (cr_or_whitespace (CHAR_AT (envs[i].output_paragraph_offset -1)))

      envs[i].output_paragraph_offset--;

I can reproduce this problem under OpenBSD-current when building thedocumentation for Automake 1.9.5. The bug is also present in the CVS atsavannah.gnu.org.


Makeinfo doesn't crash if the offset is checked in the loop:

  while (envs[i].output_paragraph_offset

&& cr_or_whitespace (CHAR_AT (envs[i].output_paragraph_offset- 1)))

    envs[i].output_paragraph_offset--;

patch-makeinfo_multi_c
Description: Binary data

[Prev in Thread]

Current Thread

[Next in Thread]

Segmentation fault caused by bug in makeinfo, Andreas Vögele <=
- Re: Segmentation fault caused by bug in makeinfo, Otto Moerbeek, 2005/05/09
- Re: Segmentation fault caused by bug in makeinfo, Karl Berry, 2005/05/09

Next by Date: Texinfo manual and Emacs behaviour
Next by thread: Re: Segmentation fault caused by bug in makeinfo
Index(es):
- Date
- Thread