crash report: dereference null XFontStruct

Emanuele Giaquinta emanuele.giaquinta at gmail.com
Wed Sep 30 14:57:46 CEST 2015


Hi,

On Tue, Sep 08, 2015 at 08:14:02PM +0800, Kuang-che Wu wrote:
> "sleep 1" is necessary. The crash probability is low if removed the sleep.
> 
> $ gdb -q --args rxvt -e sh -c "sleep 1; echo -e '\x0a\t\e[r\e[M\e[8;;1t0000\xcc\x86\xdb\x93'"
> (gdb) r
> Program received signal SIGSEGV, Segmentation fault.
> rxvt_font_x11::draw (this=0x7331b0, d=..., x=0, y=1222, text=0x7ffff7ff09e0, len=1, fg=1, bg=0) at rxvtfont.C:1057
> 1057      v.font = f->fid;
> (gdb) p f
> $1 = (XFontStruct *) 0x0
> (gdb) bt
> #0  rxvt_font_x11::draw (this=0x7331b0, d=..., x=0, y=1222, text=0x7ffff7ff09e0, len=1, fg=1, bg=0) at rxvtfont.C:1057
> #1  0x00000000004100f6 in rxvt_term::scr_refresh (this=this at entry=0x7332d0) at screen.C:2419
> #2  0x0000000000411f6c in flush (this=0x7332d0) at command.C:1006
> #3  rxvt_term::flush_cb (this=0x7332d0, w=..., revents=<optimized out>) at command.C:1032
> #4  0x0000000000433620 in ev_invoke_pending () at ./../libev/ev.c:3155
> #5  0x000000000043484e in ev_run (flags=<optimized out>) at ./../libev/ev.c:3555
> #6  0x000000000040ae73 in main (argc=5, argv=0x7fffffffd9c8) at rxvt.C:38

finally tracked down and fixed, thanks for the report.

Emanuele



More information about the rxvt-unicode mailing list