Bug 145907

Summary: flphoto crashes on import from camera
Product: [openSUSE] SUSE Linux 10.1 Reporter: Marcus Meissner <meissner>
Component: X11 ApplicationsAssignee: Petr Ostadal <postadal>
Status: RESOLVED FIXED QA Contact: Stefan Dirsch <sndirsch>
Severity: Normal    
Priority: P5 - None    
Version: Beta 2   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Attachments: xx.txt

Description Marcus Meissner 2006-01-26 17:11:25 UTC 
flphoto crashes within fltk when importing from camera.
Comment 1 Marcus Meissner 2006-01-26 17:12:02 UTC 
Created attachment 65267 [details]
xx.txt
Comment 2 Marcus Meissner 2006-01-26 17:12:41 UTC 
hoow to reproduce:

Album -> Import -> From Directory  -> segv
Comment 3 Petr Ostadal 2006-01-30 12:50:40 UTC 
please test new version of fltk which I built /work/built/mbuild/chip-postadal-154/
Comment 4 Marcus Meissner 2006-01-31 09:18:30 UTC 
still crashes.

image_ has a value, but the Vtable appears to be NULL. some strange kind of
transient state?

(gdb) print image_
$1 = (class Fl_Image *) 0x585200
(gdb) print *image_
$2 = {_vptr.Fl_Image = 0x0, w_ = 273, h_ = 0, d_ = 1806096640, ld_ = 11046, 
  count_ = 4263434, data_ = 0x4144f0}
(gdb) frame 0
#0  0x00002b266bf3dd85 in Fl_Shared_Image::copy (this=0x61ec90, W=155, H=0)
    at Fl_Shared_Image.cxx:274
274       else temp_image = image_->copy(W, H);
(gdb) x /i $rip
0x2b266bf3dd85 <_ZN15Fl_Shared_Image4copyEii+37>:       callq  *0x10(%rax)
(gdb) x $rax+0x10
0x10:   Cannot access memory at address 0x10
(gdb)
Comment 5 Marcus Meissner 2006-01-31 10:17:55 UTC 
i guess this means image_ in this case is a pointer to a delete object
Comment 6 Petr Ostadal 2006-02-15 16:42:05 UTC 
the bug is in flphoto in AVI plugin for fltk. 
Method Fl_AVI_Image::check(char const*, unsigned char*, int) return unitialized value and it caused segfault.

Fixed and submited