Hello, I'm trying to post a message to the list, but I'm being rejected as a spammer, so I'm trying the "attachment method" :-) Thanks, S.
Simon wrote:
#4 0x0805e27d in a_Decode_process (dc=0x81ce8d0, instr=0xb7d4a948 "", inlen=-1210799800) at decode.c:298
[New Thread -1219286096 (LWP 26986)]
These strange values leap out at me. If you know gdb decently well, tracing through a_Cache_process_dbuf() to see how it came up with that crazy length would be interesting.
On Fri, Jul 09, 2010 at 05:32:47PM +0000, corvid wrote:
Simon wrote:
#4 0x0805e27d in a_Decode_process (dc=0x81ce8d0, instr=0xb7d4a948 "", inlen=-1210799800) at decode.c:298
[New Thread -1219286096 (LWP 26986)]
These strange values leap out at me.
If you know gdb decently well, tracing through a_Cache_process_dbuf() to see how it came up with that crazy length would be interesting.
This also shows memory was already corrupted before the call:
#7 0x0805a055 in a_Dialog_save_file ( msg=0xfffffdfe <Address 0xfffffdfe out of bounds>, pattern=0xfffffdfe <Address 0xfffffdfe out of bounds>, fname=0xfffffdfe <Address 0xfffffdfe out of bounds>) at dialog.cc:86
-- Cheers Jorge.-
participants (3)
-
corvid@lavabit.com -
jcid@dillo.org -
simon.addareyss@libertysurf.fr