http://bugs.winehq.org/show_bug.cgi?id=28812
Bug #: 28812 Summary: Uninitialized memory read in ContextualShape_Oriya() in test_ScriptShapeOpenType Product: Wine Version: 1.3.30 Platform: x86 OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: usp10 AssignedTo: wine-bugs@winehq.org ReportedBy: dank@kegel.com Classification: Unclassified
In "make usp10.ok" in usp10/tests, valgrind complains:
Use of uninitialised value of size 4 at get_table_entry (usp10_internal.h:118) by unicode_lex (shape.c:2331) by oriya_lex (shape.c:2659) by parse_vowel_syllable (indic.c:166) by Indic_process_next_syllable (indic.c:188) by Indic_ReorderCharacters (indic.c:338) by ContextualShape_Oriya (shape.c:2697) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624) Uninitialised value was created by a client request at mark_block_uninitialized (heap.c:208) by initialize_block (heap.c:239) by RtlAllocateHeap (heap.c:1703) by ContextualShape_Oriya (shape.c:2688) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624)
Conditional jump or move depends on uninitialised value(s) at unicode_lex (shape.c:2329) by oriya_lex (shape.c:2659) by parse_vowel_syllable (indic.c:166) by Indic_process_next_syllable (indic.c:188) by Indic_ReorderCharacters (indic.c:338) by ContextualShape_Oriya (shape.c:2697) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624) Uninitialised value was created by a client request at mark_block_uninitialized (heap.c:208) by initialize_block (heap.c:239) by RtlAllocateHeap (heap.c:1703) by ContextualShape_Oriya (shape.c:2688) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624)
Conditional jump or move depends on uninitialised value(s) at oriya_lex (shape.c:2655) by parse_vowel_syllable (indic.c:166) by Indic_process_next_syllable (indic.c:188) by Indic_ReorderCharacters (indic.c:338) by ContextualShape_Oriya (shape.c:2697) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624) Uninitialised value was created by a client request at mark_block_uninitialized (heap.c:208) by initialize_block (heap.c:239) by RtlAllocateHeap (heap.c:1703) by ContextualShape_Oriya (shape.c:2688) by SHAPE_ContextualShaping (shape.c:3319) by ScriptShapeOpenType (usp10.c:2125) by _test_shape_ok (usp10.c:443) by test_ScriptShapeOpenType (usp10.c:970) by func_usp10 (usp10.c:2577) by run_test (test.h:556) by main (test.h:624)