https://bugs.winehq.org/show_bug.cgi?id=38725
Bug ID: 38725 Summary: valgrind shows an invalid write in ole32/tests/usrmarshal.c Product: Wine Version: 1.7.44 Hardware: x86 OS: Linux Status: NEW Keywords: download, source, testcase, valgrind Severity: normal Priority: P2 Component: ole32 Assignee: wine-bugs@winehq.org Reporter: austinenglish@gmail.com Distribution: Fedora
../../../tools/runtest -q -P wine -T ../../.. -M ole32.dll -p ole32_test.exe.so usrmarshal && touch usrmarshal.ok ==1724== Invalid write of size 2 ==1724== at 0x400A583: _intel_fast_memcpy (vg_replace_strmem.c:947) ==1724== by 0x4D3FD7D: SNB_UserUnmarshal (usrmarshal.c:2256) ==1724== by 0x4802F25: test_marshal_SNB (usrmarshal.c:851) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724== Address 0x468b75c is 11 bytes after a block of size 25 alloc'd ==1724== at 0x7BC4A9F1: notify_alloc (heap.c:254) ==1724== by 0x7BC4EC94: RtlAllocateHeap (heap.c:1715) ==1724== by 0x4D01025: IMalloc_fnAlloc (ifs.c:186) ==1724== by 0x4D0187C: IMalloc_Alloc (objidl.h:1236) ==1724== by 0x4D0187C: CoTaskMemAlloc (???:0) ==1724== by 0x47FF452: user_allocate (usrmarshal.c:51) ==1724== by 0x4D3FD24: SNB_UserUnmarshal (usrmarshal.c:2250) ==1724== by 0x4802F25: test_marshal_SNB (usrmarshal.c:851) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724==
https://bugs.winehq.org/show_bug.cgi?id=38725
--- Comment #1 from Austin English austinenglish@gmail.com --- ==1724== Invalid read of size 2 ==1724== at 0x480398D: wine_dbgstr_wn (test.h:486) ==1724== by 0x47FF3F3: wine_dbgstr_w (test.h:69) ==1724== by 0x4802F60: test_marshal_SNB (usrmarshal.c:855) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724== Address 0x468b750 is 24 bytes inside a block of size 25 alloc'd ==1724== at 0x7BC4A9F1: notify_alloc (heap.c:254) ==1724== by 0x7BC4EC94: RtlAllocateHeap (heap.c:1715) ==1724== by 0x4D01025: IMalloc_fnAlloc (ifs.c:186) ==1724== by 0x4D0187C: IMalloc_Alloc (objidl.h:1236) ==1724== by 0x4D0187C: CoTaskMemAlloc (???:0) ==1724== by 0x47FF452: user_allocate (usrmarshal.c:51) ==1724== by 0x4D3FD24: SNB_UserUnmarshal (usrmarshal.c:2250) ==1724== by 0x4802F25: test_marshal_SNB (usrmarshal.c:851) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724==
==1724== Invalid read of size 2 ==1724== at 0x7B84A386: strlenW (unicode.h:200) ==1724== by 0x7B84FEEC: CompareStringEx (locale.c:3277) ==1724== by 0x7B84FD2D: CompareStringW (locale.c:3243) ==1724== by 0x7B8504EF: lstrcmpW (locale.c:3482) ==1724== by 0x4802F7A: test_marshal_SNB (usrmarshal.c:855) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724== Address 0x468b750 is 24 bytes inside a block of size 25 alloc'd ==1724== at 0x7BC4A9F1: notify_alloc (heap.c:254) ==1724== by 0x7BC4EC94: RtlAllocateHeap (heap.c:1715) ==1724== by 0x4D01025: IMalloc_fnAlloc (ifs.c:186) ==1724== by 0x4D0187C: IMalloc_Alloc (objidl.h:1236) ==1724== by 0x4D0187C: CoTaskMemAlloc (???:0) ==1724== by 0x47FF452: user_allocate (usrmarshal.c:51) ==1724== by 0x4D3FD24: SNB_UserUnmarshal (usrmarshal.c:2250) ==1724== by 0x4802F25: test_marshal_SNB (usrmarshal.c:851) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724==
==1724== Invalid read of size 2 ==1724== at 0x401993C: real_length (sortkey.c:329) ==1724== by 0x4019963: wine_compare_string (sortkey.c:338) ==1724== by 0x7B84FF21: CompareStringEx (locale.c:3280) ==1724== by 0x7B84FD2D: CompareStringW (locale.c:3243) ==1724== by 0x7B8504EF: lstrcmpW (locale.c:3482) ==1724== by 0x4802F7A: test_marshal_SNB (usrmarshal.c:855) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724== Address 0x468b750 is 24 bytes inside a block of size 25 alloc'd ==1724== at 0x7BC4A9F1: notify_alloc (heap.c:254) ==1724== by 0x7BC4EC94: RtlAllocateHeap (heap.c:1715) ==1724== by 0x4D01025: IMalloc_fnAlloc (ifs.c:186) ==1724== by 0x4D0187C: IMalloc_Alloc (objidl.h:1236) ==1724== by 0x4D0187C: CoTaskMemAlloc (???:0) ==1724== by 0x47FF452: user_allocate (usrmarshal.c:51) ==1724== by 0x4D3FD24: SNB_UserUnmarshal (usrmarshal.c:2250) ==1724== by 0x4802F25: test_marshal_SNB (usrmarshal.c:851) ==1724== by 0x4803107: func_usrmarshal (usrmarshal.c:881) ==1724== by 0x4803E78: run_test (test.h:584) ==1724== by 0x48042C0: main (test.h:666) ==1724==
etc.
https://bugs.winehq.org/show_bug.cgi?id=38725
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED
--- Comment #2 from Austin English austinenglish@gmail.com --- No longer occurring in wine-1.7.44-173-g42cbc05
https://bugs.winehq.org/show_bug.cgi?id=38725
Nikolay Sivov bunglehead@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Fixed by SHA1| |bfa23b637e903fec2424734c192 | |7cb0fed5da689
https://bugs.winehq.org/show_bug.cgi?id=38725
Alexandre Julliard julliard@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #3 from Alexandre Julliard julliard@winehq.org --- Closing bugs fixed in 1.7.45.
-
wine-bugs@winehq.org