https://bugs.winehq.org/show_bug.cgi?id=49527
Bug ID: 49527 Summary: Printing font Chilanka crashes Notepad and Word Product: Wine Version: 5.12 Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: wineps.drv Assignee: wine-bugs@winehq.org Reporter: bernhardu@mailbox.org Distribution: ---
Created attachment 67657 --> https://bugs.winehq.org/attachment.cgi?id=67657 Avoid crash in get_glyf_pos in wineps.drv with font Chilanka.
Function get_glyf_pos accesses unconditionally the memory pointed to by ".data". Unfortunately with this font we end up here with a null pointer.
123 *start = GET_BE_WORD(((WORD*)t42->tables[t42->loca_tab].data) + index);
I could observe this with following font:
fonts-smc-chilanka_1.400-1_all.deb from Ubuntu focal (20.04LTS). https://packages.ubuntu.com/focal/fonts-smc-chilanka http://de.archive.ubuntu.com/ubuntu/pool/main/f/fonts-smc-chilanka/fonts-smc...
To reproduce just enter "Test" and select font "Chilanka" in either Notepad or Word. Then attempt to print.
Attached path on top of 5.12 avoids the crash, but does still not produce the expected output, maybe related to 42739. But avoiding the crash separately might still be desired?
https://bugs.winehq.org/show_bug.cgi?id=49527
François Gouget fgouget@codeweavers.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Keywords| |patch CC| |fgouget@codeweavers.com
https://bugs.winehq.org/show_bug.cgi?id=49527
--- Comment #1 from Bernhard Übelacker bernhardu@mailbox.org --- Still visible in 7.0-rc2.
https://bugs.winehq.org/show_bug.cgi?id=49527
Piotr Caban piotr.caban@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |piotr.caban@gmail.com
--- Comment #2 from Piotr Caban piotr.caban@gmail.com --- It should be fixed by d5988259c110dca1e24d12b6114ed1d2e0f7fea6: wineps.drv: Don't crash if specified font is missing required table in T42_download_header.
Please retest.
https://bugs.winehq.org/show_bug.cgi?id=49527
Bernhard Übelacker bernhardu@mailbox.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Fixed by SHA1| |d5988259c110dca1e24d12b6114 | |ed1d2e0f7fea6 Resolution|--- |FIXED Summary|Printing font Chilanka |Printing with font Chilanka |crashes Notepad and Word |crashes Notepad and Word
--- Comment #3 from Bernhard Übelacker bernhardu@mailbox.org --- Thanks for the update. Yes, I cannot see this crash any longer with Notepad with this commit. Unfortunately I don't have a Word at hand right now.
Commit included in wine-8.17 and later.
(While the crash is gone with this commit, at least printing to an cups-pdf printer results in an empty page, but this would deserve a separte bug.)
https://bugs.winehq.org/show_bug.cgi?id=49527
--- Comment #4 from Bernhard Übelacker bernhardu@mailbox.org --- I can now also say Word 2003 is no longer crashing since wine-8.17 when printing with Chilanka font.
(But here the same, text with this font is not showing in the "printed" PDF. I believe this is bug #29255.)
https://bugs.winehq.org/show_bug.cgi?id=49527
Alexandre Julliard julliard@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #5 from Alexandre Julliard julliard@winehq.org --- Closing bugs fixed in 9.0-rc1.
-
WineHQ Bugzilla