Bug 18030

Summary: Crash when converting to abiword
Product: poppler Reporter: Albert Astals Cid <aacid>
Component: generalAssignee: poppler-bugs <poppler-bugs>
Status: RESOLVED WONTFIX QA Contact:
Severity: normal    
Priority: medium CC: jauco
Version: unspecified   
Hardware: Other   
OS: All   
Whiteboard:
i915 platform: i915 features:
Attachments: The file that produces a crash

Description Albert Astals Cid 2008-10-12 05:27:30 UTC 
Created attachment 19602 [details]
The file that produces a crash

Using pdftoabw crashes on this file.

Valgrind says:

==1066== Invalid read of size 4
==1066==    at 0x4FD8986: ABWOutputDev::cleanUpNode(_xmlNode*, bool) (ABWOutputDev.cc:713)
==1066==    by 0x4FD8705: ABWOutputDev::cleanUpNode(_xmlNode*, bool) (ABWOutputDev.cc:679)
==1066==    by 0x4FDA8CD: ABWOutputDev::endPage() (ABWOutputDev.cc:86)
==1066==    by 0x4F1CE7F: Gfx::~Gfx() (Gfx.cc:577)
==1066==    by 0x4F67FA3: Page::displaySlice(OutputDev*, double, double, int, int, int, int, int, int, int, int, Catalog*, int (*)(void*), void*, int (*)(Annot*, void*), void*) (Page.cc:463)
==1066==    by 0x4F68063: Page::display(OutputDev*, double, double, int, int, int, int, Catalog*, int (*)(void*), void*, int (*)(Annot*, void*), void*) (Page.cc:367)
==1066==    by 0x4F6D1A5: PDFDoc::displayPage(OutputDev*, int, double, double, int, int, int, int, int (*)(void*), void*, int (*)(Annot*, void*), void*) (PDFDoc.cc:391)
==1066==    by 0x4F6D23E: PDFDoc::displayPages(OutputDev*, int, int, double, double, int, int, int, int, int (*)(void*), void*, int (*)(Annot*, void*), void*) (PDFDoc.cc:406)
==1066==    by 0x402121: main (pdftoabw.cc:144)
==1066==  Address 0x747b1a8 is 0 bytes after a block of size 64 alloc'd
==1066==    at 0x4C23487: operator new[](unsigned long) (vg_replace_malloc.c:274)
==1066==    by 0x4FD857B: ABWOutputDev::cleanUpNode(_xmlNode*, bool) (ABWOutputDev.cc:625)
==1066==    by 0x4FD8705: ABWOutputDev::cleanUpNode(_xmlNode*, bool) (ABWOutputDev.cc:679)
==1066==    by 0x4FDA8CD: ABWOutputDev::endPage() (ABWOutputDev.cc:86)
==1066==    by 0x4F1CE7F: Gfx::~Gfx() (Gfx.cc:577)
==1066==    by 0x4F67FA3: Page::displaySlice(OutputDev*, double, double, int, int, int, int, int, int, int, int, Catalog*, int (*)(void*), void*, int (*)(Annot*, void*), void*) (Page.cc:463)
==1066==    by 0x4F68063: Page::display(OutputDev*, double, double, int, int, int, int, Catalog*, int (*)(void*), void*, int (*)(Annot*, void*), void*) (Page.cc:367)
==1066==    by 0x4F6D1A5: PDFDoc::displayPage(OutputDev*, int, double, double, int, int, int, int, int (*)(void*), void*, int (*)(Annot*, void*), void*) (PDFDoc.cc:391)
==1066==    by 0x4F6D23E: PDFDoc::displayPages(OutputDev*, int, int, double, double, int, int, int, int, int (*)(void*), void*, int (*)(Annot*, void*), void*) (PDFDoc.cc:406)
==1066==    by 0x402121: main (pdftoabw.cc:144)
Comment 1 Albert Astals Cid 2008-10-12 05:28:12 UTC 
Adding Jauco as CC as he did most of the code
Comment 2 Albert Astals Cid 2011-03-22 15:49:46 UTC 
pdftoabw was just removed from poppler as it was unmaintained so this won't be fixed. Sorry. If you were using it, this is the moment to step up and be its maintainer.

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.