this magical function fails if first for(;;) loop
succeeds in "tmp = Xmalloc(buf_size + data_len))"
and then succeeds in "name = _XimEncodeIMATTRIBUTE".
Then magical lines
buf_s = (CARD16 *)&buf[XIM_HEADER_SIZE];
buf_s = im->private.proto.imid;
access free()d memory. Assuming _XimEncodeIMATTRIBUTE sets ret_len to != 0.
-- GitLab Migration Automatic Message --
This bug has been migrated to freedesktop.org's GitLab instance and has been closed from further activity.
You can subscribe and participate further through the new bug through this link to our GitLab instance: https://gitlab.freedesktop.org/xorg/lib/libx11/issues/49.