[Bug 44340] SpellForce 3 crashes in dwrite due to invalid index access to cluster array

wine-bugs at winehq.org wine-bugs at winehq.org
Fri Apr 26 05:26:32 CDT 2019 

https://bugs.winehq.org/show_bug.cgi?id=44340

Anastasius Focht <focht at gmx.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |DUPLICATE
            Summary|SpellForce 3 crashes        |SpellForce 3 crashes in
                   |                            |dwrite due to invalid index
                   |                            |access to cluster array

--- Comment #33 from Anastasius Focht <focht at gmx.net> ---
Hello folks,

yes, it's a dupe of bug 45543

Runs fine here with current Wine-Git.

SpellForce 3 client version for documentation:

--- snip ---
-=[ ProtectionID v0.6.9.0 DECEMBER]=-
(c) 2003-2017 CDKiLLER & TippeX
Build 24/12/17-21:05:42
Ready...
Scanning -> C:\Program Files (x86)\SpellForce 3\SF3ClientFinal.exe
File Type : 64-Bit Exe (Subsystem : Win GUI / 2), Size : 37960192 (02433A00h)
Byte(s) | Machine: 0x8664 (AMD64)
Compilation TimeStamp : 0x5A29790B -> Thu 07th Dec 2017 17:23:23 (GMT)
[TimeStamp] 0x5A29790B -> Thu 07th Dec 2017 17:23:23 (GMT) | PE Header | - |
Offset: 0x00000000:00000180 | VA: 0x00000001:40000180 | -
[TimeStamp] 0x5A2978C3 -> Thu 07th Dec 2017 17:22:11 (GMT) | Export | - |
Offset: 0x00000000:02281804 | VA: 0x00000001:42282A04 | -
[TimeStamp] 0x5A29790B -> Thu 07th Dec 2017 17:23:23 (GMT) | DebugDirectory | -
| Offset: 0x00000000:0163EA04 | VA: 0x00000001:4163FC04 | -
[TimeStamp] 0x5A29790B -> Thu 07th Dec 2017 17:23:23 (GMT) | DebugDirectory | -
| Offset: 0x00000000:0163EA20 | VA: 0x00000001:4163FC20 | -
[LoadConfig] Struct determined as v8 (Expected size 232 | Actual size 112)
[LoadConfig] CodeIntegrity -> Flags 0x746E | Catalog 0x702E (28718) | Catalog
Offset 0x6264 | Reserved 0x0
[LoadConfig] GuardAddressTakenIatEntryTable 0x68D:00000AB5 | Count 0x200000000
(20)
[LoadConfig] GuardLongJumpTargetTable 0x0:00000001 | Count 0x22A41B000000000
(363237600)
[LoadConfig] HybridMetadataPointer 0x95D54FA3:43A29E20 | DynamicValueRelocTable
0x1F60518:01F604F0
[LoadConfig] FailFastIndirectProc 0x0:00000000 | FailFastPointer 0x0:00000000
[LoadConfig] UnknownZero1 0x1 1F60530
[File Heuristics] -> Flag #1 : 00000100000001001101000100000000 (0x0404D100)
[Entrypoint Section Entropy] : 6.31 (section #0) ".text   " | Size : 0x163B8AE
(23312558) byte(s)
[DllCharacteristics] -> Flag : (0x8160) -> HEVA | ASLR | DEP | TSA
[SectionCount] 7 (0x7) | ImageSize 0x24A2000 (38412288) byte(s)
[Export] 100% of function(s) (29 of 29) are in file | 0 are forwarded | 27 code
| 2 data | 0 uninit data | 0 unknown | 
[VersionInfo] Company Name : Grimlore Games GmbH
[VersionInfo] Product Name : SpellForce III
[VersionInfo] Product Version : 45405
[VersionInfo] File Description : SpellForce III Game Client
[VersionInfo] File Version : 0.0.0.1
[VersionInfo] Original FileName : SF3Client.exe
[VersionInfo] Internal Name : SF3Client.exe
[VersionInfo] Legal Copyrights : Copyright © 2017
[ModuleReport] [IAT] Modules -> WININET.dll | steam_api64.dll |
RakNet_VS2013_DLL_Release_x64.dll | USER32.dll | DINPUT8.dll |
PhysX3Common_x64.dll | PhysX3_x64.dll | PhysX3CharacterKinematic_x64.dll |
fmodstudio64.dll | fmod64.dll | d3d11.dll | dxgi.dll | VERSION.dll | PSAPI.DLL
| IPHLPAPI.DLL | KERNEL32.dll | GDI32.dll | ADVAPI32.dll | SHELL32.dll |
ole32.dll | VCOMP120.DLL | WS2_32.dll | WINMM.dll | OLEAUT32.dll
[ModuleReport] [DelayImport] Modules -> DWrite.dll | d2d1.dll
[Debug Info] (record 1 of 2) (file offset 0x163EA00)
Characteristics : 0x0 | TimeDateStamp : 0x5A29790B (Thu 07th Dec 2017 17:23:23
(GMT)) | MajorVer : 0 / MinorVer : 0 -> (0.0)
Type : 2 (0x2) -> CodeView | Size : 0x23 (35) 
AddressOfRawData : 0x1F604B8 | PointerToRawData : 0x1F5F2B8
CvSig : 0x53445352 | SigGuid 95D54FA3-9E20-43A2-9CA573D6DD18A7D1
Age : 0x4B (75) | Pdb : Client.pdb
[Debug Info] (record 2 of 2) (file offset 0x163EA1C)
Characteristics : 0x0 | TimeDateStamp : 0x5A29790B (Thu 07th Dec 2017 17:23:23
(GMT)) | MajorVer : 0 / MinorVer : 0 -> (0.0)
Type : 12 (0xC) -> Undocumented | Size : 0x14 (20) 
AddressOfRawData : 0x1F604DC | PointerToRawData : 0x1F5F2DC
[!] Steam api usage detected
[CdKeySerial] found "Invalid code" @ VA: 0x01642660 / Offset: 0x01641460
[CdKeySerial] found "Test Version" @ VA: 0x0168FE3A / Offset: 0x0168EC3A
[CdKeySerial] found "Test Version" @ VA: 0x0168FED0 / Offset: 0x0168ECD0
[CompilerDetect] -> Visual C++ 12.0 (Visual Studio 2012)
[!] File appears to have no protection or is using an unknown protection
- Scan Took : 5.282 Second(s) [000001656h (5718) tick(s)] [180 of 580 scan(s)
done]
--- snip ---

$ wine --version
wine-4.6-251-g8582615894

Regards

*** This bug has been marked as a duplicate of bug 45543 ***

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list