[Bug 46394] New: Valgrind shows an invalid read in urlmon/tests/url.c

Wed Jan 2 01:56:49 CST 2019

https://bugs.winehq.org/show_bug.cgi?id=46394

            Bug ID: 46394
           Summary: Valgrind shows an invalid read in urlmon/tests/url.c
           Product: Wine
           Version: 4.0-rc4
          Hardware: x86
                OS: Linux
            Status: NEW
          Keywords: download, source, testcase, valgrind
          Severity: normal
          Priority: P2
         Component: urlmon
          Assignee: wine-bugs at winehq.org
          Reporter: austinenglish at gmail.com
      Distribution: Gentoo

../../../tools/runtest -q -P wine -T ../../.. -M urlmon.dll -p
urlmon_test.exe.so url && touch url.ok
==13099== Invalid read of size 2
==13099==    at 0x8038588: strchrW (unicode.h:235)
==13099==    by 0x803AC5D: query_http_info (navigate.c:838)
==13099==    by 0x803C803: read_stream_data (navigate.c:1071)
==13099==    by 0x803CB23: nsChannelBSC_read_data (navigate.c:1494)
==13099==    by 0x8038A01: BindStatusCallback_OnDataAvailable (navigate.c:414)
==13099==    by 0x4C3A456: IBindStatusCallback_OnDataAvailable (urlmon.h:940)
==13099==    by 0x4C3A456: BindStatusCallback_OnDataAvailable (???:0)
==13099==    by 0x4C3F637: IBindStatusCallback_OnDataAvailable (urlmon.h:940)
==13099==    by 0x4C3F637: report_data (???:0)
==13099==    by 0x4C3F89C: start_binding (binding.c:1587)
==13099==    by 0x4C3FA38: bind_to_storage (binding.c:1624)
==13099==    by 0x4C56714: URLMoniker_BindToStorage (umon.c:280)
==13099==    by 0x803CBB6: IMoniker_BindToStorage (objidl.h:3228)
==13099==    by 0x803CBB6: start_binding (???:0)
==13099==    by 0x805EEBC: PersistMoniker_Load (persist.c:655)
==13099==    by 0x4C3F083: IPersistMoniker_Load (urlmon.h:2367)
==13099==    by 0x4C3F083: load_doc_mon (???:0)
==13099==    by 0x4C3F1E4: create_mime_object (binding.c:280)
==13099==    by 0x4C3F310: create_object (binding.c:310)
==13099==    by 0x4C3F58E: report_data (binding.c:1122)
==13099==    by 0x4C3F9B0: InternetProtocolSink_ReportData (binding.c:1171)
==13099==    by 0x4C41381: IInternetProtocolSink_ReportData (urlmon.h:3038)
==13099==    by 0x4C41381: ProtocolSinkHandler_ReportData (???:0)
==13099==    by 0x4C41786: IInternetProtocolSink_ReportData (urlmon.h:3038)
==13099==    by 0x4C41786: report_data_proc (???:0)
==13099==    by 0x4C40D03: process_tasks (bindprot.c:57)
==13099==  Address 0xb9fd566 is 0 bytes after a recently re-allocated block of
size 334 alloc'd
==13099==    at 0x7BC48394: notify_alloc (heap.c:260)
==13099==    by 0x7BC4B8B8: RtlAllocateHeap (heap.c:1726)
==13099==    by 0x803A51B: heap_alloc (heap.h:29)
==13099==    by 0x803AC22: query_http_info (navigate.c:828)
==13099==    by 0x803C803: read_stream_data (navigate.c:1071)
==13099==    by 0x803CB23: nsChannelBSC_read_data (navigate.c:1494)
==13099==    by 0x8038A01: BindStatusCallback_OnDataAvailable (navigate.c:414)
==13099==    by 0x4C3A456: IBindStatusCallback_OnDataAvailable (urlmon.h:940)
==13099==    by 0x4C3A456: BindStatusCallback_OnDataAvailable (???:0)
==13099==    by 0x4C3F637: IBindStatusCallback_OnDataAvailable (urlmon.h:940)
==13099==    by 0x4C3F637: report_data (???:0)
==13099==    by 0x4C3F89C: start_binding (binding.c:1587)
==13099==    by 0x4C3FA38: bind_to_storage (binding.c:1624)
==13099==    by 0x4C56714: URLMoniker_BindToStorage (umon.c:280)
==13099==    by 0x803CBB6: IMoniker_BindToStorage (objidl.h:3228)
==13099==    by 0x803CBB6: start_binding (???:0)
==13099==    by 0x805EEBC: PersistMoniker_Load (persist.c:655)
==13099==    by 0x4C3F083: IPersistMoniker_Load (urlmon.h:2367)
==13099==    by 0x4C3F083: load_doc_mon (???:0)
==13099==    by 0x4C3F1E4: create_mime_object (binding.c:280)
==13099==    by 0x4C3F310: create_object (binding.c:310)
==13099==    by 0x4C3F58E: report_data (binding.c:1122)
==13099==    by 0x4C3F9B0: InternetProtocolSink_ReportData (binding.c:1171)
==13099==    by 0x4C41381: IInternetProtocolSink_ReportData (urlmon.h:3038)
==13099==    by 0x4C41381: ProtocolSinkHandler_ReportData (???:0)
==13099==

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.