https://bugzilla.novell.com/show_bug.cgi?id=831620 https://bugzilla.novell.com/show_bug.cgi?id=831620#c2 --- Comment #2 from Fuminobu Takeyama <ftake@geeko.jp> 2013-09-27 18:26:13 UTC --- problem with libXau? "___vsnprintf_chk (s=0x0 /*snip*/)" means "buf == 0". At least "bsize = 0;" is missing in AuFileName.c before "return NULL", and so buf might be NULL if malloc failed in previous time.
size = strlen (name) + strlen(&slashDotXauthority[1]) + 2; if (size > bsize) { buf = malloc (size); if (!buf) return NULL; /* snip */ }
Its code was also changed recently. - strcpy (buf, name); - strcat (buf, slashDotXauthority + (name[1] == '\0' ? 1 : 0)); + snprintf (buf, bsize, "%s%s", name, + slashDotXauthority + (name[1] == '\0' ? 1 : 0)); http://cgit.freedesktop.org/xorg/lib/libXau/commit/AuFileName.c?id=704beb717... According to the stack trace: slashDotXauthority = 0x7f8405c30cca "/.Xauthority" name = 0x7fffd72e8e4a "/home/mitsutoshi" bsize = 29 atexit_registered = 1 size = 29 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.