View Issue Details Jump to Notes ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0013557ParaView(No Category)public2012-10-24 06:132013-01-30 10:41
ReporterSven Buijssen 
Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version 
Target VersionFixed in Version3.98.1 
Summary0013557: [git/master] VisItBridge GMVReader can trigger null pointer dereference in gmvread.c
DescriptionUnpack the attached "gmvfiles.zip". The files contained are derived from the sample ASCII GMV file "gmvtest.inp" that traditionally shipped with GMV binaries since at least February 2000. The only difference is that they use a "fromfile" for point and cell definitions. The two "fromfiles" have identical content, but different names and the directories where they are stored have a different recursion depth (both of which is crucial to trigger the issue).

(Convert all 4 extracted files to carriage return-line feed endings if you are on Windows while issue 13553 is unresolved.)

Download nightly build ParaViewSuperbuild.

Load "file2load1st/gmvtest.inp.gmv" by means of the VisItBridge GMVReader.
Apply.
Delete.
Load "../file2load2nd.gmv" by means of the VisItBridge GMVReader.

=> vtkVisItGMVReader will report "Unable to find any meshes" (which is bogus, because loading "file2load2nd.gmv" without having loaded "file2load1st/gmvtest.inp.gmv" first works fine)

Delete.

=> ParaView will segfault because of an attempted null pointer dereference in gmvread_close() (gmvread.c:438).

Patch attached.
TagsNo tags attached.
ProjectTBD
Topic Name
Typeincorrect functionality
Attached Fileszip file icon gmvfiles.zip [^] (2,137 bytes) 2012-10-24 06:13
patch file icon 0001-BUG-13557.-Fixed-segfault-in-gmvread.c.patch [^] (1,101 bytes) 2012-10-24 06:22 [Show Content]

 Relationships

  Notes
(0029817)
Sven Buijssen (reporter)
2012-11-30 13:53

commit db799d3eba9f6250fae0b244851a1cd58c5a497f
Author: Sven Buijssen <sven.buijssen@tu-dortmund.de>
Date: Wed Oct 24 11:50:34 2012 +0200

    BUG 0013557. Fixed segfault in gmvread.c
    
        Correctly null terminate input directory string, especially when it has
        been set to a longer string previously.

 Issue History
Date Modified Username Field Change
2012-10-24 06:13 Sven Buijssen New Issue
2012-10-24 06:13 Sven Buijssen File Added: gmvfiles.zip
2012-10-24 06:22 Sven Buijssen File Added: 0001-BUG-13557.-Fixed-segfault-in-gmvread.c.patch
2012-11-30 13:53 Sven Buijssen Note Added: 0029817
2012-11-30 13:53 Sven Buijssen Status backlog => closed
2012-11-30 13:53 Sven Buijssen Resolution open => fixed
2012-11-30 13:53 Sven Buijssen Fixed in Version => git-master
2013-01-30 10:41 Utkarsh Ayachit Fixed in Version git-master => 3.98.1


Copyright © 2000 - 2018 MantisBT Team