libpango1.0-0 bug causes gnome-panel to crash when title contains utf8 characters

Binary package hint: libpango1.0-0

Visiting http://blog.oup.com/2009/03/science-fiction/ causes gnome-panel to crash. I have isolated the problem to some of the UTF-8 characters that are in the title of the page. The crash happens in pango, presumably because the window-list applet puts the title of windows in the panel.

Rather than using firefox to trigger the bug, it's easier to use zenity. I have attached a file that runs zenity with the necessary UTF-8 characters.

I rebuilt the pango library with debugging symbols so a backtrace would be useful via

  apt-get source libpango1.0-0
  cd pango1.0-1.22.2/
  DEB_BUILD_OPTIONS="nostrip noopt" fakeroot debian/rules binary
  sudo dpkg -i ../libpango1.0-0_1.22.2-0ubuntu1_i386.deb

I have attached the backtrace output.

The crash happens on line

    4852 int glyph = item->analysis.level % 2 ? 0 : glyphs->num_glyphs - 1;

item->analysis.level is 32, so this results in glyphs->num_glyphs - 1 being run, and glyphs appears to be NULL.

(paulv@schrodinger) (07:37 PM) [0] (~)$ lsb_release -rd
Description: Ubuntu 8.10
Release: 8.10
(paulv@schrodinger) (07:37 PM) [0] (~)$ apt-cache policy libpango1.0-0
libpango1.0-0:
  Installed: 1.22.2-0ubuntu1
  Candidate: 1.22.2-0ubuntu1
  Version table:
     1.22.2-0ubuntu1 0
        500 http://ftp.ussg.indiana.edu intrepid-updates/main Packages
 *** 1.22.2-0ubuntu1 0
        100 /var/lib/dpkg/status
     1.22.1-0ubuntu1 0
        500 http://ftp.ussg.indiana.edu intrepid/main Packages