makecpt crashes with simple input
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gmt (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: gmt
While attempting to reproduce the Delauney triangulation output
http://
I got the following crash. This looks pretty serious to me. Any thoughts?
john@thunder:~$ makecpt -T0/1/25 > topo.cpt
*** glibc detected *** makecpt: free(): invalid next size (fast): 0x0804c0f0 ***
======= Backtrace: =========
/lib/tls/
/lib/tls/
/usr/lib/
/usr/lib/
makecpt[0x80493a2]
/lib/tls/
makecpt[0x8048c11]
======= Memory map: ========
08048000-0804b000 r-xp 00000000 08:04 3369640 /usr/lib/
0804b000-0804c000 rw-p 00002000 08:04 3369640 /usr/lib/
0804c000-0808d000 rw-p 0804c000 00:00 0 [heap]
b7b00000-b7b21000 rw-p b7b00000 00:00 0
b7b21000-b7c00000 ---p b7b21000 00:00 0
b7c48000-b7c49000 rw-p b7c48000 00:00 0
b7c49000-b7d8d000 r-xp 00000000 08:04 4579107 /lib/tls/
b7d8d000-b7d8e000 r--p 00143000 08:04 4579107 /lib/tls/
b7d8e000-b7d90000 rw-p 00144000 08:04 4579107 /lib/tls/
b7d90000-b7d93000 rw-p b7d90000 00:00 0
b7d93000-b7db6000 r-xp 00000000 08:04 4579115 /lib/tls/
b7db6000-b7db8000 rw-p 00023000 08:04 4579115 /lib/tls/
b7db8000-b7db9000 rw-p b7db8000 00:00 0
b7db9000-b7def000 r-xp 00000000 08:04 3164324 /usr/lib/
b7def000-b7df0000 rw-p 00035000 08:04 3164324 /usr/lib/
b7df0000-b7df1000 rw-p b7df0000 00:00 0
b7df7000-b7e01000 r-xp 00000000 08:04 4578597 /lib/libgcc_s.so.1
b7e01000-b7e02000 rw-p 0000a000 08:04 4578597 /lib/libgcc_s.so.1
b7e02000-b7e03000 rw-p b7e02000 00:00 0
b7e03000-b7ea2000 r-xp 00000000 08:04 3369732 /usr/lib/
b7ea2000-b7ec3000 rw-p 0009f000 08:04 3369732 /usr/lib/
b7ec3000-b7f00000 rw-p b7ec3000 00:00 0
b7f00000-b7f1a000 r-xp 00000000 08:04 4578686 /lib/ld-2.6.1.so
b7f1a000-b7f1c000 rw-p 00019000 08:04 4578686 /lib/ld-2.6.1.so
bf8f0000-bf905000 rw-p bf8f0000 00:00 0 [stack]
ffffe000-fffff000 r-xp 00000000 00:00 0 [vdso]
Aborted (core dumped)
I note that the input here is illegal, the value '25' should be less than the range (0,1). But still, there shouldn't be a crash for that.
Cheers
JP