Double free in coders/pict.c:2000
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
imagemagick (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Running: convert pict_double_
Program received signal SIGABRT, Aborted.
Stack Trace:
-------
0xb7fdbbe0 in __kernel_vsyscall ()
gdb$ bt
#0 0xffffffff in __kernel_vsyscall ()
#1 0xffffffff in __GI_raise (sig=0x6) at ../sysdeps/
#2 0xffffffff in __GI_abort () at abort.c:89
#3 0xffffffff in __libc_message (do_abort=0x1, fmt=0xb78bc444 "*** Error in `%s': %s: 0x%s ***\n") at ../sysdeps/
#4 0xffffffff in malloc_printerr (action=<optimized out>, str=0xb78bc4fc "double free or corruption (out)", ptr=0x8092f20) at malloc.c:4965
#5 0xffffffff in _int_free (av=0xb790f840 <main_arena>, p=<optimized out>, have_lock=0x0) at malloc.c:3834
#6 0xffffffff in RelinquishMagic
#7 0xffffffff in WritePICTImage (image_
#8 0xffffffff in WriteImage (image_info=0x1, image=0x807fc28) at magick/
#9 0xffffffff in WriteImages (image_info=0x0, images=0x807fc28, filename=0x0, exception=
#10 0xffffffff in ConvertImageCommand (image_
#11 0xffffffff in MagickCommandGe
#12 0x080486ec in main (argv=0xbffff024, argc=<optimized out>) at utilities/
#13 0x080486ec in main (argc=0x3, argv=0xbffff024) at utilities/
gdb$
Changed in imagemagick (Ubuntu): | |
status: | New → Confirmed |
information type: | Private Security → Public Security |
Thanks for reporting this issue. Could you please report it to the ImageMagick project by filling out the form here?:
http:// www.imagemagick .org/script/ contact. php
Thanks.