thunderbird smiley segfault

I ran mozilla-thunderbird -g and I reproduced the error and here's what I got:

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 46912549399280 (LWP 12036)]
0x00002aaab539e34f in NSGetModule ()
   from /usr/lib/mozilla-thunderbird/components/libspellchecker.so

I hope that helps.

I checked what I suspected and it's true. This segfault will only happen if the spell check as you type is turned on. If off, I can do the smiley + two spaces and do a spell check with no problem.

Thanks for your bug report. Could you please try to obtain a
backtrace by following the instructions on
       http://wiki.ubuntu.com/DebuggingProgramCrash.
This will greatly aid us in tracking down your problem.

Thank you it will be looked into.

I am getting hit by this bug on Feisty's mozilla thunderbird 1.5.0.10-0ubuntu3 I don't want to report it again, but the bug is marked as needing more info. Do you need another backtrace, or what other information is needed?

Here is a backtrace with the debug symbols... crash is at mozInlineSpellChecker.cpp:980

Ok, as you can see, aValue is -1 which is causing the code IsNonwordChar(text[aOffset])) to crash. I applied the following patch to 1.5.0.10-0ubuntu3 source in Feisty, then built with

export DEB_BUILD_OPTIONS="nostrip"
dpkg-buildpackage -b -nc -rfakeroot

causes the crash to disappear and smileys to be spellchecked...

Thank you so much! Can you please submit that for consideration in the repository?

Uh, the comment has a patch on it... "check if aValue is negative" What else do you want submitted? I should note the comment needs a s/aValue/aOffset/g, but the patch is correct.

Nothing else needs to be submitted. I just your patch to be added in for the repository version of thunderbird. I'd do it, but I'm not exactly sure how.

ok, lets do some progress on this. Will review the patch.

I'm not able to reproduce this with Thunderbird 2.0 in Gutsy. Closing as Fix Released.