Description of problem: Open attached pdf file; when "Pick font" dialog shows up, choose font called "Elli" and press "OK". fontforge will crash - 100% reproducible. Version-Release number of selected component: fontforge-20120731b-2.fc18 Additional info: backtrace_rating: 4 cmdline: fontforge /tmp/tales-117.pdf crash_function: pcFree executable: /usr/bin/fontforge kernel: 3.7.2-201.fc18.x86_64 remote_result: NOTFOUND uid: 500 Truncated backtrace: Thread no. 1 (6 frames) #1 pcFree at parsepdf.c:1983 #2 _SFReadPdfFont at parsepdf.c:2096 #3 _ReadSplineFont at splinefont.c:1086 #4 ReadSplineFont at splinefont.c:1248 #5 LoadSplineFont at splinefont.c:1321 #6 ViewPostScriptFont at fontviewbase.c:1315
Created attachment 683835 [details] File: backtrace
Created attachment 683836 [details] File: cgroup
Created attachment 683837 [details] File: core_backtrace
Created attachment 683838 [details] File: dso_list
Created attachment 683839 [details] File: environ
Created attachment 683840 [details] File: limits
Created attachment 683841 [details] File: maps
Created attachment 683842 [details] File: open_fds
Created attachment 683843 [details] File: proc_pid_status
Created attachment 683844 [details] File: var_log_messages
Created attachment 683845 [details] pdf file with the font "Elli" that causes this coredump Run "fontforge tales.pdf"; when "Pick font" dialog appears, choose font called "Elli". fontforge will crash at that point.
This is pretty much the same as bug 789187 that was reported against Fedora 16.
This happens on f17 too, but it doesn't happen with the latest upstream head. Unfortunately, it may take some time to identify an appropriate patch.
Examining the code that parses PDFs has revealed several array bounds faults that your test case triggers. I'm submitting builds for F18 and F17 at the moment.
fontforge-20120731b-4.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/fontforge-20120731b-4.fc18
fontforge-20120731b-4.fc17 has been submitted as an update for Fedora 17. https://admin.fedoraproject.org/updates/fontforge-20120731b-4.fc17
Package fontforge-20120731b-4.fc18: * should fix your issue, * was pushed to the Fedora 18 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing fontforge-20120731b-4.fc18' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2013-2117/fontforge-20120731b-4.fc18 then log in and leave karma (feedback).
fontforge-20120731b-4.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
fontforge-20120731b-4.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.