From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail
From: Po Lu via "Bug reports for GNU Emacs,
 the Swiss army knife of text editors" <bug-gnu-emacs@gnu.org>
Newsgroups: gmane.emacs.bugs
Subject: bug#58334: 29.0.50; ASAN heap use after free in gui_produce_glyphs
Date: Fri, 07 Oct 2022 20:16:43 +0800
Message-ID: <87edvjq15g.fsf@yahoo.com>
References: <m2a669atai.fsf@Mini.fritz.box> <87mta8qx48.fsf@yahoo.com>
 <83v8ownmi1.fsf@gnu.org> <m2edvk9k24.fsf@Mini.fritz.box>
 <m2wn9c83bu.fsf@Mini.fritz.box> <874jwgqbd6.fsf@yahoo.com>
 <m27d1c10ad.fsf@Mini.fritz.box> <87zge8orla.fsf@yahoo.com>
 <83k05boos0.fsf@gnu.org>
Reply-To: Po Lu <luangruo@yahoo.com>
Mime-Version: 1.0
Content-Type: text/plain
Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214";
	logging-data="35931"; mail-complaints-to="usenet@ciao.gmane.io"
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/28.0.91 (gnu/linux)
Cc: gerd.moellmann@gmail.com, 58334@debbugs.gnu.org
To: Eli Zaretskii <eliz@gnu.org>
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Fri Oct 07 16:21:40 2022
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org
Original-Received: from lists.gnu.org ([209.51.188.17])
	by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>)
	id 1ogoEO-0009B5-DC
	for geb-bug-gnu-emacs@m.gmane-mx.org; Fri, 07 Oct 2022 16:21:40 +0200
Original-Received: from localhost ([::1]:38770 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>)
	id 1ogoEN-0007eS-CG
	for geb-bug-gnu-emacs@m.gmane-mx.org; Fri, 07 Oct 2022 10:21:39 -0400
Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:53088)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1ogmIl-0006S2-5z
 for bug-gnu-emacs@gnu.org; Fri, 07 Oct 2022 08:18:03 -0400
Original-Received: from debbugs.gnu.org ([209.51.188.43]:35583)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1ogmIk-0000uj-5V
 for bug-gnu-emacs@gnu.org; Fri, 07 Oct 2022 08:18:02 -0400
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1ogmIj-0004Nw-W8
 for bug-gnu-emacs@gnu.org; Fri, 07 Oct 2022 08:18:02 -0400
X-Loop: help-debbugs@gnu.org
Resent-From: Po Lu <luangruo@yahoo.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Fri, 07 Oct 2022 12:18:01 +0000
Resent-Message-ID: <handler.58334.B58334.166514503316787@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 58334
X-GNU-PR-Package: emacs
Original-Received: via spool by 58334-submit@debbugs.gnu.org id=B58334.166514503316787
 (code B ref 58334); Fri, 07 Oct 2022 12:18:01 +0000
Original-Received: (at 58334) by debbugs.gnu.org; 7 Oct 2022 12:17:13 +0000
Original-Received: from localhost ([127.0.0.1]:34658 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1ogmHw-0004Mh-VM
 for submit@debbugs.gnu.org; Fri, 07 Oct 2022 08:17:13 -0400
Original-Received: from sonic304-21.consmr.mail.ne1.yahoo.com ([66.163.191.147]:41706)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <luangruo@yahoo.com>) id 1ogmHv-0004MV-HS
 for 58334@debbugs.gnu.org; Fri, 07 Oct 2022 08:17:11 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048;
 t=1665145024; bh=+aIU1caqmciz7gXAVTboZXSjVrNoLtiKgLwO2xO4xcg=;
 h=From:To:Cc:Subject:References:Date:In-Reply-To:From:Subject:Reply-To;
 b=YoJ1h8ifgzYrHrVRIjbOR+Y6RIFoa7HvSWql9zvs0MdCzQRTDZpTccKoXqlg63IV8Ojr0VgeRXQilt0I7O/D0ra8lf0pHKF7YpjxHQzMAeTgMAErWdbrgt+TjiYoOHG9Ee8LfHoT7gHXh0y0HmDt1CvO94acvYiRG3gKzY88s43fd2+b07rqt8z5k/IN8ciy3LpUqzm0GOJ+Kx8gCsVofOiy5t0jRZkpINGQricsiZ32cmhp4GxZZeRg8THP4Mo9Lf7d+k5Mrpw5LqP/qi/NKIoGqMIgFk7GXxU3/ZrBexDT0EyNd9uaEPPaMccckqUsgnyZv5d5V08h+Z/ke2k/mA==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; 
 t=1665145024;
 bh=2jTBPU4+O3P/148Ay9P9+dbhLXHTO2xHls/u9jdE5xt=; 
 h=X-Sonic-MF:From:To:Subject:Date:From:Subject;
 b=Wy0aiLSHjRzQ0c3SJu1QDX/NkPw8JVQ5e01HxZ0B2DHSCV2eml1bvUMeaKb8szQEdhK4Wdx5NtHx/WC7nOpozixoiYTr8tqfpcHb43rM/NcFUxV5ucEfLFw8++32HGhfGYabIdAbuxl3vGEPx1OzcesQyMBJ2pTAGatAeOSm/yEiufj9SfdOwtaJ/mDaG1+mm4tmjRTfAr7KbzEdQPrEMhe5ssk50E/Q3uItlQ1l1U5Va+I41Dga1cHb6jKDMesKUvrEts8TD/Cm0XZ06/BuhElzQ7D0OZDhOHH2a+Da4yFsXZQrzfoCdI3ngarGVaM8z37DDD0zraNA/UOar/MArQ==
X-YMail-OSG: yy8o4CMVM1lLAKB6gAgQH0Rqxz9DedHmA40Eizcv.B6mds1iByiOXY1JpEehDFL
 nw0gOililLfbQqa4cFpfixvwcbAK85Ja1hz8gkuSAhVhofT9_w7xjMGm5PKS0e7HMG_A0vD6N9QT
 2Jct6j6ewAYKIBmunow1bc_iSRIpniD97V8EDnUKgyvfIpfP57UrL9b2mVQ_psXqJzy5bGi1Eb6R
 OhcrB1DZPO3A2EdGmzjSuMV.LK3dHhsZfwMzaONqgKQAITnTQVPOBaVXI31yFR4FicqJRsQrZTb1
 k3do4XrNeDrTOc8zfNwAgVI_fsW3w1rrLiemHEi3ciS6WCp9cpFIMpY5q2r1ZQfbUJUcATgZ0Rmo
 L6l1Ckgok_3fKfTn_By8GwCIbeoCqpI6Gd.3xKa0wBvpCL45alZaOoWVP9esxZIYk6rGNkLd.K0Z
 Dmt4yOQHA3hst4BIj5Gx0rBU5uuqa.SRNQIx5t61X8lrJJ6NU_viTbaWl6eZF1abOVkAUQTU8OKk
 MMB8aOvhmkonLgcsnKfdhINsGss2o.gMaoWJK4Z2Qb6uib9E8hl2pZqNrKE.uFb7dHz6XwO_Zd8O
 rnfoSjPdJs58im5c.WpBb5zxyvZIfF9BLQkVaOqDuh9BtkGfenT9KpXCG.Nl7Gi5m.9fc3McyyZS
 XSxXjbI.f4QjVZjRtwJC1UviKaI4tuaMmemDiZRmskxmHUTYW3G9PpPjYXbJEjFEJZW0gitOY.eA
 Na5S7MZxsTB23hZWc443SAasBbERC1QL1Ft6D3Aojf8JfYe7opeKp3dlqLD0J04xAT0Br5RG2YI7
 gaKCB4xQ8WrunDJCSqiCBtspet1PcS24VTOiDyctoL 
X-Sonic-MF: <luangruo@yahoo.com>
Original-Received: from sonic.gate.mail.ne1.yahoo.com by
 sonic304.consmr.mail.ne1.yahoo.com with HTTP; Fri, 7 Oct 2022 12:17:04 +0000
Original-Received: by hermes--production-sg3-cf9dc7f8d-qc2lq (Yahoo Inc. Hermes SMTP
 Server) with ESMTPA ID 483838364ffc4765f311824f8e5c8a1f; 
 Fri, 07 Oct 2022 12:17:00 +0000 (UTC)
In-Reply-To: <83k05boos0.fsf@gnu.org> (Eli Zaretskii's message of "Fri, 07 Oct
 2022 14:29:19 +0300")
X-Mailer: WebService/1.1.20702
 mail.backend.jedi.jws.acl:role.jedi.acl.token.atz.jws.hermes.yahoo
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
 the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
 <mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-gnu-emacs>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
 <mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org
Original-Sender: "bug-gnu-emacs"
 <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>
Xref: news.gmane.io gmane.emacs.bugs:244782
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/244782>

Eli Zaretskii <eliz@gnu.org> writes:

> You don't need process_pending_signals, it's enough that some hook
> calls 'redisplay' from Lisp.

process_pending_signals called from probably_quit and unblock_input
calling handle_async_input, and thus gobble_input, is what will run that
hook calling redisplay, right?  Since the unwanted execution of Lisp
happens inside read_socket_hook.