/ 
Tk-804.034
/ Tk_BackgroundError
Security Advisories (6)
CVE-2007-4769 (2008-01-09)

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.

CVE-2018-25032 (2022-03-25)

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

CVE-2011-3045 (2012-03-22)

Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.

CVE-2016-10087 (2017-01-30)

The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and then adding another text chunk to the structure.

CVE-2007-4772 (2008-01-09)

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.

CVE-2007-6067 (2008-01-09)

Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.

NAME

Tk_BackgroundError - report Tcl error that occurred in background processing

SYNOPSIS

#include <tk.h>

Tk_BackgroundError(interp)

ARGUMENTS

Tcl_Interp *interp (in)

Interpreter in which the error occurred.

DESCRIPTION

This procedure is typically invoked when a Tcl error occurs during ``background processing'' such as executing a Tcl command in response to a button press or menu entry invocation. When such an error occurs, the error condition is reported to Tk or to a widget or some other C code, and there is not usually any obvious way for that code to report the error to the user. In these cases the code calls Tk_BackgroundError with an interp argument identifying the interpreter in which the error occurred. Tk_BackgroundError attempts to invoke the tkerror Tcl command to report the error in an application-specific fashion. If no tkerror command exists, or if it returns with an error condition, then Tk_BackgroundError reports the error itself by printing a message on the standard error file.

Tk_BackgroundError does not invoke tkerror immediately (in some cases this could interfere with scripts that are in process at the time the error occurred). Instead, it invokes tkerror later as an idle callback. Tk_BackgroundError saves the values of the errorInfo and errorCode variables and restores these values just before invoking tkerror.

It is possible for many background errors to accumulate before tkerror is invoked. When this happens, each of the errors is processed in order. However, if tkerror returns a break exception, then all remaining error reports for the interpreter are skipped.

KEYWORDS

background, error, tkerror