https://bugs.kde.org/show_bug.cgi?id=455386
--- Comment #4 from Alvin Wong <al...@alvinhc.com> --- The root of evil seems to be this QApplication::processEvents() call [1]. This will be called from signals activated inside the blocking QProcess::waitForFinished() call. Inside processEvents(), if the child ffmpeg process has died, it will deleteLater() the pipe readers of the active QProcess. The deferred delete is also processed in processEvents(). When control returns to QProcess, it is now handling a deleted pipe reader, hence the UAF. [1]: https://invent.kde.org/graphics/krita/-/blob/0aa50565d3b1974338d9c25f39a5302a5be0a591/libs/ui/animation/KisFFMpegWrapper.cpp#L195 -- You are receiving this mail because: You are watching all bug changes.
