When creating a OoT new game, the game crashes (buffer overflow)

Okay, here's the problem.

When loading Ocarina of Time, the game loads perfectly, with graphics,
sound, without problems. If I create a new game, the new game gets created
(if I restart the game, it is still there). However, when I attempt to
start the game (to start playing), the whole emulator crashes!

I include the error message at the end of this bug report, but this is a
buffer overflow.

I am using Ubuntu 8.10 on my laptop computer which is an Intel Core 2 Duo
T2390 with 3 GB of RAM, onboard graphics cards. The version of mupen64plus
I am using is 1.4.1.

I want to add that the game runs well on my desktop computer, Super Mario
64 runs well and Majora's Mask work well too, out of the box.

Here is the console dump (changing the R4300 Core mode doesn't work either...).

Compression: Uncompressed
Imagetype: .z64 (native)
Rom size: 33554432 bytes (or 32 Mb or 256 Megabits)
MD5: 57A9719AD547C516342E1A15D5C28C3D
80 37 12 40
ClockRate = f
Version: 1449
CRC: 693ba2ae b7f14e9f
Name: THE LEGEND OF ZELDA
Manufacturer: 43000000
Cartridge_ID: 4c5a
Country Code: 245
PC = 80000400
EEPROM type: 0
init timer!
memory initialized
[RiceVideo] SSE processing enabled.
[blight's SDL input plugin]: version 0.0.10 initialized.
[RiceVideo] SSE processing enabled.
[RiceVideo] Found ROM 'THE LEGEND OF ZELDA', CRC aea23b699f4ef1b7-45
[RiceVideo] Enabled hacks for game: 'THE LEGEND OF ZELDA'
InitExternalTextures
Initializing OpenGL Device Context
(II) Initializing SDL video subsystem...
(II) Getting video info...
(II) Setting video mode 640x480...
Tungsten Graphics, Inc - Mesa DRI Intel(R) 965GM 20061102 x86/MMX/SSE2 :
1.4 Mesa 7.2
[RiceVideo] OpenGL Combiner: Fragment Program
[JttL's SDL Audio plugin] version 1.4.1 initalizing.
[JttL's SDL Audio plugin] Initializing SDL audio subsystem...
[JttL's SDL Audio plugin] Allocating memory for audio buffer: 65536 bytes.
Starting r4300 emulator
R4300 Core mode: Pure Interpreter
*** buffer overflow detected ***: mupen64plus terminated
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0xb7582558]
/lib/tls/i686/cmov/libc.so.6[0xb7580680]
/usr/local/share/mupen64plus/plugins/mupen64_hle_rsp_azimer.so(jpg_uncompress+0x
63)[0xb6e98023]
======= Memory map: ========
08048000-080db000 r-xp 00000000 08:05 124028     /usr/local/bin/mupen64plus
080db000-080dc000 r-xp 00092000 08:05 124028     /usr/local/bin/mupen64plus
080dc000-080df000 rwxp 00093000 08:05 124028     /usr/local/bin/mupen64plus
080df000-09af2000 rwxp 080df000 00:00 0 
0a32c000-1082b000 rwxp 0a32c000 00:00 0          [heap]
ac411000-ac422000 r-xp 00000000 08:05 352944    
/usr/local/share/mupen64plus/fonts/font.ttf
ac422000-ac423000 ---p ac422000 00:00 0 
ac423000-acc23000 rwxp ac423000 00:00 0 
acc23000-ace24000 rwxs 00000000 00:15 29735      /dev/shm/pulse-shm-2176782565
ace24000-ad225000 rwxp ace24000 00:00 0 
ad225000-af225000 rwxs c33a0000 00:0e 16699      /dev/dri/card0
af225000-afa95000 rwxs c2b30000 00:0e 16699      /dev/dri/card0
afa95000-b0305000 rwxs c22c0000 00:0e 16699      /dev/dri/card0
b0305000-b0b75000 rwxs c0100000 00:0e 16699      /dev/dri/card0
b0b75000-b13e5000 rwxs c0100000 00:0e 16699      /dev/dri/card0
b13e5000-b1616000 r-xp 00000000 08:05 423491     /usr/lib/dri/i965_dri.so
b1616000-b161d000 r-xp 00230000 08:05 423491     /usr/lib/dri/i965_dri.so
b161d000-b162c000 rwxp 00237000 08:05 423491     /usr/lib/dri/i965_dri.so
b162c000-b1637000 rwxp b162c000 00:00 0 
b1637000-b1671000 rwxp b1671000 00:00 0 
b16e3000-b1731000 r-xp 00000000 08:05 51227      /usr/lib/libpulse.so.0.4.1
b1731000-b1732000 r-xp 0004d000 08:05 51227      /usr/lib/libpulse.so.0.4.1
b1732000-b1733000 rwxp 0004e000 08:05 51227      /usr/lib/libpulse.so.0.4.1
Original issue reported on code.google.com by guillaum...@gmail.com on 28 Nov 2008 at 1:50
kukugt / mupen64plus

When creating a OoT new game, the game crashes (buffer overflow) #175
