evince crashed with signal 5 in g_malloc()

please find attached the evil document

Thank you for taking the time to report this bug and helping to make Ubuntu better. Please try to obtain a valgrind log following the instructions at https://wiki.ubuntu.com/Valgrind and attach the file to the bug report. This will greatly help us in tracking down your problem.

attached the valgrind log

I have the same problem in Maverick.

I think the problem is trying to select text from the PDF multiple times - if I select only once, it doesn't crash but also doesn't show the selection.
If I switch to another window and come back then I can see that the text is selected (this is not a timing issue - I can wait many minutes for the selection to appear and it doesn't, or I can do the selection, switch momentarily to another window and come back and I then see the selection). I can then try to select another text and it doesn't crash.
If I try to select some text, and the selection doesn't show, and then I try to select another text or even the same text again - then it crashes.

See attached valgrind log

see attached PDF document with which I can reproduce the crash

I can't make evince crash with either of the PDF documents attached to this bug report, but I am having a lot of difficulty selecting text with the mouse. I am having the same difficulty with some PDF files which I have on a USB flash drive. The first time I click and drag a section of text it is usually not selected. On the second or third attempt at clicking and dragging the same section of text it is usually selected, but the selection does not always correspond exactly to what I was attempting to select - sometimes it is only a rough match, starting or finishing too early. I'm using Maverick alpha 3.

Uname: Linux 2.6.35-14-generic i686
Package: evince 2.31.90-0ubuntu1

I can't reproduce this here, but hat might be a poppler issue, let's reassign it there for now.

I've just tested both of the PDF documents attached to this bug, as well as my own PDF files, with the default versions of evince (2.30.3-1ubuntu2) and poppler (0.14.1-0ubuntu1) included on the Ubuntu 10.10 alpha 3 Live CD, and this bug does not occur. I can select text normally with those packages. So there seems to be a regression somewhere in the newer packages.

Re: the package this bug is assigned to - I thought poppler only did the rendering, and evince handled text selection, copy and paste? Also isn't the original report showing a crash in evince/libevview ?

But my hat is fine, thanks :)

Bug #626555 contains a gdb backtrace and valgrind log for what sounds like the same issue.

To madbiologist, this bug only occurs on last evince version, 2.31.90-0ubuntu1, you can not reproduce it on alpha-3.

This bug seems to affect me, too. Selected text in evince isn't highlighted and evince crashes unpredictably after text selection. Sometimes the text is selected (no highlight, but pasting works). Sometimes evince crashes (no highlight, text not in paste buffer).

From comment 4 in the fedora bug (see https://bugzilla.redhat.com/show_bug.cgi?id=625431#c4 ), it seems that this is bug is in evince, not poppler.

Since the bug is in evince, not poppler, I am changing the package to refect the correct package.

This bug was fixed in the package evince - 2.31.90-0ubuntu2

---------------
evince (2.31.90-0ubuntu2) maverick; urgency=low

  * debian/control.in:
    - updated the binary transition version (lp: #622150)
    - don't build-depends on gir-repository-dev that's not required
  * 90_git_crash_selection.patch:
    - git change to fix the viewer crashing when using the selection
      (lp: #622344)
 -- Sebastien Bacher <email address hidden> Mon, 06 Sep 2010 22:58:57 +0200