Ubuntu
poppler package

[EM64T]evince crashed with SIGSEGV in ImageStream::getLine()

Bug #148676 reported by Filiprino on 2007-10-03

6

Affects		Status	Importance	Assigned to	Milestone
	Poppler	Fix Released	Critical	freedesktop-bugs #12668
	poppler (Ubuntu)	Fix Released	Medium	Ubuntu Desktop Bugs

Bug Description

Binary package hint: evince

When I open the following PDF http://www.lifeinformatica.com/componentes.pdf, evince crashes and closes itself.

ProblemType: Crash
Architecture: amd64
Date: Wed Oct 3 20:59:00 2007
DistroRelease: Ubuntu 7.10
ExecutablePath: /usr/bin/evince
NonfreeKernelModules: nvidia
Package: evince 2.20.0-0ubuntu2
PackageArchitecture: amd64
ProcCmdline: evince file:///tmp/componentes.pdf
ProcCwd: /home/filiprino
ProcEnviron:
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
LANG=es_ES.UTF-8
SHELL=/bin/bash
Signal: 11
SourcePackage: evince
StacktraceTop:
ImageStream::getLine ()
CairoOutputDev::drawMaskedImage ()
Gfx::doImage () from /usr/lib/libpoppler.so.2
Gfx::opXObject () from /usr/lib/libpoppler.so.2
Gfx::go () from /usr/lib/libpoppler.so.2
Title: evince crashed with SIGSEGV in ImageStream::getLine()
Uname: Linux kiwi64 2.6.22-12-generic #1 SMP Sun Sep 23 20:03:18 GMT 2007 x86_64 GNU/Linux
UserGroups: adm admin audio cdrom dialout dip floppy lpadmin netdev plugdev powerdev scanner video

See original description

Tags:

Revision history for this message

In freedesktop.org Bugzilla #12668, Albert Astals Cid (aacid) wrote on 2007-10-03:

#1

I can reproduce it with gtk-cairo-test but not with test-poppler-qt4 so seems indeed a bug in CairoOutputDev

My bt is

#0 0x00002ae0cc2b6765 in raise () from /lib/libc.so.6
#1 0x00002ae0cc2b81c0 in abort () from /lib/libc.so.6
#2 0x00002ae0cc2ef60b in ?? () from /lib/libc.so.6
#3 0x00002ae0cc2f7494 in ?? () from /lib/libc.so.6
#4 0x00002ae0cc2f8e23 in malloc () from /lib/libc.so.6
#5 0x00002ae0ca8570a2 in ?? () from /usr/lib/libcairo.so.2
#6 0x00002ae0ca856208 in ?? () from /usr/lib/libcairo.so.2
#7 0x00002ae0ca81b441 in cairo_image_surface_create_for_data () from /usr/lib/libcairo.so.2
#8 0x00002ae0c7f302be in CairoOutputDev::drawMaskedImage (this=0x695860, state=<value optimized out>, ref=<value optimized out>, str=0xcdecc0,
width=196, height=179, colorMap=0xbda5b0, maskStr=0xbdeec0, maskWidth=27, maskHeight=70, maskInvert=0) at CairoOutputDev.cc:1066
#9 0x00002ae0c7bf124c in Gfx::doImage (this=0xb3bf90, ref=0x7fffe31791c0, str=0xcdecc0, inlineImg=<value optimized out>) at Gfx.cc:3698
#10 0x00002ae0c7bf670c in Gfx::opXObject (this=0xb3bf90, args=<value optimized out>, numArgs=<value optimized out>) at Gfx.cc:3368
#11 0x00002ae0c7bef218 in Gfx::go (this=0xb3bf90, topLevel=1) at Gfx.cc:594
#12 0x00002ae0c7bef665 in Gfx::display (this=0xb3bf90, obj=0x7fffe3179570, topLevel=1) at Gfx.cc:557

Revision history for this message

Filiprino (filiprino) wrote on 2007-10-03:

#2

Binary package hint: evince

When I open the following PDF http://www.lifeinformatica.com/componentes.pdf, evince crashes and closes itself.

ProblemType: Crash
Architecture: amd64
Date: Wed Oct 3 20:59:00 2007
DistroRelease: Ubuntu 7.10
ExecutablePath: /usr/bin/evince
NonfreeKernelModules: nvidia
Package: evince 2.20.0-0ubuntu2
PackageArchitecture: amd64
ProcCmdline: evince file:///tmp/componentes.pdf
ProcCwd: /home/filiprino
ProcEnviron:
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
LANG=es_ES.UTF-8
SHELL=/bin/bash
Signal: 11
SourcePackage: evince
StacktraceTop:
ImageStream::getLine ()
CairoOutputDev::drawMaskedImage ()
Gfx::doImage () from /usr/lib/libpoppler.so.2
Gfx::opXObject () from /usr/lib/libpoppler.so.2
Gfx::go () from /usr/lib/libpoppler.so.2
Title: evince crashed with SIGSEGV in ImageStream::getLine()
Uname: Linux kiwi64 2.6.22-12-generic #1 SMP Sun Sep 23 20:03:18 GMT 2007 x86_64 GNU/Linux
UserGroups: adm admin audio cdrom dialout dip floppy lpadmin netdev plugdev powerdev scanner video

Revision history for this message

Filiprino (filiprino) wrote on 2007-10-03:

#3

Dependencies.txt Edit (4.5 KiB, text/plain; charset="utf-8")
Disassembly.txt Edit (1.1 KiB, text/plain; charset="utf-8")
ProcMaps.txt Edit (39.3 KiB, text/plain; charset="utf-8")
ProcStatus.txt Edit (680 bytes, text/plain; charset="utf-8")
Registers.txt Edit (1.1 KiB, text/plain; charset="utf-8")
Stacktrace.txt Edit (977 bytes, text/plain; charset="utf-8")
ThreadStacktrace.txt Edit (1.5 KiB, text/plain; charset="utf-8")

Revision history for this message

Filiprino (filiprino) wrote on 2007-10-03:

#4

componentes.pdf Edit (3.8 MiB, application/pdf)

Attached to this message is the PDF document which crashes evinces.

Revision history for this message

Apport retracing service (apport) wrote on 2007-10-03: Symbolic stack trace

#5

Stacktrace.txt (retraced) Edit (18.6 KiB, text/plain)

StacktraceTop:ImageStream::getLine (this=0x2aaab144e350) at Stream.cc:367
CairoOutputDev::drawMaskedImage (this=0x724470, state=<value optimized out>,
Gfx::doImage (this=0x2aaab0000dc0, ref=0x407ffbd0, str=0x2aaab144b890,
Gfx::opXObject (this=0x2aaab0000dc0, args=<value optimized out>, numArgs=<value optimized out>)
Gfx::go (this=0x2aaab0000dc0, topLevel=1) at Gfx.cc:594

Revision history for this message

Apport retracing service (apport) wrote on 2007-10-03: Symbolic threaded stack trace

#6

ThreadStacktrace.txt (retraced) Edit (20.0 KiB, text/plain)

Revision history for this message

Apport retracing service (apport) wrote on 2007-10-03: Stack trace with source code

#7

StacktraceSource.txt Edit (1.8 KiB, text/plain)

Changed in evince:
importance:	Undecided → Medium

Revision history for this message

Pedro Villavicencio (pedro) wrote on 2007-10-03:

#8

Thanks for your bug report. This bug has been reported to the developers of the software. You can track it and make comments here: https://bugs.freedesktop.org/show_bug.cgi?id=12668

Changed in poppler:
assignee:	nobody → desktop-bugs
status:	New → Triaged

Bug Watch Updater (bug-watch-updater) on 2007-10-05

Changed in poppler:
status:	Unknown → Confirmed

Revision history for this message

In freedesktop.org Bugzilla #12668, Jeff Muizelaar (jeff-infidigm) wrote on 2007-10-06:

#9

I have a fix. I'll commit soon.

Revision history for this message

In freedesktop.org Bugzilla #12668, Jeff Muizelaar (jeff-infidigm) wrote on 2007-10-06:

#10

Fixed in git.

Bug Watch Updater (bug-watch-updater) on 2007-10-07

Changed in poppler:
status:	Confirmed → Fix Released

Revision history for this message

Pedro Villavicencio (pedro) wrote on 2007-10-08:

#11

fixed upstream.

Changed in poppler:
status:	Triaged → Fix Committed

Revision history for this message

Wouter Stomp (wouterstomp-deactivatedaccount) wrote on 2008-02-05:

#12

Should be fixed: several upstream releases since then.

Changed in poppler:
status:	Fix Committed → Fix Released

Bug Watch Updater (bug-watch-updater) on 2010-09-14

Changed in poppler:
importance:	Unknown → Critical

Bug Watch Updater (bug-watch-updater) on 2011-01-25

Changed in poppler:
importance:	Critical → Unknown

Bug Watch Updater (bug-watch-updater) on 2011-02-03

Changed in poppler:
importance:	Unknown → Critical

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

freedesktop-bugs #12668
[RESOLVED FIXED] Edit

Bug watches keep track of this bug in other bug trackers.