Firefox 3.5 and above crash on full screen flash video

This also affects Firefox 3.1 and 3.2 running on Ubuntu 8.10.

http://crash-stats.mozilla.com/report/index/ef80473b-290b-492f-869e-423982090301 is an example crash report using Mozilla's latest 3.1, but the same thing happens with Mozilla's latest 3.2 and with ~ubuntu-mozilla-daily's firefox-3.1 and firefox-3.2.

Here the same, ubuntu 8.10

*** glibc detected *** /usr/lib/firefox-3.1b3/firefox-3.1: munmap_chunk(): invalid pointer: 0xa4727fa0 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6[0xb7dcd454]
/usr/lib/libGL.so.1[0xaa6cbfc5]
======= Memory map: ========
08048000-0805a000 r-xp 00000000 08:01 16630158 /usr/lib/firefox-3.1b3/firefox-3.1
0805a000-0805b000 r--p 00011000 08:01 16630158 /usr/lib/firefox-3.1b3/firefox-3.1
0805b000-0805c000 rw-p 00012000 08:01 16630158 /usr/lib/firefox-3.1b3/firefox-3.1
0805c000-0805d000 rw-p 0805c000 00:00 0
a3889000-a4451000 r-xp 00000000 08:01 14598621 /usr/lib/libGLcore.so.177.82
a4451000-a45f5000 rwxp 00bc8000 08:01 14598621 /usr/lib/libGLcore.so.177.82
a45f5000-a4600000 rwxp a45f5000 00:00 0
a4600000-a4b00000 rw-p a4600000 00:00 0
a4ba8000-a5ba8000 rw-p a4ba8000 00:00 0
a5ba8000-a5ba9000 ---p a5ba8000 00:00 0
a5ba9000-a63a9000 rwxp a5ba9000 00:00 0
a63a9000-a63aa000 ---p a63a9000 00:00 0
a63aa000-a6baa000 rwxp a63aa000 00:00 0
a6baa000-a6bab000 ---p a6baa000 00:00 0
a6bab000-a73ab000 rwxp a6bab000 00:00 0
a73ab000-a73ac000 ---p a73ab000 00:00 0
a73ac000-a7bac000 rwxp a73ac000 00:00 0
a7bac000-a7bad000 ---p a7bac000 00:00 0
a7bad000-a83ad000 rwxp a7bad000 00:00 0
a83ad000-a83ae000 ---p a83ad000 00:00 0
a83ae000-a8bae000 rwxp a83ae000 00:00 0
a8bae000-a8daf000 rw-s 00000000 00:15 161197 /dev/shm/pulse-shm-3650678892
a8daf000-a8dfd000 r-xp 00000000 08:01 14598736 /usr/lib/libpulse.so.0.4.1
a8dfd000-a8dfe000 r--p 0004d000 08:01 14598736 /usr/lib/libpulse.so.0.4.1
a8dfe000-a8dff000 rw-p 0004e000 08:01 14598736 /usr/lib/libpulse.so.0.4.1
a8dff000-a8e00000 ---p a8dff000 00:00 0
a8e00000-a9600000 rwxp a8e00000 00:00 0
a9600000-a9900000 rw-p a9600000 00:00 0
a994c000-a99e1000 r--p 00000000 08:01 14747542 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf
a99e1000-a9a6a000 r--p 00000000 08:01 14747541 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans-Bold.ttf
a9a6a000-a9a6b000 ---p a9a6a000 00:00 0
a9a6b000-aa26b000 rwxp a9a6b000 00:00 0
aa26b000-aa300000 r--p 00000000 08:01 14747542 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf
aa300000-aa600000 rw-p aa300000 00:00 0
aa67b000-aa702000 r-xp 00000000 08:01 14598620 /usr/lib/libGL.so.177.82
aa702000-aa71c000 rwxp 00087000 08:01 14598620 /usr/lib/libGL.so.177.82
aa71c000-aa71e000 rwxp aa71c000 00:00 0
aa71e000-aa850000 r-xp 00000000 08:01 14630916 /usr/lib/i686/cmov/libcrypto.so.0.9.8
aa850000-aa851000 ---p 00132000 08:01 14630916 /usr/lib/i686/cmov/libcrypto.so.0.9.8
aa851000-aa859000 r--p 00132000 08:01 14630916 /usr/lib/i686/cmov/libcrypto.so.0.9.8
aa859000-aa866000 rw-p 0013a000 08:01 14630916 /usr/lib/i686/cmov/libcrypto.so.0.9.8
aa866000-aa86a000 rw-p aa866000 00:00 0
aa86a000-aa8f9000 r-xp 00000000 08:01 14600321 /usr/lib/libkrb5.so.3.3
aa8f9000-aa8fb000 r--p 0008e000 08:01 14600321 /usr/lib/libkrb5.so.3.3
aa8fb000-aa8fc000 rw-p 00090000 08:01 14600321 /usr/lib/libkrb5.so.3.3
aa8fc000-aa8fd000 ---p aa8fc000 00:00 0
aa8fd000-ab0fd000 rwxp aa8fd000 00:00 0
ab0fd000-ab0fe000 ---p ab0fd000 00:00 0
ab0fe000-ab8fe000 rwxp ab0fe000 00:00 0
ab8fe000-ab8ff000 ---p ab8fe000 00:00 0
ab8ff00...

Progress! With the latest jaunty, full-screening a Flash video now causes Firefox >3.0.* to *hang* instead of crashing.

I also have this problem.. Using the PPA from daily builds, and the official repo packages.

I've had this problem on 3 setups:

Dell inspiron mini 9, ubuntu intrepid, firefox 3.1
Dell inspiron mini 9, ubuntu jaunty, firefox 3.5
Custom desktop, ubuntu jaunty, firefox 3.5.

If I watch the same video in Firefox 3.0, it works fine. This is an FF3.5 issue.

Small workaround:

While you are loading the video without fullscreen, right click with the mouse on the video -> Configuration -> Visualization -> And turn off hardware acceleration.

Pro: Your Firefox will not crash
Con: The performance will drop (cause you will use software acceleration)

So, maybe is a Flash bug or a nVidia bug, because everybody with this types of cards have the problem.. Can somebody confirm the bug with another graphic card??

Some additional info: http://forums.mozillazine.org/viewtopic.php?f=38&t=1004005

Tested with Nvidia GForce 5400, using driver 173.14.16. Did not experience crash when changing to or from full screen.

I have no problem with fullscreen Flash video using Firefox 3.5b4 on ATI video hardware, so it may be an nVidia issue.

More curious and additional info.

When using fullscreen in Youtube site, Firefox (3.5+) crash.. But in embedded videos may or may not crash.

I don't know if this is just my case, can you check this?

Embedded video (crash):
http://www.puntogeek.com/2009/05/10/como-nace-un-n97/

Embedded video (OK):
http://ubuntulife.wordpress.com/2009/05/10/blood-the-last-vampire-trailer/

I'm using Accelerated Hardware function enabled.

With Vimeo videos, using direct links, works fine:
http://vimeo.com/4368246

But, embedded videos always crash
http://www.changethethought.com/the-tarantino-mixtape/

Hint: When I right-click on the flash player in the pages that works fine, the Config menu option of flash player is disabled.

I have a nVidia video card (6200 AGP), Firefox 3.5 (Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1b5pre) Gecko/20090509 Ubuntu/9.04 (jaunty) Shiretoko/3.5b5pre) using PPA from ubuntu mozilla daily, nVidia driver v180.44, Flash Player (flashplugin-installer v10.0.22.87ubuntu2) on Ubuntu 9.04 Jaunty Jackalope with Compiz enabled.

Mmm, so, the problem is always in PC's with nVidia cards (and proprietary drivers), tested with a computer with a Intel Video Card, and works fine... So... if the problems is nVidia drivers.. Why this bug don't appears in Firefox 3.0.x??

I also tested the last Opera 10 alpha (13 May 2009).
Version
10.00 Alpha
Build
4345
Platform
Linux
System
i686, 2.6.28-11-generic
Qt library
4.5.1

And, what do you think?? It works... Also test Epiphany from official repos, and also works... So.. Where is the problem, in nVidia Drivers (180.44) or Firefox 3.5???

Kevin Brosnan gave us a workaround:

There is a workaround which is to create a script that does the following.
#!/bin/sh
export LD_PRELOAD=/usr/lib/libGL.so.1
/path/to/firefox

In the case of Firefox 3. package from PPA, the file /usr/lib/firefox-3.5pre/firefox.sh should be modified adding:

export LD_PRELOAD=/usr/lib/libGL.so.1

I modified it, and works!!!!

Additional to this, the problem seems to be from nVidia drivers, so, only people with nVidia cards have this problem . This already was reported:

http://www.nvnews.net/vbulletin/showthread.php?p=1997651

have the same problem on my desktop with nvidia

@Julián Alarcón: Great that works. I use now 3.5 RC2 from PPA and when I put:
export LD_PRELOAD=/usr/lib/libGL.so.1
to /usr/lib/firefox-3.5/firefox.sh (after DROPPED=abandoned) it works.

But why? When I check /usr/lib/libGL.so.1 I see it's a symlink to /usr/lib/libGL.so.180.44 - and that's the same version number as my nvidia driver.

When I check my Xorg.0.log I see this:
(II) LoadModule: "glx"
(II) Loading /usr/lib/xorg/modules/extensions//libglx.so
(II) Module glx: vendor="NVIDIA Corporation"
 compiled for 4.0.2, module version = 1.0.0
 Module class: X.Org Server Extension
(II) NVIDIA GLX Module 180.44 Mon Mar 23 15:29:02 PST 2009
(II) Loading extension GLX

/usr/lib/xorg/modules/extensions//libglx.so is a symlink to libglx.so.180.44 in the same directory. Again the same version number as my nvidia driver.

So I understand that /usr/lib/xorg/modules/extensions/libglx.so.180.44 is the one that is used normally ans now for firefox 3.5 RC2 I use /usr/lib/libGL.so.180.44. What is exactly the difference and is the latter one providing hardware acceleration? If not, than it will be the same workaround when people disable hardware acceleration using their Flash settings.

Hopefully this will be fixed asap.

I have Jaunty and the two versions firefox 3.0.11 (Works fine) firefox 3.5 (crash). I have nvidia driver I will check the workaround

same problem on karmic koala and nvidia closed driver

After downloading Firefox 3.5 (stable) from the mozilla-security PPA, this bug is still present. Will a fix or the given work around be packaged with Ubuntu's build of Firefox 3.5?

I can confirm this bug on Firefox 3.5 downloaded from official Mozilla website (in .tar.bz2), on Thinkpad T41 - ATI Mobility Radeon 7500. However, the workaround works perfectly, I added to firefox (it's a bash script) this line:
export LD_PRELOAD=/usr/lib/libGL.so.1

On my computer the symlink is set to
/usr/lib/libGL.so.1.2
Weird...

Like roffik, I also downloaded the official 3.5 from Mozilla web site, on Dell Studio 17 with ATI MOBILITY RADEON HD 3650. Workaround works too.

I tried the leaked nVidia driver version 190.09 from here:
https://launchpad.net/~nvidia-vdpau/+archive/ppa

But the problem persist.. And, if some one else can confirm the same problem in ATI card's.. the problem is not only of nVidia.

Like I mention before, the problem is not present in Intel video cards.

Ubuntu Jaunty here.

FF 3.1 works, Shiretoko crashes.

I can't reproduce this bug with firefox 3.5 amd64 and the adobe 64-bit flash plugin :)

What video driver are you using?

On Wed, Jul 8, 2009 at 01:26, Savvas Radevic<email address hidden> wrote:
> I can't reproduce this bug with firefox 3.5 amd64 and the adobe 64-bit
> flash plugin :)
>
> --
> Firefox 3.5 and above crash on full screen flash video
> https://bugs.launchpad.net/bugs/333127
> You received this bug notification because you are a direct subscriber
> of the bug.
>

This bug only happens when using nvidia graphics drivers with firefox newer than 3.1. It was caused by a *firefox* code change as it works properly with older firefox and all other variables constant.

Like I and some others mentioned above, this also happens with ATI cards, not just nvidia.

upstream bug 469439 is marked as a duplicate of 493541, adjusting.

Here's the fix that landed upstream: http://hg.mozilla.org/mozilla-central/rev/dae91a0884c9

Per upstream, they want the fix to be tested on 3.6 before it's backported to 3.5. Currently looking at 3.5.3 as a possibility for this fix.

The LD_PRELOAD workaround doesn't work for me. It prevents the crash, but fullscreen still doesn't work. The Flash window stops drawing to its area of the page, as if it thinks it has entered fullscreen, but no fullscreen window appears.

The LD_PRELOAD workaround also doesn't work for me. There is no such file or directory (/usr/lib/libGL.so.1) where I can point to.
I'm running Firefox 3.0.13 on a Ati Radeon HD3470 using Linux Mint.

I confirm that Flash 10 fullscreen crashes Firefox 3.5.2, both from repositories.

This bug was fixed in the package firefox-3.5 - 3.5.3+build1+nobinonly-0ubuntu2

---------------
firefox-3.5 (3.5.3+build1+nobinonly-0ubuntu2) karmic; urgency=low

  * security/stability update v3.5.3 build1 (FIREFOX_3_5_3_BUILD1)
    - see USN-821-1
    - fix LP: #333127 - Firefox 3.5 and above crash on full screen flash video
    - fix LP: #236853 - firefox crashed with SIGSEGV in NSSRWLock_LockRead_Util()

  [ Alexander Sack <email address hidden> ]
  * fix LP: #422365 - apport hook fails because profiles_d is not initialized
    in add_info if no profiles.ini exist; we ensure that profiles_d gets instantiated
    as an empty map even if no profiles.ini exist.
    - update debian/apport/firefox-3.5.py
  * hook firefox-addons/searchplugins as the distribution/searchplugins
    directory to support localized distro search engines.
    - update debian/rules
  * in case localized search engines are available the main searchplugins
    directory is not scanned anymore; to fix this we provide a compatibility
    link /usr/lib/firefox-addons/searchplugins/common => /usr/lib/firefox-addons/searchplugins
    - update debian/firefox-3.5.links
  * fix localized search engine upstream code to properly deal with general.useragent.locale
    being a complex pref; also change plugin dir order to allow locale specific searchplugins
    to overlay the ones shipped in "searchplugins/common"
    - add debian/patches/fix_complex_locale_distro_searchplugins.patch
    - update debian/patches/series

  [ Jamie Strandboge <email address hidden> ]
  * add AppArmor profile (disabled by default) (LP: #382917)
    - debian/firefox-3.5.dirs: add etc/apparmor.d/disable
    - add debian/firefox-3.5.preinst.in: disable the profile on new installs
      and upgrades to this version
    - debian/firefox-3.5.postinst.in: reload profile
    - add debian/firefox-3.5.postrm.in: cleanup force-complain and disable
      directories
    - add debian/usr.bin.firefox.apparmor.in
    - debian/rules: install profile
    - add debian/README.Debian.in with note about AppArmor
    - debian/apport/firefox-3.5.py: add AppArmor information if the profile is
      not disabled
    - debian/firefox-3.5.preinst.in: allow for when apparmor is not installed

 -- Alexander Sack <email address hidden> Thu, 03 Sep 2009 10:03:08 +0200

It was happening in adobe-flash too. It was a FF bug, solved in 3.5.3.

bug always active with FF 3.5.3 on Ubuntu 9.10 beta

ati mobility radeon 9600
compiz disabled

FF 3.5.5 will close after loading full frame flash. One example is at www.evony.com after logging on. Running ATI Radeon HD 3200 Graphics

Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.6pre) Gecko/20091116 Ubuntu/9.04 (jaunty) Shiretoko/3.5.6pre

Crashes when running a youtube video and i try to maximize it. Awful!!

[ 0.000000] Initializing cgroup subsys cpuset
[ 0.000000] Initializing cgroup subsys cpu
[ 0.000000] Linux version 2.6.31-15-generic (buildd@rothera) (gcc version 4.4.1 (Ubuntu 4.4.1-4ubuntu8) ) #50-Ubuntu SMP Tue Nov 10 14:54:29 UTC 2009 (Ubuntu 2.6.31-15.50-generic)
[ 0.000000] KERNEL supported cpus:
[ 0.000000] Intel GenuineIntel
[ 0.000000] AMD AuthenticAMD
[ 0.000000] NSC Geode by NSC
[ 0.000000] Cyrix CyrixInstead
[ 0.000000] Centaur CentaurHauls
[ 0.000000] Transmeta GenuineTMx86
[ 0.000000] Transmeta TransmetaCPU
[ 0.000000] UMC UMC UMC UMC
[ 0.000000] BIOS-provided physical RAM map:
[ 0.000000] BIOS-e820: 0000000000000000 - 000000000009f000 (usable)
[ 0.000000] BIOS-e820: 000000000009f000 - 00000000000a0000 (reserved)
[ 0.000000] BIOS-e820: 0000000000100000 - 00000000dd04d400 (usable)
[ 0.000000] BIOS-e820: 00000000dd04d400 - 00000000dd04f400 (ACPI NVS)
[ 0.000000] BIOS-e820: 00000000dd04f400 - 00000000e0000000 (reserved)
[ 0.000000] BIOS-e820: 00000000f8000000 - 00000000fc000000 (reserved)
[ 0.000000] BIOS-e820: 00000000fec00000 - 00000000fec10000 (reserved)
[ 0.000000] BIOS-e820: 00000000fed18000 - 00000000fed1c000 (reserved)
[ 0.000000] BIOS-e820: 00000000fed20000 - 00000000fed90000 (reserved)
[ 0.000000] BIOS-e820: 00000000feda0000 - 00000000feda6000 (reserved)
[ 0.000000] BIOS-e820: 00000000fee00000 - 00000000fee10000 (reserved)
[ 0.000000] BIOS-e820: 00000000ffe60000 - 0000000100000000 (reserved)
[ 0.000000] BIOS-e820: 0000000100000000 - 0000000120000000 (usable)
[ 0.000000] DMI 2.4 present.
[ 0.000000] last_pfn = 0xdd04d max_arch_pfn = 0x100000
[ 0.000000] MTRR default type: uncachable
[ 0.000000] MTRR fixed ranges enabled:
[ 0.000000] 00000-9FFFF write-back
[ 0.000000] A0000-BFFFF uncachable
[ 0.000000] C0000-CFFFF write-protect
[ 0.000000] D0000-EFFFF uncachable
[ 0.000000] F0000-FFFFF write-protect
[ 0.000000] MTRR variable ranges enabled:
[ 0.000000] 0 base 000000000 mask 800000000 write-back
[ 0.000000] 1 base 0E0000000 mask FE0000000 uncachable
[ 0.000000] 2 base 0DDC00000 mask FFFC00000 uncachable
[ 0.000000] 3 base 0DE000000 mask FFE000000 uncachable
[ 0.000000] 4 disabled
[ 0.000000] 5 disabled
[ 0.000000] 6 disabled
[ 0.000000] x86 PAT enabled: cpu 0, old 0x7040600070406, new 0x7010600070106
[ 0.000000] e820 update range: 00000000ddc00000 - 0000000100000000 (usable) ==> (reserved)
[ 0.000000] e820 update range: 0000000000002000 - 0000000000006000 (usable) ==> (reserved)
[ 0.000000] Scanning 1 areas for low memory corruption
[ 0.000000] modified physical RAM map:
[ 0.000000] modified: 0000000000000000 - 0000000000002000 (usable)
[ 0.000000] modified: 0000000000002000 - 0000000000006000 (reserved)
[ 0.000000] modified: 0000000000006000 - 000000000009f000 (usable)
[ 0.000000] modified: 000000000009f000 - 00000000000a0000 (reserved)...

Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.6pre) Gecko/20091116 Ubuntu/9.04 (jaunty) Shiretoko/3.5.6pre

Crashes when running a youtube video and i try to maximize it. Awful!!
I have a Dell E6400

lspci | grep -i vga
00:02.0 VGA compatible controller: Intel Corporation Mobile 4 Series Chipset Integrated Graphics Controller (rev 07)

[ 0.000000] Initializing cgroup subsys cpuset
[ 0.000000] Initializing cgroup subsys cpu
[ 0.000000] Linux version 2.6.31-15-generic (buildd@rothera) (gcc version 4.4.1 (Ubuntu 4.4.1-4ubuntu8) ) #50-Ubuntu SMP Tue Nov 10 14:54:29 UTC 2009 (Ubuntu 2.6.31-15.50-generic)
[ 0.000000] KERNEL supported cpus:
[ 0.000000] Intel GenuineIntel
[ 0.000000] AMD AuthenticAMD
[ 0.000000] NSC Geode by NSC
[ 0.000000] Cyrix CyrixInstead
[ 0.000000] Centaur CentaurHauls
[ 0.000000] Transmeta GenuineTMx86
[ 0.000000] Transmeta TransmetaCPU
[ 0.000000] UMC UMC UMC UMC
[ 0.000000] BIOS-provided physical RAM map:
[ 0.000000] BIOS-e820: 0000000000000000 - 000000000009f000 (usable)
[ 0.000000] BIOS-e820: 000000000009f000 - 00000000000a0000 (reserved)
[ 0.000000] BIOS-e820: 0000000000100000 - 00000000dd04d400 (usable)
[ 0.000000] BIOS-e820: 00000000dd04d400 - 00000000dd04f400 (ACPI NVS)
[ 0.000000] BIOS-e820: 00000000dd04f400 - 00000000e0000000 (reserved)
[ 0.000000] BIOS-e820: 00000000f8000000 - 00000000fc000000 (reserved)
[ 0.000000] BIOS-e820: 00000000fec00000 - 00000000fec10000 (reserved)
[ 0.000000] BIOS-e820: 00000000fed18000 - 00000000fed1c000 (reserved)
[ 0.000000] BIOS-e820: 00000000fed20000 - 00000000fed90000 (reserved)
[ 0.000000] BIOS-e820: 00000000feda0000 - 00000000feda6000 (reserved)
[ 0.000000] BIOS-e820: 00000000fee00000 - 00000000fee10000 (reserved)
[ 0.000000] BIOS-e820: 00000000ffe60000 - 0000000100000000 (reserved)
[ 0.000000] BIOS-e820: 0000000100000000 - 0000000120000000 (usable)
[ 0.000000] DMI 2.4 present.
[ 0.000000] last_pfn = 0xdd04d max_arch_pfn = 0x100000
[ 0.000000] MTRR default type: uncachable
[ 0.000000] MTRR fixed ranges enabled:
[ 0.000000] 00000-9FFFF write-back
[ 0.000000] A0000-BFFFF uncachable
[ 0.000000] C0000-CFFFF write-protect
[ 0.000000] D0000-EFFFF uncachable
[ 0.000000] F0000-FFFFF write-protect
[ 0.000000] MTRR variable ranges enabled:
[ 0.000000] 0 base 000000000 mask 800000000 write-back
[ 0.000000] 1 base 0E0000000 mask FE0000000 uncachable
[ 0.000000] 2 base 0DDC00000 mask FFFC00000 uncachable
[ 0.000000] 3 base 0DE000000 mask FFE000000 uncachable
[ 0.000000] 4 disabled
[ 0.000000] 5 disabled
[ 0.000000] 6 disabled
[ 0.000000] x86 PAT enabled: cpu 0, old 0x7040600070406, new 0x7010600070106
[ 0.000000] e820 update range: 00000000ddc00000 - 0000000100000000 (usable) ==> (reserved)
[ 0.000000] e820 update range: 0000000000002000 - 0000000000006000 (usable) ==> (reserved)
[ 0.000000] Scanning 1 areas for low memory corruption
[ 0.000000] modified physical RAM map:
[ 0.000000] modified: 0000000000000000 - 0000000000002000 (usable)
[ 0.000000] modified: 0000000000002000 - 0000000000006000 (reserved)
[ 0.000000] modified: 0000000000006000 - 000000000009f000 (usable)
[ 0.000000] modified: 000000000009f000 - 00000000000a0000 (reserved)
[ 0.000000] modified: 0000000000100000 - 00000000dd0...

This bug was fixed. Please file a new bug report if you are still experiencing crashing. You can reference this bug number so that we can check if it's the same issue or not.

@Stendys

Please don't assign yourself bugs unless you are going to fix them. This bug is already fixed.

It is not fixed. Firefox still crashing when going to fullscreen with youtube videos.