Bug#995370: marked as done (pidgin: segmentation fault on malloc/free)

Debian Bug Tracking System Mon, 04 Oct 2021 18:09:17 -0700

Your message dated Tue, 05 Oct 2021 01:04:05 +0000
with message-id <[email protected]>
and subject line Bug#995370: fixed in pidgin 2.14.7-2
has caused the Debian Bug report #995370,
regarding pidgin: segmentation fault on malloc/free
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
995370: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995370
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: pidgin
Version: 2.14.7-1
Severity: normal

Dear Maintainer,
after ugprade of pidgin:amd64 to 2.14.7-1 from 2.14.1-1+b1
I am receiving frequent segfaults, but only on XMPP account of our company
CiscoJabber server with CiscoJabber clients. Seems to me, that another account
of public ejabberd server is OK.
When I ran pidgin in gdb I can get for example the following backtraces:


Thread 1 "pidgin" received signal SIGSEGV, Segmentation fault.
0x00007ffff6d79518 in _int_malloc (av=av@entry=0x7ffff6eaeba0 <main_arena>, 
bytes=bytes@entry=19) at malloc.c:3699
3699    malloc.c: No such file or directory.
(gdb) bt
#0  0x00007ffff6d79518 in _int_malloc (av=av@entry=0x7ffff6eaeba0 <main_arena>, 
bytes=bytes@entry=19) at malloc.c:3699
#1  0x00007ffff6d7a881 in __GI___libc_malloc (bytes=19) at malloc.c:3086
#2  0x00007ffff7302bc9 in g_malloc () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007ffff731cb52 in g_memdup2 () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#4  0x00007ffff70d21bd in xmlnode_insert_data () at /lib/libpurple.so.0
#5  0x00007ffff6103f86 in xmlParseCharData () at 
/lib/x86_64-linux-gnu/libxml2.so.2
#6  0x00007ffff6117dae in  () at /lib/x86_64-linux-gnu/libxml2.so.2
#7  0x00007ffff611863b in xmlParseChunk () at /lib/x86_64-linux-gnu/libxml2.so.2
#8  0x00007ffff1cefc3e in jabber_parser_process () at 
/usr/lib/purple-2/libjabber.so.0
#9  0x00007ffff1cdea0a in  () at /usr/lib/purple-2/libjabber.so.0
#10 0x00005555555ce112 in  ()
#11 0x00007ffff72fcc0f in g_main_context_dispatch () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#12 0x00007ffff72fcfb8 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#13 0x00007ffff72fd2ab in g_main_loop_run () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#14 0x00007ffff79dfb2a in gtk_main () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#15 0x0000555555591d67 in main ()
(gdb)


Thread 1 "pidgin" received signal SIGSEGV, Segmentation fault.
0x00007ffff6d78518 in _int_malloc (av=av@entry=0x7ffff6eadba0 <main_arena>, 
bytes=bytes@entry=5) at malloc.c:3699
3699    malloc.c: No such file or directory.
(gdb) bt
#0  0x00007ffff6d78518 in _int_malloc (av=av@entry=0x7ffff6eadba0 <main_arena>, 
bytes=bytes@entry=5) at malloc.c:3699
#1  0x00007ffff6d79881 in __GI___libc_malloc (bytes=5) at malloc.c:3086
#2  0x00007ffff7301bc9 in g_malloc () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007ffff731bac0 in g_strdup () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#4  0x00007ffff70d10b0 in xmlnode_new_child () at /lib/libpurple.so.0
#5  0x00007ffff706ab34 in  () at /lib/libpurple.so.0
#6  0x00007ffff706ac99 in  () at /lib/libpurple.so.0
#7  0x00007ffff72fc794 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#8  0x00007ffff72fbc0f in g_main_context_dispatch () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#9  0x00007ffff72fbfb8 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#10 0x00007ffff72fc2ab in g_main_loop_run () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#11 0x00007ffff79deb2a in gtk_main () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#12 0x0000555555591d67 in main ()
(gdb)


free(): double free detected in tcache 2
--Type <RET> for more, q to quit, c to continue without paging--

Thread 1 "pidgin" received signal SIGABRT, Aborted.
__GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:49
49      ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) bt
#0  __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:49
#1  0x00007ffff6d15536 in __GI_abort () at abort.c:79
#2  0x00007ffff6d6d2b8 in __libc_message (action=action@entry=do_abort, 
fmt=fmt@entry=0x7ffff6e7b3a4 "%s\n") at ../sysdeps/posix/libc_fatal.c:155
#3  0x00007ffff6d74d0a in malloc_printerr (str=str@entry=0x7ffff6e7d7d8 
"free(): double free detected in tcache 2") at malloc.c:5389
#4  0x00007ffff6d767bc in _int_free (av=0x7ffff6eadba0 <main_arena>, 
p=0x555555e2a3d0, have_lock=0) at malloc.c:4232
#5  0x00005555555d1ea6 in  ()
#6  0x00007ffff72e7d82 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#7  0x00007ffff72e989b in g_hash_table_remove_all () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#8  0x00007ffff72e98de in g_hash_table_destroy () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#9  0x00005555555da340 in gtk_imhtml_remove_smileys ()
#10 0x000055555561a1ec in  ()
#11 0x00005555555c0499 in  ()
#12 0x00007ffff707b0f0 in purple_conversation_write () at /lib/libpurple.so.0
#13 0x00007ffff707bf35 in  () at /lib/libpurple.so.0
#14 0x00005555555b98db in  ()
#15 0x00007ffff73f06cf in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#16 0x00007ffff7402c92 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#17 0x00007ffff792aaef in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#18 0x00007ffff792afa1 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#19 0x00007ffff792b444 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#20 0x00007ffff792c6ed in gtk_bindings_activate_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#21 0x00007ffff7aa4753 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#22 0x00007ffff79e11ab in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#23 0x00007ffff73f0608 in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#24 0x00007ffff74024a9 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#25 0x00007ffff74088e9 in g_signal_emit_valist () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#26 0x00007ffff74092cf in g_signal_emit () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#27 0x00007ffff7b00fe4 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#28 0x00007ffff7b15248 in gtk_window_propagate_key_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#29 0x00007ffff7b17f4b in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#30 0x00007ffff79e11ab in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#31 0x00007ffff73f06cf in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#32 0x00007ffff74024a9 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#33 0x00007ffff74088e9 in g_signal_emit_valist () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#34 0x00007ffff74092cf in g_signal_emit () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#35 0x00007ffff7b00fe4 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#36 0x00007ffff79df87c in gtk_propagate_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#37 0x00007ffff79dfc4b in gtk_main_do_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#38 0x00007ffff784bafc in  () at /lib/x86_64-linux-gnu/libgdk-x11-2.0.so.0
#39 0x00007ffff72fbd0b in g_main_context_dispatch () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#40 0x00007ffff72fbfb8 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#41 0x00007ffff72fc2ab in g_main_loop_run () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#42 0x00007ffff79deb2a in gtk_main () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#43 0x0000555555591d67 in main ()
(gdb)

Thread 1 "pidgin" received signal SIGSEGV, Segmentation fault.
0x00005555555d1e5d in ?? ()
(gdb) bt
#0  0x00005555555d1e5d in  ()
#1  0x00007ffff72e7d82 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#2  0x00007ffff72e989b in g_hash_table_remove_all () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007ffff72e98de in g_hash_table_destroy () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#4  0x00005555555da340 in gtk_imhtml_remove_smileys ()
#5  0x000055555561a1ec in  ()
#6  0x00005555555c047e in  ()
#7  0x00007ffff707b0f0 in purple_conversation_write () at /lib/libpurple.so.0
#8  0x00007ffff707bf35 in  () at /lib/libpurple.so.0
#9  0x00005555555b98db in  ()
#10 0x00007ffff73f06cf in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#11 0x00007ffff7402c92 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#12 0x00007ffff792aaef in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#13 0x00007ffff792afa1 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#14 0x00007ffff792b444 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#15 0x00007ffff792c6ed in gtk_bindings_activate_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#16 0x00007ffff7aa4753 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#17 0x00007ffff79e11ab in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#18 0x00007ffff73f0608 in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#19 0x00007ffff74024a9 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#20 0x00007ffff74088e9 in g_signal_emit_valist () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#21 0x00007ffff74092cf in g_signal_emit () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#22 0x00007ffff7b00fe4 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#23 0x00007ffff7b15248 in gtk_window_propagate_key_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#24 0x00007ffff7b17f4b in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#25 0x00007ffff79e11ab in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#26 0x00007ffff73f06cf in g_closure_invoke () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#27 0x00007ffff74024a9 in  () at /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#28 0x00007ffff74088e9 in g_signal_emit_valist () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#29 0x00007ffff74092cf in g_signal_emit () at 
/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#30 0x00007ffff7b00fe4 in  () at /lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#31 0x00007ffff79df87c in gtk_propagate_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#32 0x00007ffff79dfc4b in gtk_main_do_event () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#33 0x00007ffff784bafc in  () at /lib/x86_64-linux-gnu/libgdk-x11-2.0.so.0
#34 0x00007ffff72fbd0b in g_main_context_dispatch () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#35 0x00007ffff72fbfb8 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#36 0x00007ffff72fc2ab in g_main_loop_run () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#37 0x00007ffff79deb2a in gtk_main () at 
/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0
#38 0x0000555555591d67 in main ()
(gdb) 

I have done downgrade back to version 2.14.1 and segfaults are gone.
Regards
-- 
Zito

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.14.0-1-amd64 (SMP w/6 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages pidgin depends on:
ii  libatk1.0-0                     2.36.0-2
ii  libc6                           2.32-4
ii  libcairo2                       1.16.0-5
ii  libdbus-1-3                     1.12.20-2
ii  libgdk-pixbuf-2.0-0             2.42.6+dfsg-2
ii  libglib2.0-0                    2.70.0-1+b1
ii  libgstreamer-plugins-base1.0-0  1.18.5-1
ii  libgstreamer1.0-0               1.18.5-1
ii  libgtk2.0-0                     2.24.33-2
ii  libgtkspell0                    2.0.16-1.3
ii  libice6                         2:1.0.10-1
ii  libpango-1.0-0                  1.48.10+ds1-1
ii  libpurple0                      2.14.7-1
ii  libsm6                          2:1.2.3-1
ii  libx11-6                        2:1.7.2-2+b1
ii  libxss1                         1:1.2.3-1
ii  perl-base [perlapi-5.32.1]      5.32.1-6
ii  pidgin-data                     2.14.7-1

Versions of packages pidgin recommends:
ii  gstreamer1.0-alsa          1.18.5-1
ii  gstreamer1.0-libav         1.18.5-1
ii  gstreamer1.0-plugins-base  1.18.5-1
ii  gstreamer1.0-plugins-good  1.18.5-1
ii  sensible-utils             0.0.17

Versions of packages pidgin suggests:
ii  libsqlite3-0  3.36.0-2

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: pidgin
Source-Version: 2.14.7-2
Done: Richard Laager <[email protected]>

We believe that the bug you reported is fixed in the latest version of
pidgin, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Richard Laager <[email protected]> (supplier of updated pidgin package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 04 Oct 2021 19:31:35 -0500
Source: pidgin
Architecture: source
Version: 2.14.7-2
Distribution: unstable
Urgency: medium
Maintainer: Richard Laager <[email protected]>
Changed-By: Richard Laager <[email protected]>
Closes: 995370
Changes:
 pidgin (2.14.7-2) unstable; urgency=medium
 .
   * Backport fix for XMPP double free (Closes: 995370)
Checksums-Sha1:
 1a06edd12b838962b7805e9badaf78f087e38e50 3024 pidgin_2.14.7-2.dsc
 ec363b4d6c5cb73590d8cbf867f91273d690c3f4 8713379 pidgin_2.14.7.orig.tar.bz2
 2d2ed3a397c0042d496c887962b43a2c04eb9dbb 833 pidgin_2.14.7.orig.tar.bz2.asc
 bbf84cb571c30369192c6a3b5ca4f003c1c85e3d 53348 pidgin_2.14.7-2.debian.tar.xz
 73ca11b3a519f80eca9024a4b10f8698584232f5 17283 pidgin_2.14.7-2_source.buildinfo
Checksums-Sha256:
 038986a6ae6f026d5f047dab2dc8b15ebc7ffa8f24d5832f4245dd2ea6aece06 3024 
pidgin_2.14.7-2.dsc
 fea6ab4f0572fe24646049c2b3fecbdca27abca6d06e95bd655e44db99bd69fe 8713379 
pidgin_2.14.7.orig.tar.bz2
 9d05e13963bdcc081624d5a49358866aa1548ad34773abfcec42d1ec0e21ce19 833 
pidgin_2.14.7.orig.tar.bz2.asc
 fec0a14122138f254b4ef2aec7cb05ccf56a9b0d66ed50f446fe123c3f476bee 53348 
pidgin_2.14.7-2.debian.tar.xz
 e7020660b28dbbeee48353f1847e1d1b79f8efdfb18906ab1b26393a545840a7 17283 
pidgin_2.14.7-2_source.buildinfo
Files:
 f14ecd6be1fbda1bb5c4790629bd458a 3024 net optional pidgin_2.14.7-2.dsc
 476d808a268c693adcc8fc5c952dadd4 8713379 net optional 
pidgin_2.14.7.orig.tar.bz2
 b664d6259119b30656aecb6e7c357036 833 net optional 
pidgin_2.14.7.orig.tar.bz2.asc
 1b501722d6dfdf99a917133431345384 53348 net optional 
pidgin_2.14.7-2.debian.tar.xz
 a65c7c51836c3978c84e4783ac1a868f 17283 net optional 
pidgin_2.14.7-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=hzOY
-----END PGP SIGNATURE-----

--- End Message ---

Bug#995370: marked as done (pidgin: segmentation fault on malloc/free)

Reply via email to