I have been using clamav for a while and have been keeping up with the unresolved crashes aparently from the SaneSecurity definitions (which by the way I think are great). I stumbled upon this while checking my clamd server logwatch report:
*** glibc detected *** /usr/local/sbin/clamd: free(): invalid pointer: 0x0a29bc10 *** ======= Backtrace: ========= /lib/libc.so.6[0xac9a96] /lib/libc.so.6(cfree+0x90)[0xaccfb0] /usr/local/lib/libclamav.so.5(cli_ac_free+0x2d)[0x11c0bd] /usr/local/lib/libclamav.so.5(cl_free+0x80)[0x122e20] /usr/local/sbin/clamd[0x804fe47] /usr/local/sbin/clamd[0x804e41f] /lib/libpthread.so.0[0xcd445b] /lib/libc.so.6(clone+0x5e)[0xb3123e] ======= Memory map: ======== 00110000-00111000 r-xp 00110000 00:00 0 [vdso] 00111000-001bf000 r-xp 00000000 03:05 458917 /usr/local/lib/libclamav.so.5.0.4 001bf000-001ca000 rwxp 000ae000 03:05 458917 /usr/local/lib/libclamav.so.5.0.4 001ca000-001cb000 rwxp 001ca000 00:00 0 001cb000-001cd000 r-xp 00000000 03:05 458912 /usr/local/lib/libclamunrar_iface.so.5.0.4 001cd000-001ce000 rwxp 00001000 03:05 458912 /usr/local/lib/libclamunrar_iface.so.5.0.4 001ce000-001d8000 r-xp 00000000 03:05 458941 /usr/local/lib/libclamunrar.so.5.0.4 001d8000-001d9000 rwxp 0000a000 03:05 458941 /usr/local/lib/libclamunrar.so.5.0.4 001d9000-001eb000 r-xp 00000000 03:05 855074 /usr/lib/libz.so.1.2.3 001eb000-001ec000 rwxp 00011000 03:05 855074 /usr/lib/libz.so.1.2.3 001ec000-001ee000 r-xp 00000000 03:05 855056 /usr/lib/gconv/UTF-16.so 001ee000-001f0000 rwxp 00001000 03:05 855056 /usr/lib/gconv/UTF-16.so 00a46000-00a5f000 r-xp 00000000 03:06 3470018 /lib/ld-2.5.so 00a5f000-00a60000 r-xp 00019000 03:06 3470018 /lib/ld-2.5.so 00a60000-00a61000 rwxp 0001a000 03:06 3470018 /lib/ld-2.5.so 00a63000-00b9d000 r-xp 00000000 03:06 3470034 /lib/libc-2.5.so 00b9d000-00b9f000 r-xp 0013a000 03:06 3470034 /lib/libc-2.5.so 00b9f000-00ba0000 rwxp 0013c000 03:06 3470034 /lib/libc-2.5.so 00ba0000-00ba3000 rwxp 00ba0000 00:00 0 00ba5000-00bd8000 r-xp 00000000 03:05 860133 /usr/lib/sse2/libgmp.so.3.3.3 00bd8000-00bd9000 rwxp 00032000 03:05 860133 /usr/lib/sse2/libgmp.so.3.3.3 00be9000-00bf4000 r-xp 00000000 03:06 3470049 /lib/libgcc_s-4.1.2-20070626.so.1 00bf4000-00bf5000 rwxp 0000a000 03:06 3470049 /lib/libgcc_s-4.1.2-20070626.so.1 00ccf000-00ce2000 r-xp 00000000 03:06 3470056 /lib/libpthread-2.5.so 00ce2000-00ce3000 r-xp 00012000 03:06 3470056 /lib/libpthread-2.5.so 00ce3000-00ce4000 rwxp 00013000 03:06 3470056 /lib/libpthread-2.5.so 00ce4000-00ce6000 rwxp 00ce4000 00:00 0 08048000-08057000 r-xp 00000000 03:05 458939 /usr/local/sbin/clamd 08057000-08058000 rw-p 0000f000 03:05 458939 /usr/local/sbin/clamd 09d9e000-0e7ca000 rw-p 09d9e000 00:00 0 a7f00000-a8000000 rw-p a7f00000 00:00 0 a8100000-a81ec000 rw-p a8100000 00:00 0 a81ec000-a8200000 ---p a81ec000 00:00 0 a8200000-a8300000 rw-p a8200000 00:00 0 a8300000-a83f4000 rw-p a8300000 00:00 0 a83f4000-a8400000 ---p a83f4000 00:00 0 a8400000-a84ff000 rw-p a8400000 00:00 0 a84ff000-a8500000 ---p a84ff000 00:00 0 a8500000-a85fc000 rw-p a8500000 00:00 0 a85fc000-a8600000 ---p a85fc000 00:00 0 a8600000-a86ff000 rw-p a8600000 00:00 0 a86ff000-a8700000 ---p a86ff000 00:00 0 a8700000-a87fc000 rw-p a8700000 00:00 0 a87fc000-a8800000 ---p a87fc000 00:00 0 a8800000-a88f8000 rw-p a8800000 00:00 0 a88f8000-a8900000 ---p a88f8000 00:00 0 a8900000-a89ea000 rw-p a8900000 00:00 0 a89ea000-a8a00000 ---p a89ea000 00:00 0 a8a00000-a8ade000 rw-p a8a00000 00:00 0 a8ade000-a8b00000 ---p a8ade000 00:00 0 a8b00000-a8d00000 rw-p a8b00000 00:00 0 a8d00000-a8ef8000 rw-p a8d00000 00:00 0 a8ef8000-a8f00000 ---p a8ef8000 00:00 0 a8f00000-a8ffc000 rw-p a8f00000 00:00 0 a8ffc000-a9000000 ---p a8ffc000 00:00 0 a9000000-a9100000 rw-p a9000000 00:00 0 a9100000-a91e5000 rw-p a9100000 00:00 0 a91e5000-a9200000 ---p a91e5000 00:00 0 a9200000-a92fc000 rw-p a9200000 00:00 0 a92fc000-a9300000 ---p a92fc000 00:00 0 a9300000-a9500000 rw-p a9300000 00:00 0 a9500000-a9700000 rw-p a9500000 00:00 0 a9700000-a9900000 rw-p a9700000 00:00 0 a9900000-a9b00000 rw-p a9900000 00:00 0 a9b00000-a9c00000 rw-p a9b00000 00:00 0 aa700000-aa900000 rw-p aa700000 00:00 0 aa900000-aab00000 rw-p aa900000 00:00 0 aab00000-aad00000 rw-p aab00000 00:00 0 aad00000-aae00000 rw-p aad00000 00:00 0 ac2de000-ac2df000 ---p ac2de000 00:00 0 ac2df000-accef000 rw-p ac2df000 00:00 0 ad700000-ad900000 rw-p ad700000 00:00 0 ad900000-adb00000 rw-p ad900000 00:00 0 adb00000-add00000 rw-p adb00000 00:00 0 add00000-ade00000 rw-p add00000 00:00 0 ae900000-aea00000 rw-p ae900000 00:00 0 aeb00000-aee00000 rw-p aeb00000 00:00 0 aee00000-af000000 rw-p aee00000 00:00 0 af000000-af200000 rw-p af000000 00:00 0 af200000-af300000 rw-p af200000 00:00 0 af3de000-af3df000 ---p af3de000 00:00 0 af3df000-afdef000 rw-p af3df000 00:00 0 afdef000-afdf0000 ---p afdef000 00:00 0 afdf0000-b0800000 rw-p afdf0000 00:00 0 b1600000-b1700000 rw-p b1600000 00:00 0 b1800000-b1a00000 rw-p b1800000 00:00 0 b1a00000-b1c00000 rw-p b1a00000 00:00 0 b1d00000-b1efe000 rw-p b1d00000 00:00 0 b1efe000-b1f00000 ---p b1efe000 00:00 0 b1f00000-b2000000 rw-p b1f00000 00:00 0 b2000000-b2200000 rw-p b2000000 00:00 0 b2200000-b2400000 rw-p b2200000 00:00 0 b2400000-b24e3000 rw-p b2400000 00:00 0 b24e3000-b2500000 ---p b24e3000 00:00 0 b2500000-b2600000 rw-p b2500000 00:00 0 b2600000-b26fb000 rw-p b2600000 00:00 0 b26fb000-b2700000 ---p b26fb000 00:00 0 b2700000-b27e9000 rw-p b2700000 00:00 0 b27e9000-b2800000 ---p b27e9000 00:00 0 b2800000-b28fb000 rw-p b2800000 00:00 0 b28fb000-b2900000 ---p b28fb000 00:00 0 b3500000-b35f2000 rw-p b3500000 00:00 0 b35f2000-b3600000 ---p b35f2000 00:00 0 b3600000-b3700000 rw-p b3600000 00:00 0 b3900000-b39f7000 rw-p b3900000 00:00 0 b39f7000-b3a00000 ---p b39f7000 00:00 0 b3a00000-b3aed000 rw-p b3a00000 00:00 0 b3aed000-b3b00000 ---p b3aed000 00:00 0 b4700000-b48fe000 rw-p b4700000 00:00 0 b48fe000-b4900000 ---p b48fe000 00:00 0 b4900000-b4a00000 rw-p b4900000 00:00 0 b4b00000-b4efa000 rw-p b4b00000 00:00 0 b4efa000-b4f00000 ---p b4efa000 00:00 0 b4f00000-b5100000 rw-p b4f00000 00:00 0 b5100000-b5300000 rw-p b5100000 00:00 0 b6300000-b6400000 rw-p b6300000 00:00 0 b6500000-b6600000 rw-p b6500000 00:00 0 b6900000-b6a00000 rw-p b6900000 00:00 0 b6b00000-b6d00000 rw-p b6b00000 00:00 0 b6d00000-b6e00000 rw-p b6d00000 00:00 0 b6f00000-b6fff000 rw-p b6f00000 00:00 0 b6fff000-b7000000 ---p b6fff000 00:00 0 b7000000-b7100000 rw-p b7000000 00:00 0 b717d000-b727e000 rw-p b717d000 00:00 0 b727e000-b727f000 ---p b727e000 00:00 0 b727f000-b7c8f000 rw-p b727f000 00:00 0 b7c8f000-b7c96000 r--s 00000000 03:05 855072 /usr/lib/gconv/gconv-modules.cache b7d0b000-b7e0c000 rw-p b7d0b000 00:00 0 b7f11000-b7f14000 rw-p b7f11000 00:00 0 b7f1c000-b7f1e000 rw-p b7f1c000 00:00 0 bfd48000-bfd5d000 rw-p bfd48000 00:00 0 [stack] Because I run clamd via daemontools, whenever clamd crashes, its brought back to life within a few seconds and things hum along fine until the next crash, which is in my case, very unpredictable since I have gone days without a crash, and suddenly have 3-5 crashes per day. This production server is running 0.94.2 and scans 70000-80000 msgs/day. I am cross-posting to both lists in case this helps to track the problem down. -- () ascii ribbon campaign - against html e-mail /\ www.asciiribbon.org - against proprietary attachments Jorge Valdes - [email protected] Intercom El Salvador _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
