Bug#575922: marked as done (lynx-cur: Crash with malloc(): memory corruption on specific site)

Debian Bug Tracking System Thu, 26 Aug 2010 00:42:36 -0700

Your message dated Thu, 26 Aug 2010 07:32:10 +0000
with message-id <[email protected]>
and subject line Bug#575922: fixed in lynx-cur 2.8.8dev.5-1
has caused the Debian Bug report #575922,
regarding lynx-cur: Crash with malloc(): memory corruption on specific site
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
575922: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575922
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: lynx-cur
Version: 2.8.8dev.2-1
Severity: normal


Running

lynx 
http://petrkrcmar.blog.root.cz/2010/03/29/jeho-svou-nebo-vasi-aneb-cesky-gulas/

crashes lynx with an error (first it was malloc(): memory corruption, now it
is free(): invalid next size (fast)).

Output using 
lynx -dump 
http://petrkrcmar.blog.root.cz/2010/03/29/jeho-svou-nebo-vasi-aneb-cesky-gulas/
(so that lynx output does not interfere with this output):

*** glibc detected *** lynx: free(): invalid next size (fast): 0x09d71a28
*** ***
======= Backtrace: =========
/lib/i686/cmov/libc.so.6[0xb760a824]
/lib/i686/cmov/libc.so.6[0xb760c0b3]
/lib/i686/cmov/libc.so.6(cfree+0x6d)[0xb760f0dd]
lynx[0x80e61bf]
lynx[0x8108220]
lynx[0x80ae994]
lynx[0x80fd188]
lynx[0x81013a4]
lynx[0x81036ea]
lynx[0x810ca6d]
lynx[0x80e9a87]
lynx[0x80e75a7]
lynx[0x80e8066]
lynx[0x80717f0]
lynx[0x807d1aa]
lynx[0x8076128]
/lib/i686/cmov/libc.so.6(__libc_start_main+0xe5)[0xb75b5b55]
lynx[0x804bdf1]
======= Memory map: ========
08048000-0816a000 r-xp 00000000 03:01 343036     /usr/bin/lynx.cur
0816a000-08183000 rw-p 00122000 03:01 343036     /usr/bin/lynx.cur
08183000-081d4000 rw-p 00000000 00:00 0
09d24000-09d80000 rw-p 00000000 00:00 0          [heap]
b7300000-b7321000 rw-p 00000000 00:00 0
b7321000-b7400000 ---p 00000000 00:00 0
b74c0000-b74dc000 r-xp 00000000 03:01 611466     /lib/libgcc_s.so.1
b74dc000-b74dd000 rw-p 0001c000 03:01 611466     /lib/libgcc_s.so.1
b74dd000-b74ee000 r-xp 00000000 03:01 619017
/lib/i686/cmov/libresolv-2.10.2.so
b74ee000-b74ef000 r--p 00010000 03:01 619017
/ /lib/i686/cmov/libresolv-2.10.2.so
b74ef000-b74f0000 rw-p 00011000 03:01 619017
/lib/i686/cmov/libresolv-2.10.2.so
b74f0000-b74f2000 rw-p 00000000 00:00 0
b74f2000-b74fc000 r-xp 00000000 03:01 619041
/lib/i686/cmov/libnss_files-2.10.2.so
b74fc000-b74fd000 r--p 00009000 03:01 619041
/ /lib/i686/cmov/libnss_files-2.10.2.so
b74fd000-b74fe000 rw-p 0000a000 03:01 619041
/lib/i686/cmov/libnss_files-2.10.2.so
b7510000-b7585000 r--p 00000000 03:01 709221
/ /usr/lib/locale/locale-archive
b7585000-b7587000 rw-p 00000000 00:00 0
b7587000-b758a000 r-xp 00000000 03:01 710829
/usr/lib/libgpg-error.so.0.4.0
b758a000-b758b000 rw-p 00002000 03:01 710829
/ /usr/lib/libgpg-error.so.0.4.0
b758b000-b759a000 r-xp 00000000 03:01 695331     /usr/lib/libtasn1.so.3.1.7
b759a000-b759b000 rw-p 0000e000 03:01 695331     /usr/lib/libtasn1.so.3.1.7
b759b000-b759d000 r-xp 00000000 03:01 619057
/lib/i686/cmov/libdl-2.10.2.so
b759d000-b759e000 r--p 00001000 03:01 619057
/ /lib/i686/cmov/libdl-2.10.2.so
b759e000-b759f000 rw-p 00002000 03:01 619057
/lib/i686/cmov/libdl-2.10.2.so
b759f000-b76e0000 r-xp 00000000 03:01 619049
/ /lib/i686/cmov/libc-2.10.2.so
b76e0000-b76e2000 r--p 00141000 03:01 619049
/lib/i686/cmov/libc-2.10.2.so
b76e2000-b76e3000 rw-p 00143000 03:01 619049
/ /lib/i686/cmov/libc-2.10.2.so
b76e3000-b76e7000 rw-p 00000000 00:00 0
b76e7000-b76f0000 r-xp 00000000 03:01 611188     /lib/libbsd.so.0.2.0
b76f0000-b76f1000 rw-p 00008000 03:01 611188     /lib/libbsd.so.0.2.0
b76f1000-b7762000 r-xp 00000000 03:01 695329
/usr/lib/libgcrypt.so.11.5.3
b7762000-b7765000 rw-p 00070000 03:01 695329
/ /usr/lib/libgcrypt.so.11.5.3
b7765000-b77f9000 r-xp 00000000 03:01 711083
/usr/lib/libgnutls.so.26.14.12
b77f9000-b77fd000 rw-p 00093000 03:01 711083
/ /usr/lib/libgnutls.so.26.14.12
b77fd000-b7840000 r-xp 00000000 03:01 611834     /lib/libncursesw.so.5.7
b7840000-b7843000 rw-p 00042000 03:01 611834     /lib/libncursesw.so.5.7
b7843000-b7873000 r-xp 00000000 03:01 694977     /usr/lib/libidn.so.11.5.44
b7873000-b7874000 rw-p 0002f000 03:01 694977     /usr/lib/libidn.so.11.5.44
b7874000-b7887000 r-xp 00000000 03:01 693335     /usr/lib/libz.so.1.2.3.4
b7887000-b7888000 rw-p 00013000 03:01 693335     /usr/lib/libz.so.1.2.3.4
b7888000-b7889000 rw-p 00000000 00:00 0
b788d000-b7892000 r-xp 00000000 03:01 619037
/lib/i686/cmov/libnss_dns-2.10.2.so
b7892000-b7893000 r--p 00004000 03:01 619037
/ /lib/i686/cmov/libnss_dns-2.10.2.so
b7893000-b7894000 rw-p 00005000 03:01 619037
/lib/i686/cmov/libnss_dns-2.10.2.so
b7894000-b789b000 r--s 00000000 03:01 699741
/ /usr/lib/gconv/gconv-modules.cache
b789b000-b789c000 rw-p 00000000 00:00 0
b789c000-b789d000 r-xp 00000000 00:00 0          [vdso]
b789d000-b78b9000 r-xp 00000000 03:01 611180     /lib/ld-2.10.2.so
b78b9000-b78ba000 r--p 0001b000 03:01 611180     /lib/ld-2.10.2.so
b78ba000-b78bb000 rw-p 0001c000 03:01 611180     /lib/ld-2.10.2.so
bf95f000-bf974000 rw-p 00000000 00:00 0          [stack]
Zrušené

(that "Zrušené" means "Aborted" in my locale.)

Stefan Gursky


-- System Information:
Debian Release: squeeze/sid
  APT prefers testing-proposed-updates
  APT policy: (500, 'testing-proposed-updates'), (500, 'testing')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-3-686 (SMP w/1 CPU core)
Locale: LANG=sk_SK.UTF-8, LC_CTYPE=sk_SK.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages lynx-cur depends on:
ii  debconf [debconf-2.0]   1.5.28           Debian configuration management sy
ii  libbsd0                 0.2.0-1          utility functions from BSD systems
ii  libc6                   2.10.2-6         Embedded GNU C Library: Shared lib
ii  libgcrypt11             1.4.5-2          LGPL Crypto library - runtime libr
ii  libgnutls26             2.8.5-2          the GNU TLS library - runtime libr
ii  libidn11                1.15-2           GNU Libidn library, implementation
ii  libncursesw5            5.7+20100313-1   shared libraries for terminal hand
ii  zlib1g                  1:1.2.3.4.dfsg-3 compression library - runtime

Versions of packages lynx-cur recommends:
ii  mime-support                  3.48-1     MIME files 'mime.types' & 'mailcap

Versions of packages lynx-cur suggests:
pn  lynx-cur-wrapper              <none>     (no description available)

-- debconf information:
  lynx-cur/defaulturl: http://www.debian.org/
  lynx-cur/etc_lynx.cfg:

--- End Message ---

--- Begin Message ---

Source: lynx-cur
Source-Version: 2.8.8dev.5-1

We believe that the bug you reported is fixed in the latest version of
lynx-cur, which is due to be installed in the Debian FTP archive:

lynx-cur-wrapper_2.8.8dev.5-1_all.deb
  to main/l/lynx-cur/lynx-cur-wrapper_2.8.8dev.5-1_all.deb
lynx-cur_2.8.8dev.5-1.diff.gz
  to main/l/lynx-cur/lynx-cur_2.8.8dev.5-1.diff.gz
lynx-cur_2.8.8dev.5-1.dsc
  to main/l/lynx-cur/lynx-cur_2.8.8dev.5-1.dsc
lynx-cur_2.8.8dev.5-1_i386.deb
  to main/l/lynx-cur/lynx-cur_2.8.8dev.5-1_i386.deb
lynx-cur_2.8.8dev.5.orig.tar.gz
  to main/l/lynx-cur/lynx-cur_2.8.8dev.5.orig.tar.gz
lynx_2.8.8dev.5-1_all.deb
  to main/l/lynx-cur/lynx_2.8.8dev.5-1_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Atsuhito KOHDA <[email protected]> (supplier of updated lynx-cur package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 26 Aug 2010 09:50:33 +0900
Source: lynx-cur
Binary: lynx-cur lynx-cur-wrapper lynx
Architecture: source all i386
Version: 2.8.8dev.5-1
Distribution: unstable
Urgency: high
Maintainer: Atsuhito KOHDA <[email protected]>
Changed-By: Atsuhito KOHDA <[email protected]>
Description: 
 lynx       - Text-mode WWW Browser (transitional package)
 lynx-cur   - Text-mode WWW Browser with NLS support (development version)
 lynx-cur-wrapper - Wrapper for lynx-cur
Closes: 489360 490265 575922 592718 594300
Changes: 
 lynx-cur (2.8.8dev.5-1) unstable; urgency=high
 .
   * New upstream release.  This should fix a security bug so urgency=high.
   * Fixed a security bug, CVE-2010-2810  (Closes: #594300)
   * A fix for #592078 with patch-3 is not necessary so removed it.
   * Some bugs forgotten to be closed.
    - unable to reproduce. (Closes: #575922)
    - a problem of gnutls. (Closes: #592718)
    - if necessary, please reopen. (Closes: #490265)
    - only a report of a patch for 2.8.7dev9-1.1 (Closes: #489360)
Checksums-Sha1: 
 860d7c7e87cb4f9b3dc74e4ccb1ae3f1cb56d646 1181 lynx-cur_2.8.8dev.5-1.dsc
 3ac9ca1cb38f8d380828e9fd4efce2b8e972dccf 3451625 
lynx-cur_2.8.8dev.5.orig.tar.gz
 3265b377743620d4b428d2da67e377b8e3b6cc98 31898 lynx-cur_2.8.8dev.5-1.diff.gz
 17633e1ce71deb92a2012428ed455623dec38736 219948 
lynx-cur-wrapper_2.8.8dev.5-1_all.deb
 359ebd078fdd742df42636bd7a2fb088cd00229f 217418 lynx_2.8.8dev.5-1_all.deb
 080d9cb862d77f0e76ec8809081b3931f3b6a91c 2114860 lynx-cur_2.8.8dev.5-1_i386.deb
Checksums-Sha256: 
 d000fe5cfb0e8405a7729eafc696cc8b17291570ed48670e2ecf23d437905aa4 1181 
lynx-cur_2.8.8dev.5-1.dsc
 d2fe593505d7f33f46f5a9ae20ee2e55bbbb614fabeaac7e88e2a75c5f859586 3451625 
lynx-cur_2.8.8dev.5.orig.tar.gz
 2247d9e01a0b25b7fec2523941f66f47a90e98ca4a25c56449d86d057195eda5 31898 
lynx-cur_2.8.8dev.5-1.diff.gz
 52ada74577c7bb88ffe5f1bf54b26d32f15c90dde04e971cd7490a02ce2828e3 219948 
lynx-cur-wrapper_2.8.8dev.5-1_all.deb
 c8fb1fbcf083b0b10e45dcb177826e394acc57019d8b31bcd667a13548009050 217418 
lynx_2.8.8dev.5-1_all.deb
 026f132aec4b38dcf8d44f6855c4ad0e7c3a6b44761cd2aa28dd5d1af2686465 2114860 
lynx-cur_2.8.8dev.5-1_i386.deb
Files: 
 33a6b6f3101ec76972d175cb34c6ca09 1181 web extra lynx-cur_2.8.8dev.5-1.dsc
 c565ee195d3a9d331f27dcd1f52f5922 3451625 web extra 
lynx-cur_2.8.8dev.5.orig.tar.gz
 f2a8969c74f63777fb517986542c1444 31898 web extra lynx-cur_2.8.8dev.5-1.diff.gz
 08e9f964af87a40339d5744909c3a14a 219948 web extra 
lynx-cur-wrapper_2.8.8dev.5-1_all.deb
 5f29cd3762c18dce5c9729f969e8af65 217418 web extra lynx_2.8.8dev.5-1_all.deb
 9a0e416b640d65faa8de90244ab0cf13 2114860 web extra 
lynx-cur_2.8.8dev.5-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkx18hoACgkQ1IXdL1v6kOwKoACfblkdFfTupm1nIE6gheUMeO7p
vuwAoJS4jm0YX0tbqWYClUse7Rz9BeZi
=WiE5
-----END PGP SIGNATURE-----

--- End Message ---

Bug#575922: marked as done (lynx-cur: Crash with malloc(): memory corruption on specific site)

Reply via email to