Your message dated Mon, 11 Jun 2012 21:07:17 +0000
with message-id <[email protected]>
and subject line Bug#611260: fixed in graphicsmagick 1.3.15-1
has caused the Debian Bug report #611260,
regarding libgraphicsmagick3: Crash in psiconv suggests graphicsmagick bug
(access of freed memory)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
611260: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=611260
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libgraphicsmagick3
Version: 1.3.12-1
Severity: important
See bug #609535 for the background (and it would be a shame to lose
psiconv to this bug).
psiconv recently fell foul of needing to call InitializeMagick, so I
supplied a patch for that. It cures simple use cases, but on trying to
convert a multiple-image file, it gives the following crash:
lt-psiconv: magick/semaphore.c:526: LockSemaphoreInfo: Assertion
`semaphore_info->signature == 0xabacadabUL' failed.
Program received signal SIGABRT, Aborted.
0x0012e416 in __kernel_vsyscall ()
(gdb) where
#0 0x0012e416 in __kernel_vsyscall ()
#1 0x00948941 in raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#2 0x0094be42 in abort () at abort.c:92
#3 0x009418e8 in __assert_fail (assertion=0x3be6d0 "semaphore_info->signature
== 0xabacadabUL",
file=0x3be68c "magick/semaphore.c", line=526, function=0x3be771
"LockSemaphoreInfo") at assert.c:81
#4 0x0026ae02 in LockSemaphoreInfo () from /usr/lib/libGraphicsMagick.so.3
#5 0x001a3812 in ReferenceBlob () from /usr/lib/libGraphicsMagick.so.3
#6 0x00233bc3 in SyncNextImageInList () from /usr/lib/libGraphicsMagick.so.3
#7 0x0039efeb in ?? () from /usr/lib/libGraphicsMagick.so.3
#8 0x001eaf56 in WriteImage () from /usr/lib/libGraphicsMagick.so.3
#9 0x001a68b1 in ImageToBlob () from /usr/lib/libGraphicsMagick.so.3
#10 0x0804a893 in image_to_list (list=0x8059fd0, image=0x80bb120, dest=<value
optimized out>) at gen_image.c:98
#11 0x0804aa54 in gen_image_list (config=<value optimized out>, list=<value
optimized out>,
sections=<value optimized out>, dest=0x804ea8a "TIFF") at gen_image.c:163
#12 0x0804aba0 in gen_clipart (config=0x8059d98, list=0x8059fd0,
file=0x8059fc0, dest=0x804ea8a "TIFF",
encoding_type=ENCODING_UTF8) at gen_image.c:193
#13 gen_image (config=0x8059d98, list=0x8059fd0, file=0x8059fc0, dest=0x804ea8a
"TIFF",
encoding_type=ENCODING_UTF8) at gen_image.c:222
#14 0x08049b96 in main (argc=2, argv=0xbffff0f4) at psiconv.c:298
Unfortunately there’s no libmagick3-dbg, so there’s no more
information about what’s going on inside the library. However, when I
run with valgrind:
==31530== Memcheck, a memory error detector
==31530== Copyright (C) 2002-2010, and GNU GPL'd, by Julian Seward et al.
==31530== Using Valgrind-3.6.0.SVN-Debian and LibVEX; rerun with -h for
copyright info
==31530== Command: /home/rrt/download/psiconv-0.9.8/.libs/lt-psiconv
examples/Clipart
==31530==
==31530== Conditional jump or move depends on uninitialised value(s)
==31530== at 0x403100C: psiconv_config_read (configuration.c:295)
==31530== by 0x8049A01: main (psiconv.c:227)
==31530==
==31530== Invalid read of size 4
==31530== at 0x4184D82: LockSemaphoreInfo (in
/usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x40BD811: ReferenceBlob (in
/usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x414DBC2: SyncNextImageInList (in
/usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x42B8FEA: ??? (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x4104F55: WriteImage (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x40C08B0: ImageToBlob (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x804A892: image_to_list (gen_image.c:98)
==31530== by 0x804AA53: gen_image_list (gen_image.c:163)
==31530== by 0x804AB9F: gen_image (gen_image.c:193)
==31530== by 0x8049B95: main (psiconv.c:298)
==31530== Address 0x54c4e88 is 24 bytes inside a block of size 28 free'd
==31530== at 0x40257ED: free (vg_replace_malloc.c:366)
==31530== by 0x4152E63: MagickFree (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x4184EC9: DestroySemaphoreInfo (in
/usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x40C1606: DestroyBlob (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x414DBAE: SyncNextImageInList (in
/usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x42B8FEA: ??? (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x4104F55: WriteImage (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x40C08B0: ImageToBlob (in /usr/lib/libGraphicsMagick.so.3.6.0)
==31530== by 0x804A892: image_to_list (gen_image.c:98)
==31530== by 0x804AA53: gen_image_list (gen_image.c:163)
==31530== by 0x804AB9F: gen_image (gen_image.c:193)
==31530== by 0x8049B95: main (psiconv.c:298)
==31530==
lt-psiconv: magick/semaphore.c:526: LockSemaphoreInfo: Assertion
`semaphore_info->signature == 0xabacadabUL' failed.
==31530==
==31530== HEAP SUMMARY:
==31530== in use at exit: 5,516,490 bytes in 2,930 blocks
==31530== total heap usage: 8,125 allocs, 5,195 frees, 16,177,481 bytes
allocated
==31530==
==31530== LEAK SUMMARY:
==31530== definitely lost: 2,996 bytes in 72 blocks
==31530== indirectly lost: 48 bytes in 3 blocks
==31530== possibly lost: 55,234 bytes in 271 blocks
==31530== still reachable: 5,458,212 bytes in 2,584 blocks
==31530== suppressed: 0 bytes in 0 blocks
==31530== Rerun with --leak-check=full to see details of leaked memory
==31530==
What seems to be happening is that libgraphicsmagick is accessing
memory that it has already freed (note that the report of the block
freed is inside the same call into graphicsmagick as the eventual
crash). I checked that the innermost call frame of actual psiconv
code, gen_image.c:98, is only run once, so the free and the incorrect
access are definitely on the same call into graphicsmagick, hence it
looks like a graphicsmagick bug.
-- System Information:
Debian Release: squeeze/sid
APT prefers maverick-updates
APT policy: (500, 'maverick-updates'), (500, 'maverick-security'), (500,
'maverick-backports'), (500, 'maverick')
Architecture: i386 (i686)
Kernel: Linux 2.6.35-24-generic (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libgraphicsmagick3 depends on:
ii libbz2-1.0 1.0.5-4ubuntu1 high-quality block-sorting file co
ii libc6 2.12.1-0ubuntu10.1 Embedded GNU C Library: Shared lib
ii libfreetype6 2.4.2-2ubuntu0.1 FreeType 2 font engine, shared lib
ii libgomp1 4.5.1-7ubuntu2 GCC OpenMP (GOMP) support library
ii libice6 2:1.0.6-1 X11 Inter-Client Exchange library
ii libjasper1 1.900.1-7 The JasPer JPEG-2000 runtime libra
ii libjpeg62 6b-16.1 The Independent JPEG Group's JPEG
ii liblcms1 1.18.dfsg-1ubuntu2.10.10.1 Color management library
ii libltdl7 2.2.6b-2ubuntu1 A system independent dlopen wrappe
ii libpng12-0 1.2.44-1 PNG library - runtime
ii libsm6 2:1.1.1-1 X11 Session Management library
ii libtiff4 3.9.4-2 Tag Image File Format (TIFF) libra
ii libwmf0.2-7 0.2.8.4-7ubuntu2 Windows metafile conversion librar
ii libx11-6 2:1.3.3-3ubuntu1 X11 client-side library
ii libxext6 2:1.1.2-1 X11 miscellaneous extension librar
ii libxml2 2.7.7.dfsg-4ubuntu0.1 GNOME XML library
ii zlib1g 1:1.2.3.4.dfsg-3ubuntu1 compression library - runtime
Versions of packages libgraphicsmagick3 recommends:
ii ghos 8.71.dfsg.2-0ubuntu7 The GPL Ghostscript PostScript/PDF
ii gsfo 1:8.11+urwcyr1.0.7~pre44-4.2ubuntu1 Fonts for the Ghostscript interpre
Versions of packages libgraphicsmagick3 suggests:
pn graphicsmagick-dbg <none> (no description available)
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: graphicsmagick
Source-Version: 1.3.15-1
We believe that the bug you reported is fixed in the latest version of
graphicsmagick, which is due to be installed in the Debian FTP archive:
graphicsmagick-dbg_1.3.15-1_amd64.deb
to main/g/graphicsmagick/graphicsmagick-dbg_1.3.15-1_amd64.deb
graphicsmagick-imagemagick-compat_1.3.15-1_all.deb
to main/g/graphicsmagick/graphicsmagick-imagemagick-compat_1.3.15-1_all.deb
graphicsmagick-libmagick-dev-compat_1.3.15-1_all.deb
to main/g/graphicsmagick/graphicsmagick-libmagick-dev-compat_1.3.15-1_all.deb
graphicsmagick_1.3.15-1.diff.gz
to main/g/graphicsmagick/graphicsmagick_1.3.15-1.diff.gz
graphicsmagick_1.3.15-1.dsc
to main/g/graphicsmagick/graphicsmagick_1.3.15-1.dsc
graphicsmagick_1.3.15-1_amd64.deb
to main/g/graphicsmagick/graphicsmagick_1.3.15-1_amd64.deb
graphicsmagick_1.3.15.orig.tar.gz
to main/g/graphicsmagick/graphicsmagick_1.3.15.orig.tar.gz
libgraphics-magick-perl_1.3.15-1_amd64.deb
to main/g/graphicsmagick/libgraphics-magick-perl_1.3.15-1_amd64.deb
libgraphicsmagick++1-dev_1.3.15-1_amd64.deb
to main/g/graphicsmagick/libgraphicsmagick++1-dev_1.3.15-1_amd64.deb
libgraphicsmagick++3_1.3.15-1_amd64.deb
to main/g/graphicsmagick/libgraphicsmagick++3_1.3.15-1_amd64.deb
libgraphicsmagick1-dev_1.3.15-1_amd64.deb
to main/g/graphicsmagick/libgraphicsmagick1-dev_1.3.15-1_amd64.deb
libgraphicsmagick3_1.3.15-1_amd64.deb
to main/g/graphicsmagick/libgraphicsmagick3_1.3.15-1_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Daniel Kobras <[email protected]> (supplier of updated graphicsmagick package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 11 Jun 2012 20:49:01 +0200
Source: graphicsmagick
Binary: graphicsmagick libgraphicsmagick3 libgraphicsmagick1-dev
libgraphicsmagick++3 libgraphicsmagick++1-dev libgraphics-magick-perl
graphicsmagick-imagemagick-compat graphicsmagick-libmagick-dev-compat
graphicsmagick-dbg
Architecture: source amd64 all
Version: 1.3.15-1
Distribution: unstable
Urgency: low
Maintainer: Daniel Kobras <[email protected]>
Changed-By: Daniel Kobras <[email protected]>
Description:
graphicsmagick - collection of image processing tools
graphicsmagick-dbg - format-independent image processing - debugging symbols
graphicsmagick-imagemagick-compat - image processing tools providing
ImageMagick interface
graphicsmagick-libmagick-dev-compat - image processing libraries providing
ImageMagick interface
libgraphics-magick-perl - format-independent image processing - perl interface
libgraphicsmagick++1-dev - format-independent image processing - C++
development files
libgraphicsmagick++3 - format-independent image processing - C++ shared library
libgraphicsmagick1-dev - format-independent image processing - C development
files
libgraphicsmagick3 - format-independent image processing - C shared library
Closes: 611260 662359 669947 672982 676265
Changes:
graphicsmagick (1.3.15-1) unstable; urgency=low
.
* New upstream release 1.3.15. Closes: #672982
+ Fixes crash in psiconv. Closes: #611260
* debian/control: Change (Build-)Depends from libpng12-dev to
libpng-dev. Closes: #662359
* debian/control: Add (Build-)Depends on libjbig-dev. Closes: #669947
* debian/libgraphicsmagick3.symbols: Add symbols from new upstream
release.
* PerlMagick/MANIFEST, PerlMagick/typemap: Add build fix for Perl 5.16,
cherry-picked from upstream VCS. Closes: #676265
Checksums-Sha1:
83e162a7623ab14e731dc2d77daf2b92de640bc2 1983 graphicsmagick_1.3.15-1.dsc
41b0d10feaf79aa9e99d5d0201e21588809f055a 8084128
graphicsmagick_1.3.15.orig.tar.gz
d9a47852cc6580bc1eda0aa985c75327b4cc56b6 158384 graphicsmagick_1.3.15-1.diff.gz
2f557da657fdc92b3613ea39b5169362cc3abd9f 970086
graphicsmagick_1.3.15-1_amd64.deb
52bc780ffc5971132d5da169b8bc7c23bb042592 1317038
libgraphicsmagick3_1.3.15-1_amd64.deb
209533201bbcf842c3301b00f8bb77439850b04e 1809074
libgraphicsmagick1-dev_1.3.15-1_amd64.deb
0426406ab4feb343e2167105aab413dff186bfeb 149898
libgraphicsmagick++3_1.3.15-1_amd64.deb
e9b0bcb53cee1bb23c1bbfe3587a62a1c4607797 403008
libgraphicsmagick++1-dev_1.3.15-1_amd64.deb
ba27bb75368cb0655b2ec39cfd7b5f4854769d02 79088
libgraphics-magick-perl_1.3.15-1_amd64.deb
5387ae14f1f3ed40ce6ef40683e1510cfd66ef09 3260202
graphicsmagick-dbg_1.3.15-1_amd64.deb
d36a2acda06c30d58ea70898b0a7c557ff5d4005 15730
graphicsmagick-imagemagick-compat_1.3.15-1_all.deb
7f09f4f0e080ab11dcc1208675e97e7330bcc68c 19296
graphicsmagick-libmagick-dev-compat_1.3.15-1_all.deb
Checksums-Sha256:
e8630b07a6050b1022efaa536693dc6b9f8f3c4b0f3fbedfa2842853fb2fcfc4 1983
graphicsmagick_1.3.15-1.dsc
fa28eab436278b5ddd1f2c6dd76550d15a6719771af68e3f98ffd96fbea597c9 8084128
graphicsmagick_1.3.15.orig.tar.gz
bf4822e2db0317b2fbf4ae436bc52b9e52ef8610881bf421473c246baf9d1e59 158384
graphicsmagick_1.3.15-1.diff.gz
cb3d6f28cc384eefbc49c0c3c7c03781b37552c8a1f4a74758615392df069ecd 970086
graphicsmagick_1.3.15-1_amd64.deb
58bfcaa0488418785824bfa934d5796b9b73066927f49b16e7062d771a999b3a 1317038
libgraphicsmagick3_1.3.15-1_amd64.deb
c874ecdce563d4106a98aa7ee80e12bc0c96b7fecb43df5a7585ab315345617e 1809074
libgraphicsmagick1-dev_1.3.15-1_amd64.deb
3b7c6473bbac8d8112af26d41301a95db2d91e2330a740df4c1d89f7aa6e9a6c 149898
libgraphicsmagick++3_1.3.15-1_amd64.deb
a07e1b8d03c1a550453efa5e8bff0522736efa27b0fb8e214a8fdd00e64b9e4c 403008
libgraphicsmagick++1-dev_1.3.15-1_amd64.deb
98c8ba585587afb2aac6cf14d6123b83323c4391ee95b84eb0525636e4b9139b 79088
libgraphics-magick-perl_1.3.15-1_amd64.deb
902d19ae5df8d706179ef2fac40a725a6ba08a2f0664eae276874ab7617319d9 3260202
graphicsmagick-dbg_1.3.15-1_amd64.deb
6e25740be1df9d623cf6533769b4e8d6d975dc360ab7f3d4cb3ce0c8402446ba 15730
graphicsmagick-imagemagick-compat_1.3.15-1_all.deb
ea6c350a6cc26d1ebf333c579a729d0a8a3ab1401102eb3fc5da478da0c2b1d4 19296
graphicsmagick-libmagick-dev-compat_1.3.15-1_all.deb
Files:
7e5c8e07cb65d1eeed9acfbd73b7ef51 1983 graphics optional
graphicsmagick_1.3.15-1.dsc
bd20dd3825311e8c8d5aa43c8a3abbd8 8084128 graphics optional
graphicsmagick_1.3.15.orig.tar.gz
d05f49c16bfbada0454487d3a5dd3c08 158384 graphics optional
graphicsmagick_1.3.15-1.diff.gz
4a31564ed3f9024816aaf16799521a8c 970086 graphics optional
graphicsmagick_1.3.15-1_amd64.deb
3445e2bd3ac39c0814a87934438a5746 1317038 libs optional
libgraphicsmagick3_1.3.15-1_amd64.deb
c05e21606d83126a6b0828dc018846aa 1809074 libdevel optional
libgraphicsmagick1-dev_1.3.15-1_amd64.deb
eb9fe1cc6f9adaa00503057d407e4870 149898 libs optional
libgraphicsmagick++3_1.3.15-1_amd64.deb
3953ff16cc3579dea83a19fe018bc2e3 403008 libdevel optional
libgraphicsmagick++1-dev_1.3.15-1_amd64.deb
fd620c0867a28adcd71221977dfec06f 79088 perl optional
libgraphics-magick-perl_1.3.15-1_amd64.deb
b9a3f34beb23cffe55deb8f9e07257d6 3260202 debug extra
graphicsmagick-dbg_1.3.15-1_amd64.deb
db3dfc0b9b8eecf95be402853455cdea 15730 graphics extra
graphicsmagick-imagemagick-compat_1.3.15-1_all.deb
1981e29d010ae20e65eab72b04f4ff2a 19296 graphics extra
graphicsmagick-libmagick-dev-compat_1.3.15-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAk/WTE4ACgkQpOKIA4m/fiuQrACeMw5n6qWjZPeTmrzigHi5aTMs
beUAniti4z1x2I3KM8g5/sK14nQ5I8F1
=gmg1
-----END PGP SIGNATURE-----
--- End Message ---
