Bug#359138: marked as done (firefox: Firefox crashes on http://en.wikipedia.org/wiki/Dash)

Mon, 10 Apr 2006 12:58:05 -0700 

Your message dated Mon, 10 Apr 2006 15:35:08 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#359138: firefox: Firefox crashes on 
http://en.wikipedia.org/wiki/Dash
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message --- 
Package: firefox
Version: 1.5.dfsg+1.5.0.1-4
Severity: important


Trying to access http://en.wikipedia.org/wiki/Dash always brings up a
segfault. 

gdb output, however the address is different each time:
[Thread -1252717648 (LWP 6282) exited]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1221876032 (LWP 6267)]
0xb7a1cdbb in FcFreeTypeCharIndex () from /usr/lib/libfontconfig.so.1

Backtrace is useless since return addresses get overwritten.

Strace says:
6707  <... read resumed> 
"GIF89a\16\0\20\0\263\0\0\0\0\0\200\0\0\0\200\0\200\200"..., 4096) = 165
6681  <... gettimeofday resumed> {1143399437, 548154}, NULL) = 0
6707  read(48,  <unfinished ...>
6681  write(6, "\372", 1 <unfinished ...>
6707  <... read resumed> "", 3931)      = 0
6681  <... write resumed> )             = 1
6707  futex(0x8baea24, FUTEX_WAIT, 2, NULL <unfinished ...>
6681  futex(0x8baea24, FUTEX_WAKE, 1 <unfinished ...>
6707  <... futex resumed> )             = -1 EAGAIN (Resource temporarily 
unavailable)
6681  <... futex resumed> )             = 0
6681  write(3, "\1\30\r\0\326\5\240\1\267\4\240\1\0\0\0\0\1\0\1\0\0\0\1"..., 
240) = 240
6681  ioctl(3, FIONREAD, [128])         = 0
6681  read(3, "\26\0\3661\327\5\240\1\327\5\240\1\0\0\0\0\0\0\0\0008\3"..., 
128) = 128
6681  poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, 
events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event
s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0
6681  poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, 
events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event
s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0
6681  ioctl(3, FIONREAD, [0])           = 0
6681  poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, 
events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event
s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0
6681  ioctl(3, FIONREAD, [0])           = 0
6681  poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, 
events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event
s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}, {fd=5, events=POLLIN, 
revents=POLLIN}], 7, -1) = 1
6681  gettimeofday({1143399437, 549719}, NULL) = 0
6681  open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Oblique.ttf", 
O_RDONLY <unfinished ...>
6707  futex(0x8baea24, FUTEX_WAKE, 1 <unfinished ...>
6681  <... open resumed> )              = 47
6707  <... futex resumed> )             = 0
6681  fcntl64(47, F_SETFD, FD_CLOEXEC <unfinished ...>
6707  close(48 <unfinished ...>
6681  <... fcntl64 resumed> )           = 0
6707  <... close resumed> )             = 0
6681  fstat64(47,  <unfinished ...>
6707  gettimeofday( <unfinished ...>
6681  <... fstat64 resumed> {st_mode=S_IFREG|0644, st_size=63684, ...}) = 0
6707  <... gettimeofday resumed> {1143399437, 558851}, NULL) = 0
6681  mmap2(NULL, 63684, PROT_READ, MAP_PRIVATE, 47, 0 <unfinished ...>
6707  gettimeofday( <unfinished ...>
6681  <... mmap2 resumed> )             = 0xb552d000
6707  <... gettimeofday resumed> {1143399437, 558925}, NULL) = 0
6681  close(47 <unfinished ...>
6707  clock_gettime(CLOCK_REALTIME,  <unfinished ...>
6681  <... close resumed> )             = 0
6707  <... clock_gettime resumed> {1143399437, 558968000}) = 0
6707  futex(0x8c69718, FUTEX_WAIT, 47, {59, 999957000} <unfinished ...>
6681  
open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Bold-Oblique.ttf", 
O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=63208, ...}) = 0
6681  mmap2(NULL, 63208, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb551d000
6681  close(47)                         = 0
6681  brk(0x948f000)                    = 0x948f000
6681  brk(0x948d000)                    = 0x948d000
6681  open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Bold.ttf", 
O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=58716, ...}) = 0
6681  mmap2(NULL, 58716, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb550e000
6681  close(47)                         = 0
6681  brk(0x94ae000)                    = 0x94ae000
6681  open("/var/lib/defoma/fontconfig.d/F/FreeSans-Medium.ttf", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=477820, ...}) = 0
6681  mmap2(NULL, 477820, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb438b000
6681  close(47)                         = 0
6681  brk(0x94cf000)                    = 0x94cf000
6681  brk(0x94f3000)                    = 0x94f3000
6681  open("/var/lib/defoma/fontconfig.d/D/DejaVu-Sans-Bold.ttf", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=125188, ...}) = 0
6681  mmap2(NULL, 125188, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb436c000
6681  close(47)                         = 0
6681  brk(0x9514000)                    = 0x9514000
6681  brk(0x9535000)                    = 0x9535000
6681  brk(0x9565000)                    = 0x9565000
6681  open("/usr/share/fonts/truetype/ttf-dejavu/DejaVuSansMono.ttf", O_RDONLY) 
= 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=94156, ...}) = 0
6681  mmap2(NULL, 94156, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb4355000
6681  close(47)                         = 0
6681  open("/var/lib/defoma/fontconfig.d/F/FreeSerif-Bold.ttf", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=248956, ...}) = 0
6681  mmap2(NULL, 248956, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb4318000
6681  close(47)                         = 0
6681  brk(0x9586000)                    = 0x9586000
6681  brk(0x95a7000)                    = 0x95a7000
6681  open("/var/lib/defoma/fontconfig.d/F/FreeSans-Bold.ttf", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=142772, ...}) = 0
6681  mmap2(NULL, 142772, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb42f5000
6681  close(47)                         = 0
6681  brk(0x95c8000)                    = 0x95c8000
6681  brk(0x95e9000)                    = 0x95e9000
6681  brk(0x960b000)                    = 0x960b000
6681  brk(0x9633000)                    = 0x9633000
6681  brk(0x9657000)                    = 0x9657000
6681  brk(0x9651000)                    = 0x9651000
6681  gettimeofday({1143399437, 647338}, NULL) = 0
6681  brk(0x9675000)                    = 0x9675000
6681  brk(0x966f000)                    = 0x966f000
6681  munmap(0xb4355000, 94156)         = 0
6681  open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Mono.ttf", 
O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=49224, ...}) = 0
6681  mmap2(NULL, 49224, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb435f000
6681  close(47)                         = 0
6681  brk(0x9691000)                    = 0x9691000
6681  brk(0x968f000)                    = 0x968f000
6681  munmap(0xb435f000, 49224)         = 0
6681  open("/var/lib/defoma/fontconfig.d/D/DejaVu-Sans-Oblique.ttf", O_RDONLY) 
= 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=126872, ...}) = 0
6681  mmap2(NULL, 126872, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb42d6000
6681  close(47)                         = 0
6709  gettimeofday({1143399437, 692208}, NULL) = 0
6709  gettimeofday({1143399437, 692234}, NULL) = 0
6709  clock_gettime(CLOCK_REALTIME, {1143399437, 692257000}) = 0
6709  futex(0x8c69718, FUTEX_WAIT, 48, {59, 999977000} <unfinished ...>
6706  <... futex resumed> )             = -1 ETIMEDOUT (Connection timed out)
6706  gettimeofday({1143399437, 715061}, NULL) = 0
6706  futex(0x8b4fdd8, FUTEX_WAKE, 1)   = 0
6706  gettimeofday({1143399437, 715122}, NULL) = 0
6706  gettimeofday({1143399437, 715144}, NULL) = 0
6706  clock_gettime(CLOCK_REALTIME, {1143399437, 715164000}) = 0
6706  futex(0x8b4b698, FUTEX_WAIT, 669, {5, 20980000} <unfinished ...>
6681  brk(0x96b0000)                    = 0x96b0000
6681  brk(0x96d9000)                    = 0x96d9000
6681  brk(0x96fd000)                    = 0x96fd000
6681  gettimeofday({1143399437, 764353}, NULL) = 0
6681  munmap(0xb42d6000, 126872)        = 0
6681  open("/var/lib/defoma/fontconfig.d/F/FreeSerif-Medium.ttf", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=1059368, ...}) = 0
6681  mmap2(NULL, 1059368, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb41f2000
6681  close(47)                         = 0
6681  brk(0x971e000)                    = 0x971e000
6681  brk(0x973f000)                    = 0x973f000
6681  brk(0x973e000)                    = 0x973e000
6681  brk(0x973d000)                    = 0x973d000
6681  gettimeofday({1143399437, 806035}, NULL) = 0
6681  brk(0x975f000)                    = 0x975f000
6681  brk(0x9759000)                    = 0x9759000
6681  munmap(0xb559d000, 141668)        = 0
6681  open("/usr/X11R6/lib/X11/fonts/Type1/n019003l.pfb", O_RDONLY) = 47
6681  fcntl64(47, F_SETFD, FD_CLOEXEC)  = 0
6681  fstat64(47, {st_mode=S_IFREG|0644, st_size=69793, ...}) = 0
6681  mmap2(NULL, 69793, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb55ae000
6681  close(47)                         = 0
6681  brk(0x9781000)                    = 0x9781000
6681  brk(0x977f000)                    = 0x977f000
6681  --- SIGSEGV (Segmentation fault) @ 0 (0) ---
6681  unlink("/home/hendrik/.mozilla/firefox/z8jcg1f2.default/lock") = 0
6681  rt_sigaction(SIGSEGV, {SIG_DFL}, NULL, 8) = 0
6681  rt_sigprocmask(SIG_UNBLOCK, [SEGV], NULL, 8) = 0
6681  tgkill(6681, 6681, SIGSEGV)       = 0
6681  --- SIGSEGV (Segmentation fault) @ 0 (0) ---

So it seems to be a problem related to font display. However, Firefox
is the only application I encounter problems with. The crashes are not
limited to the Wikipedia page, but this is the first URL where the
crash is reproducible. This is probably related to
https://bugzilla.mozilla.org/show_bug.cgi?id=320936.

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.15.5
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)

Versions of packages firefox depends on:
ii  debianutils               2.14.3         Miscellaneous utilities specific t
ii  fontconfig                2.3.2-2        generic font configuration library
ii  libatk1.0-0               1.10.3-1       The ATK accessibility toolkit
ii  libc6                     2.3.6-1        GNU C Library: Shared libraries an
ii  libcairo2                 1.0.2-3        The Cairo 2D vector graphics libra
ii  libfontconfig1            2.3.2-2        generic font configuration library
ii  libfreetype6              2.1.10-2       FreeType 2 font engine, shared lib
ii  libgcc1                   1:4.0.2-5      GCC support library
ii  libglib2.0-0              2.8.6-1        The GLib library of C routines
ii  libgtk2.0-0               2.8.9-2        The GTK+ graphical user interface 
ii  libidl0                   0.8.5-1        library for parsing CORBA IDL file
ii  libjpeg62                 6b-11          The Independent JPEG Group's JPEG 
ii  libpango1.0-0             1.10.4-1       Layout and rendering of internatio
ii  libpng12-0                1.2.8rel-5     PNG library - runtime
ii  libstdc++6                4.0.2-5        The GNU Standard C++ Library v3
ii  libx11-6                  6.9.0.dfsg.1-5 X Window System protocol client li
ii  libxcursor1               1.1.3-1        X cursor management library
ii  libxext6                  6.9.0.dfsg.1-5 X Window System miscellaneous exte
ii  libxft2                   2.1.8.2-5.1    FreeType-based font drawing librar
ii  libxi6                    6.9.0.dfsg.1-5 X Window System Input extension li
ii  libxinerama1              6.9.0.dfsg.1-5 X Window System multi-head display
ii  libxp6                    6.9.0.dfsg.1-5 X Window System printing extension
ii  libxrandr2                6.9.0.dfsg.1-5 X Window System Resize, Rotate and
ii  libxrender1               1:0.9.0.2-1    X Rendering Extension client libra
ii  libxt6                    6.9.0.dfsg.1-5 X Toolkit Intrinsics
ii  psmisc                    21.6-1         Utilities that use the proc filesy
ii  zlib1g                    1:1.2.3-4      compression library - runtime

firefox recommends no packages.

-- no debconf information

--- End Message ---
--- Begin Message --- 
On Mon, Apr 10, 2006 at 08:42:57PM +0200, Hendrik Weimer wrote:
> Eric Dorland <[EMAIL PROTECTED]> writes:
> 
> > That bugzilla bug goes on about SIL graphite pango modules, which I'm
> > not familiar with. Do you have those installed? 
> 
> I have now found the source of the problem. I had a previous version
> of libcairo installed under /usr/local/lib, which I had totally
> forgotten. Now Firefox uses the correct library and everything works
> fine. :-) Sorry for the inconvenience.
Thanks for the info.  Closing the bug now.

--- End Message ---

Reply via email to