Bug#963813: evince: segmentation fault in evince opening rfc8798.pdf

2020-09-04 Thread Simon McVittie 
Control: found -1 0.71.0-5
Control: severity -1 important
Control: forwarded -1 
https://gitlab.freedesktop.org/poppler/poppler/-/issues/599
Control: tags -1 + patch fixed-upstream

On Fri, 04 Sep 2020 at 18:17:33 +0200, Bernhard Übelacker wrote:
> Searching upstream issues for checksum points to this one [2].
> Building a package with mentioned patch makes evince no longer crash.
...
> [2]
> https://gitlab.freedesktop.org/poppler/poppler/-/issues/599
> 
> https://gitlab.freedesktop.org/poppler/poppler/-/commit/6f5327114c824791dda72dc415b047d445e46d9d

This is fixed in testing, then. I'll close this bug when the metadata
updates from this mail have gone through.

Debian 10 'buster' continues to be affected, but the bug tracking system's
version-tracking should be able to figure that out.

smcv

Bug#963813: evince: segmentation fault in evince opening rfc8798.pdf

2020-06-30 Thread smcv 
Control: reassign -1 libpoppler-glib8 0.71.0-6
Control: affects -1 + evince
Control: notfound -1 0.85.0-1

On Sat, 27 Jun 2020 at 21:44:46 +0200, Erik Auerswald wrote:
>I wanted to read the PDF version of the IETF RFC 8798 document using
>evince, the GNOME Document Viewer.  This public standard document is
>accessible at https://www.rfc-editor.org/rfc/rfc8798.pdf .
> 
>When trying to open the PDF file with evince using
> 
>   evince rfc8708.pdf
> 
>the GNOME Document Viewer "evince" crashes with a segmentation fault.

I can reproduce this on unstable (note to poppler maintainers: the
original report was against buster). Here's a backtrace.

It looks as though a PopplerAttachment somehow has an invalid pointer
at attachment->checksum, so I'm guessing this is more likely to be a
bug in the poppler library than in evince.

This appears to have been fixed in libpoppler-glib8_0.85.0-1 in
experimental (or at least, I can't reproduce it in that version) so
perhaps there is a fix that can be backported.

Regards,
smcv

Thread 6 "EvJobScheduler" received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7f491e4ec700 (LWP 139528)]
0x7f4926f67c7c in g_string_free (string=0x, 
free_segment=free_segment@entry=1) at ../../../glib/gstring.c:215
215 ../../../glib/gstring.c: No such file or directory.
(gdb) bt full
#0  0x7f4926f67c7c in g_string_free (string=0x, 
free_segment=free_segment@entry=1) at ../../../glib/gstring.c:215
_g_boolean_var_ = 
segment = 
__func__ = "g_string_free"
#1  0x7f491dc22c53 in poppler_attachment_finalize(GObject*) 
(obj=0x55d1dde5d460 [PopplerAttachment])
at ./glib/poppler-attachment.cc:88
attachment = 0x55d1dde5d460 [PopplerAttachment]
#2  0x7f492703509e in g_object_unref (_object=) at 
../../../gobject/gobject.c:3499
weak_locations = 
old_ref = 
__func__ = "g_object_unref"
object = 0x55d1dde5d460 [PopplerAttachment]
__func__ = "g_object_unref"
#3  g_object_unref (_object=0x55d1dde5d460) at ../../../gobject/gobject.c:3391
object = 0x55d1dde5d460 [PopplerAttachment]
__func__ = "g_object_unref"
#4  0x7f491dc9817e in 
pdf_document_attachments_get_attachments(EvDocumentAttachments*) 
(document=)
at ev-poppler.cc:4222
ev_attachment = 
data = 0x55d1de094960 "\nhttp://www.w3.org/2001/XInclude\; version=\"3\" category=\"std\" 
consensus=\"true\" docName=\"draft-ietf-core-senml-more-units-06\" 
indexInclude=\"true\" ipr"...
attachment = 0x55d1dde5d460 [PopplerAttachment]
size = 51880
error = 0x0
pdf_document = 
attachments = 
list = 0x55d1ddb16c20 = {0x55d1dde5d460}
retval = 0x55d1ddb17180 = {0x55d1dde3b560}
#5  0x7f4927d8b77a in ev_job_attachments_run (job=0x55d1dde5d630 
[EvJobAttachments]) at ev-jobs.c:472
job_attachments = 0x55d1dde5d630 [EvJobAttachments]
#6  0x7f4927d8d7da in ev_job_thread (job=0x55d1dde5d630 [EvJobAttachments]) 
at ev-job-scheduler.c:184
result = 
job = 0x55d1ddc582f0
#7  ev_job_thread_proxy (data=) at ev-job-scheduler.c:217
job = 0x55d1ddc582f0
#8  0x7f4926f6e52d in g_thread_proxy (data=0x55d1dde36580) at 
../../../glib/gthread.c:807
thread = 0x55d1dde36580
__func__ = "g_thread_proxy"
#9  0x7f4926d97f27 in start_thread (arg=) at 
pthread_create.c:479
ret = 
pd = 
unwind_buf = 
  {cancel_jmp_buf = {{jmp_buf = {139952017819392, 
4879852856656241710, 140730885663534, 140730885663535, 139952017816704, 
139952017819392, -4815890835605576658, -4815766494322252754}, mask_was_saved = 
0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, 
canceltype = 0}}}
not_first_call = 0
#10 0x7f4926cc931f in clone () at 
../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Bug#963813: evince: segmentation fault in evince opening rfc8798.pdf

2020-06-27 Thread Erik Auerswald 
Package: evince
Version: 3.30.2-3+deb10u1
Severity: normal

Dear Maintainer,

   I wanted to read the PDF version of the IETF RFC 8798 document using
   evince, the GNOME Document Viewer.  This public standard document is
   accessible at https://www.rfc-editor.org/rfc/rfc8798.pdf .

   When trying to open the PDF file with evince using

  evince rfc8708.pdf

   the GNOME Document Viewer "evince" crashes with a segmentation fault.
   The expected outcome was to open a new evince window showing the RFC
   document.

  $ evince rfc8798.pdf
  Gtk-Message: 21:04:42.878: Failed to load module "canberra-gtk-module"
  Gtk-Message: 21:04:44.380: Failed to load module "canberra-gtk-module"
  ! SyncTeX Error : No file?
  Segmentation fault

   This problem has been reported on an IETF mailing list by other
   people as well, see:

  
https://mailarchive.ietf.org/arch/msg/tools-discuss/hgenvnKeP9zX-IBX5FyD6zyEkmI/
  
https://mailarchive.ietf.org/arch/msg/tools-discuss/bisztKF6HF_qJOHnGcc1UMM9a4c/

-- System Information:
Debian Release: 10.4
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-9-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages evince depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.30.1-2
ii  evince-common3.30.2-3+deb10u1
ii  gsettings-desktop-schemas3.28.1-1
ii  libatk1.0-0  2.30.0-2
ii  libc62.28-10
ii  libcairo-gobject21.16.0-4
ii  libcairo21.16.0-4
ii  libevdocument3-4 3.30.2-3+deb10u1
ii  libevview3-3 3.30.2-3+deb10u1
ii  libgdk-pixbuf2.0-0   2.38.1+dfsg-1
ii  libglib2.0-0 2.58.3-2+deb10u2
ii  libgnome-desktop-3-173.30.2.1-2
ii  libgtk-3-0   3.24.5-1
ii  libnautilus-extension1a  3.30.5-2
ii  libpango-1.0-0   1.42.4-8~deb10u1
ii  libpangocairo-1.0-0  1.42.4-8~deb10u1
ii  libsecret-1-00.18.7-1
ii  shared-mime-info 1.10-1

Versions of packages evince recommends:
ii  dbus-user-session [default-dbus-session-bus]  1.12.16-1

Versions of packages evince suggests:
pn  gvfs 
pn  nautilus-sendto  
ii  poppler-data 0.4.9-2
ii  unrar1:5.6.6-1

-- no debconf information