Apparently, this problem is happening again:
https://bugs.launchpad.net/ubuntu/+source/gwenview/+bug/1978307
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Patched exiv2 packages for Ubuntu have just been released.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes Gwenview
Fixed in gwenview version 21.12.1.
---
gwenview (4:21.12.1-0ubuntu1) jammy; urgency=medium
* New upstream release (21.12.1)
-- Rik Mills Thu, 06 Jan 2022 10:21:02 +
** Changed in: gwenview (Ubuntu)
Importance: Undecided => Medium
** Changed in: gwenview (Ubuntu)
Status:
This bug was fixed in the package exiv2 - 0.27.2-8ubuntu2.7
---
exiv2 (0.27.2-8ubuntu2.7) focal-security; urgency=medium
* SECURITY REGRESSION: fix out of range access
* Bugfix: Fix regression introduced when fixing CVE-2021-37620 (LP:
#1941752)
-
This bug was fixed in the package exiv2 - 0.27.3-3ubuntu4.1
---
exiv2 (0.27.3-3ubuntu4.1) impish-security; urgency=medium
* SECURITY REGRESSION: out of range access that may cause a crash
- debian/patches/CVE-2021-37620-4.patch: fix out of range access that may
cause a
This bug was fixed in the package exiv2 - 0.27.3-3ubuntu1.6
---
exiv2 (0.27.3-3ubuntu1.6) hirsute-security; urgency=medium
* SECURITY REGRESSION: out of range access that may cause a crash
- debian/patches/CVE-2021-37620-4.patch: fix out of range access that may
cause a
Sure thing, working on it, till Tuesday it will be done as I need to
test it and so for all releases.
Thanks
** Changed in: exiv2 (Ubuntu)
Assignee: Ubuntu Security Team (ubuntu-security) => Leonidas S. Barbosa
(leosilvab)
--
You received this bug notification because you are a member of
@leosilva - as you did the original update for exiv2 could you please
sponsor the attached debdiff? Thanks.
** Changed in: exiv2 (Ubuntu)
Assignee: (unassigned) => Ubuntu Security Team (ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Touch seeded
** Changed in: exiv2 (Ubuntu)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
The attachment "1-0.27.2-8ubuntu2.7.debdiff" seems to be a debdiff. The
ubuntu-sponsors team has been subscribed to the bug report so that they
can review and hopefully sponsor the debdiff. If the attachment isn't a
patch, please remove the "patch" flag from the attachment, remove the
"patch"
This is a debdiff applicable for focal-security. This backports an
upstream fix for the regression introduced when fixing CVE-2021-37620. I
build it locally in pbuilder and it fixes the crash in gwenview as
expected.
** Patch added: "1-0.27.2-8ubuntu2.7.debdiff"
*** Bug 447585 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
*** Bug 447039 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
*** Bug 444851 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
*** Bug 445763 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
** Changed in: gwenview
Status: Unknown => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
(In reply to Gordon Lack from comment #26)
> Do we need a prod on the libexiv2 package as well to indicate that it needs
> an update to fix the cause of the crash? (The fix for gwenview to handle
> such crashes better is welcome, but not sufficient).
>
> I can't see any bug report with libexiv2
This is now fixed both upstream in libexiv2 0.27.5 with
https://github.com/Exiv2/exiv2/pull/1918/commits/8a1e949bff482f74599f60b8ab518442036b1834
and in Gwenview for version 21.12.1 with
https://invent.kde.org/graphics/gwenview/-/commit/91fcbe9c63c17bc20dbb3dd90e0451997f1c78a6
by Lukáš Karas.
The
(In reply to Lukáš Karas from comment #24)
> Here is my proposed fix in Gwenview:
> https://invent.kde.org/graphics/gwenview/-/merge_requests/125
Do we need a prod on the libexiv2 package as well to indicate that it
needs an update to fix the cause of the crash? (The fix for gwenview to
handle
Created attachment 144631
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
- What I was doing when the application crashed: I was trying to open a
.jpg. All .jpg's in that folder crash; I can open jpg's from different
folders. If I copy the jpg's that crash to a diffent
Here is my proposed fix in Gwenview:
https://invent.kde.org/graphics/gwenview/-/merge_requests/125
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression:
Created attachment 144593
sample image that is causing the crash
Here is jpg file that is causing the the crash. It is clear that libexiv
is throwing exception when it tries to parse date. This exception is not
catched in gwenview.
$ exiv2 -P X print test.jpg
Xmp.tiff.Software
(In reply to Gordon Lack from comment #21)
Seems to be related to how old the jpegs are.
2016 and earlier it crashes.
2017 and late its OK.
Roughly.
If I run gwenview on the command line for a failing one this is what I
see reported:
[gmllaptop]: gwenview DSCN1657.JPG
Created attachment 144559
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
- What I was doing when the application crashed:
Browsing through images with Dolphin. Select to open one in Gwenview.
Crashes every time.
-- Backtrace (Reduced):
#4
Created attachment 144195
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
- What I was doing when the application crashed:
1. used darktable to create a jpg from nef
2. opened jpg with showfoto (success, including metadata)
3. attempted to open jpg with gwenview,
Created attachment 144108
New crash information added by DrKonqi
gwenview (21.11.90) using Qt 5.15.2
- What I was doing when the application crashed:
Attempting to open a family photo I had just exported from Darktable
-- Backtrace (Reduced):
#4 __pthread_kill_implementation (no_tid=0,
Fixed upstream on Sept, 22:
https://github.com/Exiv2/exiv2/commit/8a1e949bff482f74599f60b8ab518442036b1834#diff-b28a1f0018497d794db6df47daa5413371c3e933681f9c126d447f90d30084d8
How long will we have to wait to see this fixed in the Ubuntu
repositories? This is a real showstopper bug.
--
You
(In reply to Jan Rathmann from comment #15)
> For me this seems to be fixed under Kubuntu 21.10 with Gwenview 21.08.2 from
> kubuntu-backports-ppa.
Please disregard this comment - I totally forgot that I had installed a
patched version of exiv2 (with the change described in Comment 4) to
Created attachment 143444
New crash information added by DrKonqi
gwenview (21.08.2) using Qt 5.15.2
- What I was doing when the application crashed:
just viewing pics in a folder with gwenview when on one of them gwenview
systematically crashes
- Unusual behavior I noticed:
crash of gwenview
(In reply to p92 from comment #16)
> Created attachment 143444 [details]
> New crash information added by DrKonqi
>
> gwenview (21.08.2) using Qt 5.15.2
>
> - What I was doing when the application crashed:
> just viewing pics in a folder with gwenview when on one of them gwenview
>
For me this seems to be fixed under Kubuntu 21.10 with Gwenview 21.08.2
from kubuntu-backports-ppa.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Created attachment 143424
New crash information added by DrKonqi
gwenview (20.12.3) using Qt 5.15.2
- What I was doing when the application crashed:
This is a little bizarre. I encountered this while rapidly scrolling
through thumbnails in a directory. One particular image reliably crashes
Same here.
Ubuntu 21.10
Gwenview 21.08.1
Application: Gwenview (gwenview), signal: Aborted
[KCrash Handler]
#4 __pthread_kill_implementation (no_tid=0, signo=6, threadid=140017931865152)
at pthread_kill.c:44
#5 __pthread_kill_internal (signo=6, threadid=140017931865152) at
pthread_kill.c:80
Downgrading to libexiv2-27 0.27.2-8ubuntu2 solved the problem.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
This is not just darktable.
I have files that work fine, while some other always crash. The only
constant is that all files were created on a Nikon camera.
Files that crash include some, but not all: Raw NEF; JPEGs created by
processing NEF files on Windows using Nikon software; JPEGs created
Mee too! Can't no longer view my photos saved by darktable...
Gwenview 21.08.2
Kubuntu 21.10
KDE Frameworks Version 5.87.0
Qt 5.15.2
libexiv2-27 0.27.3-3ubuntu4
$ gwenview dsc_0013_jf.jpg
org.kde.kdegraphics.gwenview.lib: Unresolved mime type "image/x-mng"
org.kde.kdegraphics.gwenview.lib:
Created attachment 143150
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
- What I was doing when the application crashed:
I clicked on a PNG file on dolphin
gwenview opened the image
I cropped this image
closed gwenview
clicked on another image on the same dir
Created attachment 142865
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
Gwenview crashed when trying to open a jpg. The images in question were
saved by Darktable from Canon Raw images, and ranged in size from 8.2 to
16.4 MiB.
-- Backtrace (Reduced):
#4
*** Bug 443651 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
Created attachment 142281
New crash information added by DrKonqi
gwenview (21.08.1) using Qt 5.15.2
- What I was doing when the application crashed: Opening JPG exported by
darktable. This happens reliably since a few weeks ago with every images
(either new or exported before the crashes
*** Bug 443069 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes
Created attachment 141971
New crash information added by DrKonqi
gwenview (20.12.3) using Qt 5.15.2
- What I was doing when the application crashed:
This seems to happen reliably on jpg's produced by darktable.
Darktable-rendered pics all cause the crash. These were all NEF (Nikon)
raw
Created attachment 141931
New crash information added by DrKonqi
gwenview (20.12.3) using Qt 5.15.2
- What I was doing when the application crashed:
Every time when I open a directory containing a picture or only a picture
gwenview will crash.
-- Backtrace (Reduced):
#4 __GI_raise
Confirmed on Ubuntu 18.04.6 LTS i686.
** Tags added: i686
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2 0.27.3-3ubuntu1.5 makes Gwenview
similar problem with Gthumb 3.11 and exiv2 0.27.3-3ubuntu1.5 on Ubuntu
21.04 and jpg generated with darktable.
gthumb crash:
terminate called after throwing an instance of 'std::out_of_range'
what(): basic_string:At __n (which is 19) >= this->size() (which is 19)
--
You received this bug
Launchpad has imported 5 comments from the remote bug at
https://bugs.kde.org/show_bug.cgi?id=441121.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: gwenview (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: exiv2 (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
gwenview crashes every time when I try to open any image. Not darktable
related. It started after some regular apt update done a few weeks ago.
I had 18.04 LTS, so decided to upgrade to latest LTS (Focal). And to my
surprise the same error still exists:
terminate called after throwing an instance
The following change in CVE-2021-37620-3.patch is responsible:
--- exiv2-0.27.3.orig/src/tags_int.cpp
+++ exiv2-0.27.3/src/tags_int.cpp
@@ -2865,7 +2865,7 @@ namespace Exiv2 {
}
std::string stringValue = value.toString();
-if (stringValue[19] == 'Z') {
+if
Relevant terminal output from crash:
terminate called after throwing an instance of 'std::out_of_range'
what(): basic_string::at: __n (which is 19) >= this->size() (which is 19)
KCrash: crashing... crashRecursionCounter = 2
KCrash: Application Name = gwenview path = /usr/bin pid = 108229
--
CVE-2021-37620-3.patch is responsible.
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-37620
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
** Also affects: gwenview (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to exiv2 in Ubuntu.
https://bugs.launchpad.net/bugs/1941752
Title:
Regression: exiv2
Public bug reported:
Since the recent security update of exiv2, Gwenview crashes when trying
to open image files that got exported by darktable.
Steps to reproduce:
* Make a test installation of Kubuntu 21.04 in VirtualBox
* Install all updates
* Install darktable
* Copy one of the images in
54 matches
Mail list logo