I have reproduced this with Ubuntu Gutsy 7.10 AMD64, but with free() crashing. imagemagick is version 7:6.2.4.5.dfsg1-2ubuntu1.
The bug does NOT occur (and valgrind shows no problem) when the '-ping' argument is NOT present. Let me know if further information is needed. $ valgrind --trace-children=yes --leak-check=yes identify -ping /store/users/daniel/projects/photo/edge/gimp-2.4.0~rc2/themes/Default/images/preferences/folders.xcf.gz ==8446== Memcheck, a memory error detector. ==8446== Copyright (C) 2002-2007, and GNU GPL'd, by Julian Seward et al. ==8446== Using LibVEX rev 1732, a library for dynamic binary translation. ==8446== Copyright (C) 2004-2007, and GNU GPL'd, by OpenWorks LLP. ==8446== Using valgrind-3.2.3-Debian, a dynamic binary instrumentation framework. ==8446== Copyright (C) 2000-2007, and GNU GPL'd, by Julian Seward et al. ==8446== For more details, rerun with: -v ==8446== /tmp/magick-XXpEQYfK[0] XCF 48x48 DirectClass 16kb /tmp/magick-XXpEQYfK[1] XCF 19x21 19x21+4+21 DirectClass 16kb /tmp/magick-XXpEQYfK[2] XCF 24x24 24x24+2+22 DirectClass 16kb /tmp/magick-XXpEQYfK[3] XCF 37x31 37x31+2+15 DirectClass 16kb /tmp/magick-XXpEQYfK[4] XCF 24x24 24x24+2+22 DirectClass 16kb /tmp/magick-XXpEQYfK[5] XCF 22x22 22x22+4+26 DirectClass 16kb /tmp/magick-XXpEQYfK[6] XCF 24x24 24x24+4+23 DirectClass 16kb /tmp/magick-XXpEQYfK[7] XCF 22x22 22x22+2+24 DirectClass 16kb /tmp/magick-XXpEQYfK[8] XCF 22x22 22x22+2+24 DirectClass 16kb ==8446== Invalid free() / delete / delete[] ==8446== at 0x4C2182B: free (vg_replace_malloc.c:233) ==8446== by 0x4F47B1D: RelinquishMagickMemory (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F95A7D: (within /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F33359: DestroyImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F4166E: DestroyImageList (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F2F257: IdentifyImageCommand (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x400DBD: (within /usr/bin/identify) ==8446== by 0x586DB43: (below main) (in /lib/libc-2.6.1.so) ==8446== Address 0x417C000 is not stack'd, malloc'd or (recently) free'd ==8446== ==8446== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 8 from 1) ==8446== malloc/free: in use at exit: 816 bytes in 2 blocks. ==8446== malloc/free: 3,844 allocs, 3,843 frees, 5,968,497 bytes allocated. ==8446== For counts of detected errors, rerun with: -v ==8446== searching for pointers to 2 not-freed blocks. ==8446== checked 1,362,952 bytes. ==8446== ==8446== ==8446== 384 bytes in 1 blocks are definitely lost in loss record 1 of 2 ==8446== at 0x4C21C16: malloc (vg_replace_malloc.c:149) ==8446== by 0x4F95EC3: (within /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F32CE6: SetImageExtent (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x5040E3F: (within /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4EC4EAD: ReadImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F9591A: ReadStream (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4EC5BE1: PingImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F2F3C8: IdentifyImageCommand (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x400DBD: (within /usr/bin/identify) ==8446== by 0x586DB43: (below main) (in /lib/libc-2.6.1.so) ==8446== ==8446== ==8446== 432 bytes in 1 blocks are definitely lost in loss record 2 of 2 ==8446== at 0x4C21C16: malloc (vg_replace_malloc.c:149) ==8446== by 0x4EA248E: (within /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4EA2BC9: SyncCache (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F33E80: CloneImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x504119A: (within /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4EC4EAD: ReadImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F9591A: ReadStream (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4EC5BE1: PingImage (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x4F2F3C8: IdentifyImageCommand (in /usr/lib/libMagick.so.9.0.0) ==8446== by 0x400DBD: (within /usr/bin/identify) ==8446== by 0x586DB43: (below main) (in /lib/libc-2.6.1.so) ==8446== ==8446== LEAK SUMMARY: ==8446== definitely lost: 816 bytes in 2 blocks. ==8446== possibly lost: 0 bytes in 0 blocks. ==8446== still reachable: 0 bytes in 0 blocks. ==8446== suppressed: 0 bytes in 0 blocks. -- [apport] identify crashed with SIGSEGV in realloc() https://bugs.launchpad.net/bugs/86587 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
