Bug 1380887

Summary: [abrt] lxpolkit: _IO_file_doallocate(): lxpolkit killed by SIGSEGV
Product: [Fedora] Fedora Reporter: mastaiza <mastaizawfm>
Component: glibcAssignee: Carlos O'Donell <codonell>
Status: CLOSED INSUFFICIENT_DATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 24CC: arjun.is, christoph.wickert, codonell, dj, fweimer, jakub, law, mastaizawfm, mfabian, mtasaka, pfrankli, siddhesh
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
URL: https://retrace.fedoraproject.org/faf/reports/bthash/6a5a18acdfe88423eef5c7a20444e14c9f2819bd
Whiteboard: abrt_hash:f2380a921067e42591e0aa28e937486b0fc73241;
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-10-07 12:25:55 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
File: backtrace
none
File: cgroup
none
File: core_backtrace
none
File: dso_list
none
File: environ
none
File: limits
none
File: maps
none
File: mountinfo
none
File: namespaces
none
File: open_fds
none
File: proc_pid_status
none
File: var_log_messages
none
File: exploitable none

Description mastaiza 2016-10-01 04:24:08 UTC 
Version-Release number of selected component:
lxpolkit-0.5.2-11.D20160817git699c1695c2.fc24

Additional info:
reporter:       libreport-2.7.2
backtrace_rating: 4
cmdline:        lxpolkit
crash_function: _IO_file_doallocate
executable:     /usr/bin/lxpolkit
global_pid:     2169
kernel:         4.7.4-200.fc24.x86_64
pkg_fingerprint: 73BD E983 81B4 6521
pkg_vendor:     Fedora Project
runlevel:       N 5
type:           CCpp
uid:            1000

Truncated backtrace:
Thread no. 1 (10 frames)
 #3 _IO_file_doallocate at filedoalloc.c:127
 #4 _IO_doallocbuf at genops.c:398
 #5 _IO_new_file_underflow at fileops.c:556
 #6 _IO_default_uflow at genops.c:413
 #7 _IO_getline_info at iogetline.c:60
 #8 _IO_getline at iogetline.c:34
 #9 _IO_fgets at iofgets.c:53
 #10 fgets at /usr/include/bits/stdio2.h:263
 #11 _XcursorThemeInherits at library.c:173
 #12 XcursorScanTheme at library.c:252
Comment 1 mastaiza 2016-10-01 04:24:17 UTC 
Created attachment 1206404 [details]
File: backtrace
Comment 2 mastaiza 2016-10-01 04:24:18 UTC 
Created attachment 1206405 [details]
File: cgroup
Comment 3 mastaiza 2016-10-01 04:24:21 UTC 
Created attachment 1206406 [details]
File: core_backtrace
Comment 4 mastaiza 2016-10-01 04:24:23 UTC 
Created attachment 1206407 [details]
File: dso_list
Comment 5 mastaiza 2016-10-01 04:24:24 UTC 
Created attachment 1206408 [details]
File: environ
Comment 6 mastaiza 2016-10-01 04:24:26 UTC 
Created attachment 1206409 [details]
File: limits
Comment 7 mastaiza 2016-10-01 04:24:28 UTC 
Created attachment 1206410 [details]
File: maps
Comment 8 mastaiza 2016-10-01 04:24:30 UTC 
Created attachment 1206411 [details]
File: mountinfo
Comment 9 mastaiza 2016-10-01 04:24:31 UTC 
Created attachment 1206412 [details]
File: namespaces
Comment 10 mastaiza 2016-10-01 04:24:33 UTC 
Created attachment 1206413 [details]
File: open_fds
Comment 11 mastaiza 2016-10-01 04:24:34 UTC 
Created attachment 1206414 [details]
File: proc_pid_status
Comment 12 mastaiza 2016-10-01 04:24:36 UTC 
Created attachment 1206415 [details]
File: var_log_messages
Comment 13 mastaiza 2016-10-01 04:24:38 UTC 
Created attachment 1206416 [details]
File: exploitable
Comment 14 Mamoru TASAKA 2016-10-07 01:13:04 UTC 
Once reassigning to glibc...
Comment 15 Mamoru TASAKA 2016-10-07 01:13:54 UTC 
*** Bug 1380891 has been marked as a duplicate of this bug. ***
Comment 16 Florian Weimer 2016-10-07 04:38:19 UTC 
Can you reproduce this?  Please run lxpolkit under valgrind in this case.  This just looks like heap corruption due to an application bug and is not something glibc can do much about.
Comment 17 mastaiza 2016-10-07 12:22:15 UTC 
I can't reproduce the error