Bug 691561

Summary:

[abrt] cairo-clock-0.3.4-5.fc14: rsvg_handle_get_dimensions: Process /usr/bin/cairo-clock was killed by signal 11 (SIGSEGV)

Product:

[Fedora] Fedora

Reporter:

Florian Fischer <findingharrylime>

Component:

cairo-clock

Assignee:

Benoît Marcelin <sereinity>

Status:

CLOSED UPSTREAM

QA Contact:

Fedora Extras Quality Assurance <extras-qa>

Severity:

unspecified

Docs Contact:

Priority:

unspecified

Version:

CC:

hvtaifwkbgefbaei, sereinity

Target Milestone:

---

Target Release:

---

Hardware:

x86_64

OS:

Unspecified

Whiteboard:

abrt_hash:6bb6ac4f3358dc1bfc52105caa2b8a85490772ff

Fixed In Version:

Doc Type:

Bug Fix

Doc Text:

Story Points:

---

Clone Of:

Environment:

Last Closed:

2012-07-10 12:34:29 UTC

Type:

---

Regression:

---

Mount Type:

---

Documentation:

---

CRM:

Verified Versions:

Category:

---

oVirt Team:

---

RHEL 7.3 requirements from Atomic Host:

Cloudforms Team:

---

Target Upstream Version:

Attachments:

Description	Flags
File: backtrace	none

Description Florian Fischer 2011-03-28 20:22:15 UTC

abrt version: 1.1.17
architecture: x86_64
Attached file: backtrace, 10679 bytes
cmdline: cairo-clock
component: cairo-clock
Attached file: coredump, 2584576 bytes
crash_function: rsvg_handle_get_dimensions
executable: /usr/bin/cairo-clock
kernel: 2.6.35.11-83.fc14.x86_64
package: cairo-clock-0.3.4-5.fc14
rating: 4
reason: Process /usr/bin/cairo-clock was killed by signal 11 (SIGSEGV)
release: Fedora release 14 (Laughlin)
time: 1301343163
uid: 500

How to reproduce
-----
1. just crashed immediatly after start, no display or anything
2.
3.

Comment 1 Florian Fischer 2011-03-28 20:22:18 UTC

Created attachment 488249 [details]
File: backtrace

Comment 2 Sami Farin 2012-01-26 10:58:37 UTC

to reproduce:
touch ~/.cairo-clock/themes/crashtestdummy
(re)start cairo-clock, select properties, theme->crashtestdummy

librsvg2 function rsvg_handle_get_dimensions does not check for NULL,
but neither does change_theme.

Program received signal SIGSEGV, Segmentation fault.
0x00007ffff7b242d7 in rsvg_handle_get_dimensions (handle=0x0, dimension_data=0x609c00) at rsvg-base.c:1240
1240	    if (!handle->priv->in_loop) {
(gdb) bt
#0  0x00007ffff7b242d7 in rsvg_handle_get_dimensions (handle=0x0, dimension_data=0x609c00) at rsvg-base.c:1240
#1  0x000000000040634e in change_theme (pThemeList=0x60eea0 = {...}, uiThemeIndex=32, pWindow=0x6695d0) at cairo-clock.c:1071
#2  0x0000000000406438 in on_theme_changed (pComboBox=0x6a5170, data=0x6695d0) at cairo-clock.c:1099
#3  0x0000003011e0ed8c in g_closure_invoke () from /lib64/libgobject-2.0.so.0
#4  0x0000003011e1f15d in signal_emit_unlocked_R () from /lib64/libgobject-2.0.so.0
#5  0x0000003011e264fc in g_signal_emit_valist () from /lib64/libgobject-2.0.so.0
#6  0x0000003011e266b2 in g_signal_emit () from /lib64/libgobject-2.0.so.0
#7  0x00000030004b2b00 in gtk_combo_box_set_active_internal (combo_box=0x6a5170, path=<optimized out>) at gtkcombobox.c:5155
#8  0x00000030004b9519 in IA__gtk_combo_box_set_active_iter (combo_box=0x6a5170, iter=0x7fffffffbee0) at gtkcombobox.c:5211
#9  0x00000030004b9660 in gtk_combo_box_menu_item_activate (item=0x877240, user_data=<optimized out>) at gtkcombobox.c:3356
#10 0x0000003011e0ed8c in g_closure_invoke () from /lib64/libgobject-2.0.so.0
#11 0x0000003011e1f15d in signal_emit_unlocked_R () from /lib64/libgobject-2.0.so.0
#12 0x0000003011e264fc in g_signal_emit_valist () from /lib64/libgobject-2.0.so.0
#13 0x0000003011e266b2 in g_signal_emit () from /lib64/libgobject-2.0.so.0
#14 0x0000003000681d1e in IA__gtk_widget_activate (widget=0x877240) at gtkwidget.c:5030
#15 0x00000030005654bd in IA__gtk_menu_shell_activate_item (menu_shell=0x684400, menu_item=0x877240, force_deactivate=<optimized out>) at gtkmenushell.c:1283
#16 0x00000030005658a2 in gtk_menu_shell_button_release (widget=0x684400, event=<optimized out>) at gtkmenushell.c:710
#17 0x000000300054e253 in _gtk_marshal_BOOLEAN__BOXED (closure=0x65c0d0, return_value=0x7fffffffc540, n_param_values=<optimized out>, param_values=0x8b1b00, 
    invocation_hint=<optimized out>, marshal_data=<optimized out>) at gtkmarshalers.c:86
#18 0x0000003011e0ed8c in g_closure_invoke () from /lib64/libgobject-2.0.so.0
#19 0x0000003011e1eec5 in signal_emit_unlocked_R () from /lib64/libgobject-2.0.so.0
#20 0x0000003011e263d5 in g_signal_emit_valist () from /lib64/libgobject-2.0.so.0
#21 0x0000003011e266b2 in g_signal_emit () from /lib64/libgobject-2.0.so.0
#22 0x0000003000682ce1 in gtk_widget_event_internal (widget=0x684400, event=0x947190) at gtkwidget.c:4999
#23 0x000000300054bd73 in IA__gtk_propagate_event (widget=0x684400, event=0x947190) at gtkmain.c:2489
#24 0x000000300054c0db in IA__gtk_main_do_event (event=0x947190) at gtkmain.c:1684
#25 0x000000300f061f8c in gdk_event_dispatch (source=<optimized out>, callback=<optimized out>, user_data=<optimized out>) at gdkevents-x11.c:2377
#26 0x0000003011246c4c in g_main_context_dispatch () from /lib64/libglib-2.0.so.0
#27 0x0000003011246fa1 in g_main_context_iterate.isra.21 () from /lib64/libglib-2.0.so.0
#28 0x000000301124743a in g_main_loop_run () from /lib64/libglib-2.0.so.0
#29 0x000000300054b107 in IA__gtk_main () at gtkmain.c:1256
#30 0x0000000000407e88 in main (argc=1, argv=0x7fffffffcfa8) at cairo-clock.c:1746