Bug 796500

Summary: evince crashes with "stack smashing detected" when opening certain pdf files
Product: [Fedora] Fedora Reporter: Peter Backes <rtc>
Component: openjpegAssignee: Jaromír Cápík <jcapik>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 16CC: adam, bibo, cpanceac, handyj, hp4everything, jarodpt81, javlopez22, jcapik, jhhaynes, kaf.laarous, kirushan22, lijunshuai1845, mads, magdorn, mikolaj.bugzilla, miltondp, mkasik, neoh.ys, oliver, ousia, ovasik, quentin, rdieter, spam42, stedchris, tgl, tom.georgoulias, zulu
Target Milestone: ---   
Target Release: ---   
Hardware: i686   
OS: Unspecified   
Whiteboard:
Fixed In Version: openjpeg-1.4-12.fc17 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-03-10 00:20:08 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
patch backporting some poppler-0.18.4 fixes
none
File: backtrace
none
File: backtrace none

Description Peter Backes 2012-02-23 02:14:47 UTC 
Description of problem:
opening some large pdfs causes evince to crash

Version-Release number of selected component (if applicable):
poppler-0.18.0-2.fc16.i686
evince-3.2.1-2.fc16.i686

How reproducible:
always

Steps to Reproduce:
1. wget http://ia700304.us.archive.org/7/items/moneytradeconsid00lawj/moneytradeconsid00lawj_bw.pdf
2. evince moneytradeconsid00lawj_bw.pdf
  
Actual results:
*** stack smashing detected ***: evince terminated
======= Backtrace: =========
/lib/libc.so.6(__fortify_fail+0x45)[0x49676fd5]
/lib/libc.so.6[0x49676f8a]
/usr/lib/libpoppler.so.18(+0x14eca4)[0xafb1fca4]
/usr/lib/libpoppler.so.18(+0x689d5)[0xafa399d5]
/usr/lib/libpoppler.so.18(_ZN9JPXStream4initEv+0x16c)[0xafa39b4c]
/usr/lib/libpoppler.so.18(_ZN9JPXStream14getImageParamsEPiP20StreamColorSpaceMode+0x60)[0xafa39d50]
/usr/lib/libpoppler.so.18(_ZN3Gfx7doImageEP6ObjectP6Streamb+0xd5)[0xafa74115]
/usr/lib/libpoppler.so.18(_ZN3Gfx9opXObjectEP6Objecti+0x39e)[0xafa75bae]
/usr/lib/libpoppler.so.18(_ZN3Gfx6execOpEP6ObjectS1_i+0x127)[0xafa6a1b7]
/usr/lib/libpoppler.so.18(_ZN3Gfx2goEb+0x19c)[0xafa7123c]
/usr/lib/libpoppler.so.18(_ZN3Gfx7displayEP6Objectb+0xa5)[0xafa71765]
/usr/lib/libpoppler.so.18(_ZN4Page7displayEP3Gfx+0x77)[0xafab29a7]
/usr/lib/libpoppler-glib.so.8(+0x176d8)[0xafbbc6d8]
/usr/lib/libpoppler-glib.so.8(poppler_page_get_image_mapping+0x92)[0xafbbe992]
/usr/lib/evince/3/backends/libpdfdocument.so(+0x9f08)[0xb620af08]
/usr/lib/libevdocument3.so.3(ev_document_images_get_image_mapping+0x3c)[0x4cce382c]
/usr/lib/libevview3.so.3[0x4cd19804]
/usr/lib/libevview3.so.3(ev_job_run+0x10)[0x4cd188e0]
/usr/lib/libevview3.so.3[0x4cd1a813]
/lib/libglib-2.0.so.0[0x4983af45]
/lib/libpthread.so.0[0x4974dcd3]
/lib/libc.so.6(clone+0x5e)[0x4965e83e]
======= Memory map: ========
08048000-080a9000 r-xp 00000000 08:05 93247      /usr/bin/evince
080a9000-080aa000 r--p 00060000 08:05 93247      /usr/bin/evince
080aa000-080b3000 rw-p 00061000 08:05 93247      /usr/bin/evince
09457000-09834000 rw-p 00000000 00:00 0          [heap]
440d1000-440d5000 r-xp 00000000 08:01 32228      /lib/libuuid.so.1.3.0
440d5000-440d6000 r--p 00003000 08:01 32228      /lib/libuuid.so.1.3.0
440d6000-440d7000 rw-p 00004000 08:01 32228      /lib/libuuid.so.1.3.0
440d9000-440e0000 r-xp 00000000 08:05 109992     /usr/lib/libSM.so.6.0.1
440e0000-440e1000 rw-p 00006000 08:05 109992     /usr/lib/libSM.so.6.0.1
46b9f000-46bbd000 r-xp 00000000 08:05 107336     /usr/lib/libopenjpeg.so.3.1.4.0
46bbd000-46bbe000 r--p 0001e000 08:05 107336     /usr/lib/libopenjpeg.so.3.1.4.0
46bbe000-46bbf000 rw-p 0001f000 08:05 107336     /usr/lib/libopenjpeg.so.3.1.4.0
49547000-49568000 r-xp 00000000 08:01 29426      /lib/ld-2.14.90.so
49568000-49569000 r--p 00020000 08:01 29426      /lib/ld-2.14.90.so
49569000-4956a000 rw-p 00021000 08:01 29426      /lib/ld-2.14.90.so
4956c000-49712000 r-xp 00000000 08:01 29483      /lib/libc-2.14.90.so
49712000-49714000 r--p 001a6000 08:01 29483      /lib/libc-2.14.90.so
49714000-49715000 rw-p 001a8000 08:01 29483      /lib/libc-2.14.90.so
49715000-49718000 rw-p 00000000 00:00 0 
4971a000-49743000 r-xp 00000000 08:01 30686      /lib/libm-2.14.90.so
49743000-49744000 r--p 00028000 08:01 30686      /lib/libm-2.14.90.so
49744000-49745000 rw-p 00029000 08:01 30686      /lib/libm-2.14.90.so
49747000-4975e000 r-xp 00000000 08:01 30300      /lib/libpthread-2.14.90.so
4975e000-4975f000 r--p 00016000 08:01 30300      /lib/libpthread-2.14.90.so
4975f000-49760000 rw-p 00017000 08:01 30300      /lib/libpthread-2.14.90.so
49760000-49762000 rw-p 00000000 00:00 0 
49764000-49767000 r-xp 00000000 08:01 30414      /lib/libdl-2.14.90.so
49767000-49768000 r--p 00002000 08:01 30414      /lib/libdl-2.14.90.so
49768000-49769000 rw-p 00003000 08:01 30414      /lib/libdl-2.14.90.so
4976b000-49773000 r-xp 00000000 08:01 30317      /lib/librt-2.14.90.so
49773000-49774000 r--p 00007000 08:01 30317      /lib/librt-2.14.90.so
49774000-49775000 rw-p 00008000 08:01 30317      /lib/librt-2.14.90.so
49777000-49793000 r-xp 00000000 08:01 30592      /lib/libgcc_s-4.6.2-20111027.so.1
49793000-49794000 rw-p 0001b000 08:01 30592      /lib/libgcc_s-4.6.2-20111027.so.1
49796000-497ab000 r-xp 00000000 08:01 30676      /lib/libz.so.1.2.5
497ab000-497ac000 rw-p 00014000 08:01 30676      /lib/libz.so.1.2.5
497d0000-498f0000 r-xp 00000000 08:01 30491      /lib/libglib-2.0.so.0.3000.2
498f0000-498f1000 r--p 0011f000 08:01 30491      /lib/libglib-2.0.so.0.3000.2
498f1000-498f2000 rw-p 00120000 08:01 30491      /lib/libglib-2.0.so.0.3000.2
498f4000-4990b000 r-xp 00000000 08:01 30724      /lib/libresolv-2.14.90.so
4990b000-4990c000 r--p 00016000 08:01 30724      /lib/libresolv-2.14.90.so
4990c000-4990d000 rw-p 00017000 08:01 30724      /lib/libresolv-2.14.90.so
4990d000-4990f000 rw-p 00000000 00:00 0 
49911000-49915000 r-xp 00000000 08:01 30554      /lib/libgthread-2.0.so.0.3000.2
49915000-49916000 r--p 00003000 08:01 30554      /lib/libgthread-2.0.so.0.3000.2
49916000-49917000 rw-p 00004000 08:01 30554      /lib/libgthread-2.0.so.0.3000.2
49919000-49965000 r-xp 00000000 08:01 30324      /lib/libgobject-2.0.so.0.3000.2
49965000-49966000 r--p 0004c000 08:01 30324      /lib/libgobject-2.0.so.0.3000.2
49966000-49967000 rw-p 0004d000 08:01 30324      /lib/libgobject-2.0.so.0.3000.2
49969000-4996e000 r-xp 00000000 08:05 107387     /usr/lib/libffi.so.5.0.10
4996e000-4996f000 r--p 00005000 08:05 107387     /usr/lib/libffi.so.5.0.10
4996f000-49970000 rw-p 00006000 08:05 107387     /usr/lib/libffi.so.5.0.10
49972000-49975000 r-xp 00000000 08:01 30671      /lib/libgmodule-2.0.so.0.3000.2
49975000-49976000 r--p 00002000 08:01 30671      /lib/libgmodule-2.0.so.0.3000.2
49976000-49977000 rw-p 00003000 08:01 30671      /lib/libgmodule-2.0.so.0.3000.2
49979000-49aae000 r-xp 00000000 08:05 107676     /usr/lib/libX11.so.6.3.0
49aae000-49ab2000 rw-p 00134000 08:05 107676     /usr/lib/libX11.so.6.3.0
49ab4000-49ab6000 r-xp 00000000 08:05 109095     /usr/lib/libXau.so.6.0.0
49ab6000-49ab7000 rw-p 00001000 08:05 109095     /usr/lib/libXau.so.6.0.0
49ab9000-49ad6000 r-xp 00000000 08:05 107673     /usr/lib/libxcb.so.1.1.0
49ad6000-49ad7000 rw-p 0001d000 08:05 107673     /usr/lib/libxcb.so.1.1.0
49c21000-49c32000 r-xp 00000000 08:05 107681     /usr/lib/libXext.so.6.4.0
49c32000-49c33000 r--p 00010000 08:05 107681     /usr/lib/libXext.so.6.4.0
49c33000-49c34000 rw-p 00011000 08:05 107681     /usr/lib/libXext.so.6.4.0
49c36000-49c5c000 r-xp 00000000 08:01 30840      /lib/libexpat.so.1.5.2
49c5c000-49c5e000 rw-p 00026000 08:01 30840      /lib/libexpat.so.1.5.2
49c8c000-49cd4000 r-xp 00000000 08:01 30749      /lib/libdbus-1.so.3.5.6
49cd4000-49cd5000 r--p 00047000 08:01 30749      /lib/libdbus-1.so.3.5.6
49cd5000-49cd6000 rw-p 00048000 08:01 30749      /lib/libdbus-1.so.3.5.6
49cd8000-49d71000 r-xp 00000000 08:05 107849     /usr/lib/freetype-freeworld/libfreetype.so.6.7.1
49d71000-49d75000 r--p 00098000 08:05 107849     /usr/lib/freetype-freeworld/libfreetype.so.6.7.1
49d75000-49d76000 rw-p 0009c000 08:05 107849     /usr/lib/freetype-freeworld/libfreetype.so.6.7.1
49d78000-49e5a000 r-xp 00000000 08:05 106739     /usr/lib/libstdc++.so.6.0.16
49e5a000-49e5e000 r--p 000e2000 08:05 106739     /usr/lib/libstdc++.so.6.0.16
49e5e000-49e5f000 rw-p 000e6000 08:05 106739     /usr/lib/libstdc++.so.6.0.16
49e5f000-49e66000 rw-p 00000000 00:00 0 
49e68000-49e9b000 r-xp 00000000 08:05 107855     /usr/lib/libfontconfig.so.1.4.4
49e9b000-49e9c000 rw-p 00033000 08:05 107855     /usr/lib/libfontconfig.so.1.4.4
49e9e000-49eac000 r-xp 00000000 08:05 108058     /usr/lib/libXi.so.6.1.0
49eac000-49ead000 r--p 0000d000 08:05 108058     /usr/lib/libXi.so.6.1.0
49ead000-49eae000 rw-p 0000e000 08:05 108058     /usr/lib/libXi.so.6.1.0
49eb0000-49eb9000 r-xp 00000000 08:05 107905     /usr/lib/libXrender.so.1.3.0
49eb9000-49eba000 rw-p 00008000 08:05 107905     /usr/lib/libXrender.so.1.3.0
49ebc000-49ec0000 r-xp 00000000 08:05 107935     /usr/lib/libXfixes.so.3.1.0
49ec0000-49ec1000 rw-p 00003000 08:05 107935     /usr/lib/libXfixes.so.3.1.0
49ec3000-49ec5000 r-xp 00000000 08:05 108043     /usr/lib/libXinerama.so.1.0.0
49ec5000-49ec6000 rw-p 00001000 08:05 108043     /usr/lib/libXinerama.so.1.0.0
49ec8000-49ed1000 r-xp 00000000 08:05 107936     /usr/lib/libXcursor.so.1.0.2
49ed1000-49ed2000 rw-p 00008000 08:05 107936     /usr/lib/libXcursor.so.1.0.2
49ed4000-49edb000 r-xp 00000000 08:05 108065     /usr/lib/libXrandr.so.2.2.0
49edb000-49edc000 rw-p 00006000 08:05 108065     /usr/lib/libXrandr.so.2.2.0
49f04000-49f82000 r-xp 00000000 08:05 107610     /usr/lib/libpixman-1.so.0.22.2
49f82000-49f86000 r--p 0007d000 08:05 107610     /usr/lib/libpixman-1.so.0.22.2
49f86000-49f87000 rw-p 00081000 08:05 107610     /usr/lib/libpixman-1.so.0.22.2
49f89000-4a0d1000 r-xp 00000000 08:05 107869     /usr/lib/libxml2.so.2.7.8
4a0d1000-4a0d6000 rw-p 00147000 08:05 107869     /usr/lib/libxml2.so.2.7.8
4a0d6000-4a0d7000 rw-p 00000000 00:00 0 
4a193000-4a195000 r-xp 00000000 08:05 108068     /usr/lib/libXcomposite.so.1.0.0
4a195000-4a196000 rw-p 00001000 08:05 108068     /usr/lib/libXcomposite.so.1.0.0
4a198000-4a1b6000 r-xp 00000000 08:05 108094     /usr/lib/libatk-1.0.so.0.20209.1
4a1b6000-4a1b8000 r--p 0001d000 08:05 108094     /usr/lib/libatk-1.0.so.0.20209.1
4a1b8000-4a1b9000 rw-p 0001f000 08:05 108094     /usr/lib/libatk-1.0.so.0.20209.1
4a1d2000-4a1d4000 r-xp 00000000 08:05 108069     /usr/lib/libXdamage.so.1.1.0
4a1d4000-4a1d5000 rw-p 00001000 08:05 108069     /usr/lib/libXdamage.so.1.1.0
4a1d7000-4a203000 r-xp 00000000 08:05 108034     /usr/lib/libpangoft2-1.0.so.0.2904.0
4a203000-4a204000 r--p 0002b000 08:05 108034     /usr/lib/libpangoft2-1.0.so.0.2904.0
4a204000-4a205000 rw-p 0002c000 08:05 108034     /usr/lib/libpangoft2-1.0.so.0.2904.0
4a22e000-4a276000 r-xp 00000000 08:05 108024     /usr/lib/libpango-1.0.so.0.2904.0
4a276000-4a277000 ---p 00048000 08:05 108024     /usr/lib/libpango-1.0.so.0.2904.0
4a277000-4a278000 r--p 00048000 08:05 108024     /usr/lib/libpango-1.0.so.0.2904.0
4a278000-4a279000 rw-p 00049000 08:05 108024     /usr/lib/libpango-1.0.so.0.2904.0
4a285000-4a29b000 r-xp 00000000 08:05 107703     /usr/lib/libICE.so.6.3.0
4a29b000-4a29d000 rw-p 00015000 08:05 107703     /usr/lib/libICE.so.6.3.0
4a29d000-4a29e000 rw-p 00000000 00:00 0 
4a325000-4a328000 r-xp 00000000 08:01 30811      /lib/libgpg-error.so.0.8.0
4a328000-4a329000 r--p 00002000 08:01 30811      /lib/libgpg-error.so.0.8.0
4a329000-4a32a000 rw-p 00003000 08:01 30811      /lib/libgpg-error.so.0.8.0
4a32c000-4a32e000 r-xp 00000000 08:01 30585      /lib/libutil-2.14.90.so
4a32e000-4a32f000 r--p 00001000 08:01 30585      /lib/libutil-2.14.90.so
4a32f000-4a330000 rw-p 00002000 08:01 30585      /lib/libutil-2.14.90.so
4a33d000-4a373000 r-xp 00000000 08:05 107725     /usr/lib/liblcms.so.1.0.19
4a373000-4a375000 rw-p 00035000 08:05 107725     /usr/lib/liblcms.so.1.0.19
4a375000-4a377000 rw-p 00000000 00:00 0 
4a51d000-4a59b000 r-xp 00000000 08:01 30814      /lib/libgcrypt.so.11.7.0
4a59b000-4a59c000 r--p 0007d000 08:01 30814      /lib/libgcrypt.so.11.7.0
4a59c000-4a59e000 rw-p 0007e000 08:01 30814      /lib/libgcrypt.so.11.7.0
4ac24000-4ac33000 r-xp 00000000 08:01 30842      /lib/libudev.so.0.12.0
4ac33000-4ac34000 r--p 0000e000 08:01 30842      /lib/libudev.so.0.12.0
4ac34000-4ac35000 rw-p 0000f000 08:01 30842      /lib/libudev.so.0.12.0
4ac68000-4ac86000 r-xp 00000000 08:01 30812      /lib/libselinux.so.1
4ac86000-4ac87000 r--p 0001d000 08:01 30812      /lib/libselinux.so.1
4ac87000-4ac88000 rw-p 0001e000 08:01 30812      /lib/libselinux.so.1
4ac8a000-4aca0000 r-xp 00000000 08:05 108423     /usr/lib/libgvfscommon.so.0.0.0
4aca0000-4aca1000 r--p 00015000 08:05 108423     /usr/lib/libgvfscommon.so.0.0.0
4aca1000-4aca2000 rw-p 00016000 08:05 108423     /usr/lib/libgvfscommon.so.0.0.0
4ada3000-4ade3000 r-xp 00000000 08:05 107501     /usr/lib/libjpeg.so.62.0.0
4ade3000-4ade4000 r--p 0003f000 08:05 107501     /usr/lib/libjpeg.so.62.0.0
4ade4000-4ade5000 rw-p 00040000 08:05 107501     /usr/lib/libjpeg.so.62.0.0
4ade5000-4adf5000 rw-p 00000000 00:00 0 
4b46c000-4b48c000 r-xp 00000000 08:05 107693     /usr/lib/libgnome-keyring.so.0.1.1
4b48c000-4b48d000 r--p 00020000 08:05 107693     /usr/lib/libgnome-keyring.so.0.1.1
4b48d000-4b48e000 rw-p 00021000 08:05 107693     /usr/lib/libgnome-keyring.so.0.1.1
4bbf8000-4bd3a000 r-xp 00000000 08:01 29401      /lib/libgio-2.0.so.0.3000.2
4bd3a000-4bd3c000 r--p 00141000 08:01 29401      /lib/libgio-2.0.so.0.3000.2
4bd3c000-4bd3d000 rw-p 00143000 08:01 29401      /lib/libgio-2.0.so.0.3000.2
4bd3d000-4bd3e000 rw-p 00000000 00:00 0 
4c69d000-4c6c5000 r-xp 00000000 08:05 107015     /usr/lib/libpng12.so.0.46.0
4c6c5000-4c6c6000 r--p 00027000 08:05 107015     /usr/lib/libpng12.so.0.46.0
4c6c6000-4c6c7000 rw-p 00028000 08:05 107015     /usr/lib/libpng12.so.0.46.0
4c6c9000-4c6eb000 r-xp 00000000 08:05 108685     /usr/lib/libgdk_pixbuf-2.0.so.0.2400.1
4c6eb000-4c6ec000 r--p 00021000 08:05 108685     /usr/lib/libgdk_pixbuf-2.0.so.0.2400.1
4c6ec000-4c6ed000 rw-p 00022000 08:05 108685     /usr/lib/libgdk_pixbuf-2.0.so.0.2400.1
4c6ef000-4c6fa000 r-xp 00000000 08:05 107460     /usr/lib/libpangocairo-1.0.so.0.2904.0
4c6fa000-4c6fb000 r--p 0000a000 08:05 107460     /usr/lib/libpangocairo-1.0.so.0.2904.0
4c6fb000-4c6fc000 rw-p 0000b000 08:05 107460     /usr/lib/libpangocairo-1.0.so.0.2904.0
4c6fe000-4c7b2000 r-xp 00000000 08:05 107441     /usr/lib/libcairo.so.2.11000.2
4c7b2000-4c7b3000 r--p 000b4000 08:05 107441     /usr/lib/libcairo.so.2.11000.2
4c7b3000-4c7b4000 rw-p 000b5000 08:05 107441     /usr/lib/libcairo.so.2.11000.2
4c7b4000-4c7b6000 rw-p 00000000 00:00 0 
4c7b8000-4c82e000 r-xp 00000000 08:05 109674     /usr/lib/libgdk-3.so.0.200.3
4c82e000-4c830000 r--p 00075000 08:05 109674     /usr/lib/libgdk-3.so.0.200.3
4c830000-4c831000 rw-p 00077000 08:05 109674     /usr/lib/libgdk-3.so.0.200.3
4c833000-4c838000 r-xp 00000000 08:05 109673     /usr/lib/libcairo-gobject.so.2.11000.2
4c838000-4c839000 ---p 00005000 08:05 109673     /usr/lib/libcairo-gobject.so.2.11000.2
4c839000-4c83a000 r--p 00005000 08:05 109673     /usr/lib/libcairo-gobject.so.2.11000.2
4c83a000-4c83b000 rw-p 00006000 08:05 109673     /usr/lib/libcairo-gobject.so.2.11000.2
4c83d000-4ccb2000 r-xp 00000000 08:05 109689     /usr/lib/libgtk-3.so.0.200.3
4ccb2000-4ccb6000 r--p 00474000 08:05 109689     /usr/lib/libgtk-3.so.0.200.3
4ccb6000-4ccb8000 rw-p 00478000 08:05 109689     /usr/lib/libgtk-3.so.0.200.3
4ccb8000-4ccba000 rw-p 00000000 00:00 0 
4ccc4000-4cccb000 r-xp 00000000 08:05 108681     /usr/lib/libgailutil-3.so.0.0.0
4cccb000-4cccc000 r--p 00007000 08:05 108681     /usr/lib/libgailutil-3.so.0.0.0
4cccc000-4cccd000 rw-p 00008000 08:05 108681     /usr/lib/libgailutil-3.so.0.0.0
4cccf000-4ccff000 r-xp 00000000 08:05 109763     /usr/lib/libevdocument3.so.3.0.0
4ccff000-4cd00000 r--p 00030000 08:05 109763     /usr/lib/libevdocument3.so.3.0.0
4cd00000-4cd01000 rw-p 00031000 08:05 109763     /usr/lib/libevdocument3.so.3.0.0
4cd03000-4cd43000 r-xp 00000000 08:05 108943     /usr/lib/libevview3.so.3.0.0
4cd43000-4cd44000 r--p 0003f000 08:05 108943     /usr/lib/libevview3.so.3.0.0
4cd44000-4cd45000 rw-p 00040000 08:05 108943     /usr/lib/libevview3.so.3.0.0
af467000-af6d1000 rw-p 00000000 00:00 0 
af93a000-af93b000 rw-p 00000000 00:00 0 
af93b000-af9d1000 r--p 00000000 08:05 174294     /usr/share/fonts/dejavu/DejaVuSans-Oblique.ttf
af9d1000-afb86000 r-xp 00000000 08:05 107696     /usr/lib/libpoppler.so.18.0.0
afb86000-afb8d000 r--p 001b4000 08:05 107696     /usr/lib/libpoppler.so.18.0.0
[1]    10514 abort (core dumped)  evince moneytradeconsid00lawj_bw.pdf

Expected results:
displays the file

Additional info:
Comment 1 Marek Kašík 2012-02-27 12:42:51 UTC 
Hi,

I am able to reproduce the problem now. It is specific to i686 and crashes with openjpeg-1.4-11.i686. It doesn't crash with openjpeg-1.4-6.i686.
I'm reassigning this to openjpeg.

Regards

Marek
Comment 2 Marek Kašík 2012-02-27 15:09:01 UTC 
*** Bug 797336 has been marked as a duplicate of this bug. ***
Comment 3 Peter Backes 2012-02-28 01:37:19 UTC 
The problem also occurs with openjpeg-1.4-10.i686. Since there are no significant changes between -6 and -9, the problem must have been introduced by 1.4-10: "backport upstream patch to avoid poppler regressions (upstream issue #104)" (see also http://code.google.com/p/openjpeg/issues/detail?id=104 and http://code.google.com/p/openjpeg/issues/detail?id=110)

Looking at the patch (openjpeg-1.4-poppler_regression.patch), the situation is as follows: This patch adds new structure components to opj_jp2_t in libopenjpeg/jp2.h and opj_dparameters_t in libopenjpeg/openjpeg.h, increasing their size. I suppose that poppler makes use of these structures and allocates stack space for them. However, poppler was probably built with a version of openjpeg from before this change. This interaction causes the stack smashing, since the new version of openjpeg writes beyond allocated space to access structure members which poppler didn't allocate.

If this rough guess is correct then: 1. the version number of libopenjpeg.so.3 needs to be changed (but note that .4 will probably be used be future versions of openjpeg), 2. any package using openjpeg needs to be rebuilt with the new openjpeg version.
Comment 4 Marek Kašík 2012-02-28 10:11:48 UTC 
Hi Peter,

thank you for your analysis. You are right. I've just done a scratch build of poppler with the newer openjpeg and it doesn't crash with it (see http://koji.fedoraproject.org/koji/taskinfo?taskID=3826289).
The question now is whether maintainer will bump the soname or not.

Regards

Marek
Comment 5 Peter Backes 2012-02-28 13:23:26 UTC 
Maybe the soname can be bumped to .so.3.1, such that the full library name will be .so.3.1.1.4.0? http://wiki.linuxquestions.org/wiki/Library-related_Commands_and_Files#ldconfig suggests that this is possible, though I don't know if it would work in reality.

I noticed that ffmpeg-libs-0.8.9-1.fc16.i686 also depends on libopenjpeg.so.3. It might be affected in a similar way.
Comment 6 Rex Dieter 2012-02-28 13:32:06 UTC 
Thanks for the analysis here.  This added patch to openjpeg was to be used by future versions of poppler (and ironically was strongly suggested by poppler upstream to backport as was done here), so I'm of a mind to:
1.  remove the patch for now
and/or
2.  rebase/update poppler in f16... been meaning to start work on that sooner or later.
Comment 7 Marek Kašík 2012-02-29 10:37:49 UTC 
*** Bug 797280 has been marked as a duplicate of this bug. ***
Comment 8 Marek Kašík 2012-02-29 10:37:54 UTC 
*** Bug 795828 has been marked as a duplicate of this bug. ***
Comment 9 Marek Kašík 2012-02-29 10:38:00 UTC 
*** Bug 795370 has been marked as a duplicate of this bug. ***
Comment 10 Marek Kašík 2012-02-29 10:38:07 UTC 
*** Bug 795191 has been marked as a duplicate of this bug. ***
Comment 11 Marek Kašík 2012-02-29 10:38:51 UTC 
*** Bug 795160 has been marked as a duplicate of this bug. ***
Comment 12 Marek Kašík 2012-02-29 10:38:57 UTC 
*** Bug 789565 has been marked as a duplicate of this bug. ***
Comment 13 Marek Kašík 2012-02-29 10:39:00 UTC 
*** Bug 789368 has been marked as a duplicate of this bug. ***
Comment 14 Marek Kašík 2012-02-29 10:39:05 UTC 
*** Bug 788283 has been marked as a duplicate of this bug. ***
Comment 15 Marek Kašík 2012-02-29 14:48:19 UTC 
I will update poppler in F16 but it won't be a rebase. I'll just merge patches which are mentioned in release notes (0.18.1 - 0.18.4). Also I won't merge patches which changes API or anything in building of the package.
If maintainer of openjpeg decides to bump soname later we can just rebuild poppler.
Comment 16 Rex Dieter 2012-02-29 14:59:15 UTC 
that approach works too, but seems like a lot more work (ok if you don't mind doing it).  Any timeline for doing so?

wondering if we can consider coordinating openjpeg soname bump + poppler update at the same time.  

Else, I think it best to remove this ABI-breaking patch for now, and (consider) re-adding it when/if a f16 poppler-0.18.4+ update happens
Comment 17 Marek Kašík 2012-02-29 17:36:12 UTC 
Created attachment 566602 [details]
patch backporting some poppler-0.18.4 fixes

> that approach works too, but seems like a lot more work (ok if you don't mind
> doing it).  Any timeline for doing so?

I've prepared a patch for this. I will check it tomorrow yet and I will commit it then + prepare an update (+ I will maybe add a constraint on version of openjpeg to Requires).


> wondering if we can consider coordinating openjpeg soname bump + poppler update
> at the same time.  

I don't want to wait because there is already quite a lot of bugs on this and preparing of the soname bump + rebuild of all dependant packages will take time.


> Else, I think it best to remove this ABI-breaking patch for now, and (consider)
> re-adding it when/if a f16 poppler-0.18.4+ update happens

Unfortunately, I don't plan to rebase poppler to 0.18.4 in F16 because of the soname bump in poppler 0.18.1.
Comment 18 Rex Dieter 2012-03-01 14:07:53 UTC 
*** Bug 795391 has been marked as a duplicate of this bug. ***
Comment 19 Fedora Update System 2012-03-01 14:23:23 UTC 
openjpeg-1.4-12.fc16 has been submitted as an update for Fedora 16.
https://admin.fedoraproject.org/updates/openjpeg-1.4-12.fc16
Comment 20 Fedora Update System 2012-03-01 14:24:29 UTC 
openjpeg-1.4-12.fc15 has been submitted as an update for Fedora 15.
https://admin.fedoraproject.org/updates/openjpeg-1.4-12.fc15
Comment 21 Marek Kašík 2012-03-05 10:16:28 UTC 
*** Bug 799631 has been marked as a duplicate of this bug. ***
Comment 22 Marek Kašík 2012-03-05 10:16:32 UTC 
*** Bug 799626 has been marked as a duplicate of this bug. ***
Comment 23 Marek Kašík 2012-03-05 10:16:37 UTC 
*** Bug 799593 has been marked as a duplicate of this bug. ***
Comment 24 Marek Kašík 2012-03-05 10:21:46 UTC 
*** Bug 798925 has been marked as a duplicate of this bug. ***
Comment 25 Marek Kašík 2012-03-05 10:23:06 UTC 
*** Bug 799570 has been marked as a duplicate of this bug. ***
Comment 26 Marek Kašík 2012-03-05 10:47:46 UTC 
*** Bug 799520 has been marked as a duplicate of this bug. ***
Comment 27 Marek Kašík 2012-03-05 11:53:49 UTC 
Hi,

unfortunately, I was sick last few days, that's why I haven't done the update of poppler yet. I'll wait until openjpeg-1.4-12.fc16 gets into stable and I will create the update for poppler.

Regards

Marek
Comment 28 Michal Schmidt 2012-03-05 12:28:18 UTC 
*** Bug 799632 has been marked as a duplicate of this bug. ***
Comment 29 Marek Kašík 2012-03-05 13:29:59 UTC 
*** Bug 799950 has been marked as a duplicate of this bug. ***
Comment 30 Fedora Update System 2012-03-06 19:28:56 UTC 
Package openjpeg-1.4-12.fc16:
* should fix your issue,
* was pushed to the Fedora 16 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing openjpeg-1.4-12.fc16'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2012-3026/openjpeg-1.4-12.fc16
then log in and leave karma (feedback).
Comment 31 cornel panceac 2012-03-06 20:03:49 UTC 
well, something strange happens: there's no openjpeg installed here. so i can't "update" it :)

yum says:

Setting up Update Process
Package(s) openjpeg available, but not installed.
No Packages marked for Update

maybe i just need the updated poppler?

please advise.
Comment 32 Peter Backes 2012-03-06 20:51:37 UTC 
(In reply to comment #31)
> well, something strange happens: there's no openjpeg installed here. so i can't
> "update" it :)

Update openjpeg-libs
Comment 33 zulu 2012-03-06 22:09:31 UTC 
Tried to open this file: http://www.dgge.pt?cfl=5558

Bang.


backtrace_rating: 4
Package: evince-3.2.1-2.fc16
OS Release: Fedora release 16 (Verne)
Comment 34 zulu 2012-03-06 22:09:37 UTC 
Created attachment 568077 [details]
File: backtrace
Comment 35 Tom Georgoulias 2012-03-06 22:56:00 UTC 
Installed openjpeg-libs-1.4-12.fc16.i686.rpm (from Koji, repo didn't have the updated RPM yet).  I was able to open the PDF w/o issue.
Comment 36 John 2012-03-07 05:28:08 UTC 
Ran yum update, didn't work. Ran yum install instead and the offending pdf doesn't crash evince now. Working well. Thanks.

Change your yum command to the following and it should install:

su -c 'yum install --enablerepo=updates-testing openjpeg-1.4-12.fc16'
Comment 37 cornel panceac 2012-03-07 05:39:37 UTC 
Updating openjpeg-libs to 1.4-12 from updates-testing allowed me to open both my document and the document from comment #33. thank you very much.
Comment 38 Li Junshuai 2012-03-09 08:16:36 UTC 
I just try to open a PDF file by double click

backtrace_rating: 4
Package: evince-3.2.1-2.fc16
OS Release: Fedora release 16 (Verne)
Comment 39 Li Junshuai 2012-03-09 08:16:52 UTC 
Created attachment 568851 [details]
File: backtrace
Comment 40 Fedora Update System 2012-03-10 00:20:08 UTC 
openjpeg-1.4-12.fc16 has been pushed to the Fedora 16 stable repository.  If problems still persist, please make note of it in this bug report.
Comment 41 Fedora Update System 2012-03-17 23:52:42 UTC 
openjpeg-1.4-12.fc15 has been pushed to the Fedora 15 stable repository.  If problems still persist, please make note of it in this bug report.
Comment 42 Marek Kašík 2012-03-21 12:43:02 UTC 
*** Bug 798865 has been marked as a duplicate of this bug. ***
Comment 43 Christoph Wickert 2012-03-21 17:54:40 UTC 
*** Bug 754805 has been marked as a duplicate of this bug. ***
Comment 44 Christoph Wickert 2012-03-21 17:55:58 UTC 
*** Bug 802405 has been marked as a duplicate of this bug. ***
Comment 45 Christoph Wickert 2012-03-21 17:56:07 UTC 
*** Bug 802432 has been marked as a duplicate of this bug. ***
Comment 46 Christoph Wickert 2012-03-21 17:56:16 UTC 
*** Bug 802090 has been marked as a duplicate of this bug. ***
Comment 47 Fedora Update System 2012-04-03 10:39:53 UTC 
openjpeg-1.4-12.fc17 has been submitted as an update for Fedora 17.
https://admin.fedoraproject.org/updates/openjpeg-1.4-12.fc17
Comment 48 Rex Dieter 2012-04-03 12:26:25 UTC 
Oops, seems openjpeg-1.5.0 never landed in f17 branch as intended.

I'll see about rectifying that asap.
Comment 49 cornel panceac 2012-04-03 13:01:05 UTC 
Thank you.
Comment 50 Fedora Update System 2012-04-12 02:43:18 UTC 
openjpeg-1.4-12.fc17 has been pushed to the Fedora 17 stable repository.  If problems still persist, please make note of it in this bug report.