Bug 814262

Summary:	blender 2.62-4 terminates with a buffer overflow
Product:	[Fedora] Fedora	Reporter:	Daniel Belton <danielbelton>
Component:	blender	Assignee:	Jochen Schmitt <jochen>
Status:	CLOSED DUPLICATE	QA Contact:	Fedora Extras Quality Assurance <extras-qa>
Severity:	medium	Docs Contact:
Priority:	unspecified
Version:	17	CC:	hobbes1069, jochen, kwizart, promac
Target Milestone:	---
Target Release:	---
Hardware:	Unspecified
OS:	Linux
Whiteboard:
Fixed In Version:		Doc Type:	Bug Fix
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:	2012-04-25 13:16:27 UTC	Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:

Description Daniel Belton 2012-04-19 13:40:58 UTC

Description of problem: After update to blender 2.62-4, it will not start and terminates with a buffer overflow


Version-Release number of selected component (if applicable): blender 2.62-4


How reproducible: update blender to 2.62-4 and try to run.


Steps to Reproduce:
1. update blender to 2.52-4
2. run blender 
3. blender terminates
  
Actual results: Blender terminates with a buffer overflow because it can't find the drivers for a 3Dconnexion space navigator mouse, even though I have no space navigator mouse installed. 


Expected results: For blender to start and run normally as the previous version did. 


Additional info: I did find out I could install the spacenavd package, start spacenavd as root, then blender would run.

Here is the information I get before installing/running spacenavd:

[Me@tower20 ~]$ blender
connect failed: No such file or directory
ndof: spacenavd not found
*** buffer overflow detected ***: blender terminated
======= Backtrace: =========
/lib64/libc.so.6(__fortify_fail+0x37)[0x3685b09797]
/lib64/libc.so.6[0x3685b07950]
/lib64/libc.so.6[0x3685b09747]
/lib64/libspnav.so.0(spnav_poll_event+0x103)[0x3f48801fc3]
blender(_ZN20GHOST_NDOFManagerX1113processEventsEv+0x2a)[0xcc4bda]
blender(_ZN15GHOST_SystemX1113processEventsEb+0xdf)[0xcc0c8f]
blender(GHOST_ProcessEvents+0x14)[0xcbdc74]
blender(wm_window_process_events+0x37)[0x785e77]
blender(WM_main+0x10)[0x770cd0]
blender(main+0x8f1)[0x7662d1]
/lib64/libc.so.6(__libc_start_main+0xf5)[0x3685a21735]
blender[0x76ec89]
======= Memory map: ========
00400000-0178a000 r-xp 00000000 08:05 3185326                            /usr/bin/blender
01989000-0212d000 rw-p 01389000 08:05 3185326                            /usr/bin/blender
0212d000-021b7000 rw-p 00000000 00:00 0 
0232c000-024d9000 rw-p 01b2c000 08:05 3185326                            /usr/bin/blender
03464000-0490e000 rw-p 00000000 00:00 0                                  [heap]
319d400000-319d461000 r-xp 00000000 08:05 3163781                        /usr/lib64/libtiff.so.3.9.5
319d461000-319d661000 ---p 00061000 08:05 3163781                        /usr/lib64/libtiff.so.3.9.5
319d661000-319d663000 r--p 00061000 08:05 3163781                        /usr/lib64/libtiff.so.3.9.5
319d663000-319d664000 rw-p 00063000 08:05 3163781                        /usr/lib64/libtiff.so.3.9.5
319dc00000-319dc55000 r-xp 00000000 08:05 3168573                        /usr/lib64/libopenal.so.1.14.0
319dc55000-319de55000 ---p 00055000 08:05 3168573                        /usr/lib64/libopenal.so.1.14.0
319de55000-319de57000 r--p 00055000 08:05 3168573                        /usr/lib64/libopenal.so.1.14.0
319de57000-319de58000 rw-p 00057000 08:05 3168573                        /usr/lib64/libopenal.so.1.14.0
319de58000-319de59000 rw-p 00000000 00:00 0 
31f5a00000-31f5a29000 r-xp 00000000 08:05 3173312                        /usr/lib64/libpng15.so.15.10.0
31f5a29000-31f5c28000 ---p 00029000 08:05 3173312                        /usr/lib64/libpng15.so.15.10.0
31f5c28000-31f5c29000 r--p 00028000 08:05 3173312                        /usr/lib64/libpng15.so.15.10.0
31f5c29000-31f5c2a000 rw-p 00029000 08:05 3173312                        /usr/lib64/libpng15.so.15.10.0
3585800000-3585933000 r-xp 00000000 08:05 3172218                        /usr/lib64/libX11.so.6.3.0
3585933000-3585b33000 ---p 00133000 08:05 3172218                        /usr/lib64/libX11.so.6.3.0
3585b33000-3585b34000 r--p 00133000 08:05 3172218                        /usr/lib64/libX11.so.6.3.0
3585b34000-3585b39000 rw-p 00134000 08:05 3172218                        /usr/lib64/libX11.so.6.3.0
3585c00000-3585c1d000 r-xp 00000000 08:05 3149132                        /usr/lib64/libxcb.so.1.1.0
3585c1d000-3585e1c000 ---p 0001d000 08:05 3149132                        /usr/lib64/libxcb.so.1.1.0
3585e1c000-3585e1d000 r--p 0001c000 08:05 3149132                        /usr/lib64/libxcb.so.1.1.0
3585e1d000-3585e1e000 rw-p 0001d000 08:05 3149132                        /usr/lib64/libxcb.so.1.1.0
3586000000-3586010000 r-xp 00000000 08:05 3178202                        /usr/lib64/libXext.so.6.4.0
3586010000-3586210000 ---p 00010000 08:05 3178202                        /usr/lib64/libXext.so.6.4.0
3586210000-3586211000 r--p 00010000 08:05 3178202                        /usr/lib64/libXext.so.6.4.0
3586211000-3586212000 rw-p 00011000 08:05 3178202                        /usr/lib64/libXext.so.6.4.0
3586400000-3586405000 r-xp 00000000 08:05 3184342                        /usr/lib64/libXfixes.so.3.1.0
3586405000-3586604000 ---p 00005000 08:05 3184342                        /usr/lib64/libXfixes.so.3.1.0
3586604000-3586605000 r--p 00004000 08:05 3184342                        /usr/lib64/libXfixes.so.3.1.0
3586605000-3586606000 rw-p 00005000 08:05 3184342                        /usr/lib64/libXfixes.so.3.1.0
3586800000-3586809000 r-xp 00000000 08:05 3182300                        /usr/lib64/libXrender.so.1.3.0
3586809000-3586a08000 ---p 00009000 08:05 3182300                        /usr/lib64/libXrender.so.1.3.0
3586a08000-3586a09000 r--p 00008000 08:05 3182300                        /usr/lib64/libXrender.so.1.3.0
3586a09000-3586a0a000 rw-p 00009000 08:05 3182300                        /usr/lib64/libXrender.so.1.3.0
3586c00000-3586c0e000 r-xp 00000000 08:05 3178224                        /usr/lib64/libXi.so.6.1.0
3586c0e000-3586e0d000 ---p 0000e000 08:05 3178224                        /usr/lib64/libXi.so.6.1.0
3586e0d000-3586e0e000 r--p 0000d000 08:05 3178224                        /usr/lib64/libXi.so.6.1.0
3586e0e000-3586e0f000 rw-p 0000e000 08:05 3178224                        /usr/lib64/libXi.so.6.1.0
3587800000-3587809000 r-xp 00000000 08:05 3189018                        /usr/lib64/libXcursor.so.1.0.2
3587809000-3587a09000 ---p 00009000 08:05 3189018                        /usr/lib64/libXcursor.so.1.0.2
3587a09000-3587a0a000 r--p 00009000 08:05 3189018                        /usr/lib64/libXcursor.so.1.0.2
3587a0a000-3587a0b000 rw-p 0000a000 08:05 3189018                        /usr/lib64/libXcursor.so.1.0.2
3587c00000-3587c02000 r-xp 00000000 08:05 3206095                        /usr/lib64/libXdamage.so.1.1.0
3587c02000-3587e01000 ---p 00002000 08:05 3206095                        /usr/lib64/libXdamage.so.1.1.0
3587e01000-3587e02000 r--p 00001000 08:05 3206095                        /usr/lib64/libXdamage.so.1.1.0
3587e02000-3587e03000 rw-p 00002000 08:05 3206095                        /usr/lib64/libXdamage.so.1.1.0
3588c00000-3588c01000 r-xp 00000000 08:05 3206100                        /usr/lib64/libX11-xcb.so.1.0.0
3588c01000-3588e00000 ---p 00001000 08:05 3206100                        /usr/lib64/libX11-xcb.so.1.0.0
3588e00000-3588e01000 r--p 00000000 08:05 3206100                        /usr/lib64/libX11-xcb.so.1.0.0
3588e01000-3588e02000 rw-p 00001000 08:05 3206100                        /usr/lib64/libX11-xcb.so.1.0.0
3589400000-3589404000 r-xp 00000000 08:05 3200130                        /usr/lib64/libXxf86vm.so.1.0.0
3589404000-3589604000 ---p 00004000 08:05 3200130                        /usr/lib64/libXxf86vm.so.1.0.0
3589604000-3589605000 r--p 00004000 08:05 3200130                        /usr/lib64/libXxf86vm.so.1.0.0
3589605000-3589606000 rw-p 00005000 08:05 3200130                        /usr/lib64/libXxf86vm.so.1.0.0
358a000000-358a005000 r-xp 00000000 08:05 3199706                        /usr/lib64/libXtst.so.6.1.0
358a005000-358a204000 ---p 00005000 08:05 3199706                        /usr/lib64/libXtst.so.6.1.0
358a204000-358a205000 r--p 00004000 08:05 3199706                        /usr/lib64/libXtst.so.6.1.0
358a205000-358a206000 rw-p 00005000 08:05 3199706                        /usr/lib64/libXtst.so.6.1.0
358be00000-358be60000 r-xp 00000000 08:05 3155034                        /usr/lib64/libpulsecommon-1.1.so
358be60000-358c05f000 ---p 00060000 08:05 3155034                        /usr/lib64/libpulsecommon-1.1.so
358c05f000-358c060000 r--p 0005f000 08:05 3155034                        /usr/lib64/libpulsecommon-1.1.so
358c060000-358c062000 rw-p 00060000 08:05 3155034                        /usr/lib64/libpulsecommon-1.1.so
358de00000-358de15000 r-xp 00000000 08:05 3187917                        /usr/lib64/libxcb-glx.so.0.0.0
358de15000-358e014000 ---p 00015000 08:05 3187917                        /usr/lib64/libxcb-glx.so.0.0.0
358e014000-358e016000 r--p 00014000 08:05 3187917                        /usr/lib64/libxcb-glx.so.0.0.0
358e016000-358e017000 rw-p 00016000 08:05 3187917                        /usr/lib64/libxcb-glx.so.0.0.0
3591800000-3591847000 r-xp 00000000 08:05 3206104                        /usr/lib64/libpulse.so.0.13.5
3591847000-3591a46000 ---p 00047000 08:05 3206104                        /usr/lib64/libpulse.so.0.13.5
3591a46000-3591a47000 r--p 00046000 08:05 3206104                        /usr/lib64/libpulse.so.0.13.5
3591a47000-3591a48000 rw-p 00047000 08:05 3206104                        /usr/lib64/libpulse.so.0.13.5
3685200000-3685220000 r-xp 00000000 08:05 3146434                        /usr/lib64/ld-2.15.so
368541f000-3685420000 r--p 0001f000 08:05 3146434                        /usr/lib64/ld-2.15.so
3685420000-3685421000 rw-p 00020000 08:05 3146434                        /usr/lib64/ld-2.15.so
3685421000-3685422000 rw-p 00000000 00:00 0 
3685600000-3685602000 r-xp 00000000 08:05 3174157                        /usr/lib64/libXau.so.6.0.0
3685602000-3685802000 ---p 00002000 08:05 3174157                        /usr/lib64/libXau.so.6.0.0
3685802000-3685803000 r--p 00002000 08:05 3174157                        /usr/lib64/libXau.so.6.0.0
3685803000-3685804000 rw-p 00003000 08:05 3174157                        /usr/lib64/libXau.so.6.0.0
3685a00000-3685bac000 r-xp 00000000 08:05 3146437                        /usr/lib64/libc-2.15.so
3685bac000-3685dac000 ---p 001ac000 08:05 3146437                        /usr/lib64/libc-2.15.so
3685dac000-3685db0000 r--p 001ac000 08:05 3146437                        /usr/lib64/libc-2.15.so
3685db0000-3685db2000 rw-p 001b0000 08:05 3146437                        /usr/lib64/libc-2.15.so
3685db2000-3685db7000 rw-p 00000000 00:00 0 
3685e00000-3685efa000 r-xp 00000000 08:05 3167472                        /usr/lib64/libm-2.15.so
3685efa000-36860f9000 ---p 000fa000 08:05 3167472                        /usr/lib64/libm-2.15.so
36860f9000-36860fa000 r--p 000f9000 08:05 3167472                        /usr/lib64/libm-2.15.so
36860fa000-36860fb000 rw-p 000fa000 08:05 3167472                        /usr/lib64/libm-2.15.so
3686200000-3686203000 r-xp 00000000 08:05 3165692                        /usr/lib64/libdl-2.15.so
3686203000-3686402000 ---p 00003000 08:05 3165692                        /usr/lib64/libdl-2.15.so
3686402000-3686403000 r--p 00002000 08:05 3165692                        /usr/lib64/libdl-2.15.so
3686403000-3686404000 rw-p 00003000 08:05 3165692                        /usr/lib64/libdl-2.15.so
3686600000-3686616000 r-xp 00000000 08:05 3159722                        /usr/lib64/libpthread-2.15.so
3686616000-3686816000 ---p 00016000 08:05 3159722                        /usr/lib64/libpthread-2.15.so
3686816000-3686817000 r--p 00016000 08:05 3159722                        /usr/lib64/libpthread-2.15.so
3686817000-3686818000 rw-p 00017000 08:05 3159722                        /usr/lib64/libpthread-2.15.so
3686818000-368681c000 rw-p 00000000 00:00 0 
3686a00000-3686a17000 r-xp 00000000 08:05 3165744                        /usr/lib64/libz.so.1.2.5
3686a17000-3686c16000 ---p 00017000 08:05 3165744                        /usr/lib64/libz.so.1.2.5
3686c16000-3686c17000 rw-p 00016000 08:05 3165744                        /usr/lib64/libz.so.1.2.5
3686e00000-3686e07000 r-xp 00000000 08:05 3164336                        /usr/lib64/librt-2.15.so
3686e07000-3687006000 ---p 00007000 08:05 3164336                        /usr/lib64/librt-2.15.so
3687006000-3687007000 r--p 00006000 08:05 3164336                        /usr/lib64/librt-2.15.so
3687007000-3687008000 rw-p 00007000 08:05 3164336                        /usr/lib64/librt-2.15.so
3687a00000-3687a1e000 r-xp 00000000 08:05 3190474                        /usr/lib64/libselinux.so.1
3687a1e000-3687c1d000 ---p 0001e000 08:05 3190474                        /usr/lib64/libselinux.so.1
3687c1d000-3687c1e000 r--p 0001d000 08:05 3190474                        /usr/lib64/libselinux.so.1
3687c1e000-3687c1f000 rw-p 0001e000 08:05 3190474                        /usr/lib64/libselinux.so.1
3687c1f000-3687c21000 rw-p 00000000 00:00 0 
3688600000-3688616000 r-xp 00000000 08:05 3186004                        /usr/lib64/libresolv-2.15.so
3688616000-3688815000 ---p 00016000 08:05 3186004                        /usr/lib64/libresolv-2.15.so
3688815000-3688816000 r--p 00015000 08:05 3186004                        /usr/lib64/libresolv-2.15.so
3688816000-3688817000 rw-p 00016000 08:05 3186004                        /usr/lib64/libresolv-2.15.so
3688817000-3688819000 rw-p 00000000 00:00 0 
3689600000-3689626000 r-xp 00000000 08:05 3183753                        /usr/lib64/libexpat.so.1.6.0
3689626000-3689826000 ---p 00026000 08:05 3183753                        /usr/lib64/libexpat.so.1.6.0
3689826000-3689828000 r--p 00026000 08:05 3183753                        /usr/lib64/libexpat.so.1.6.0
3689828000-3689829000 rw-p 00028000 08:05 3183753                        /usr/lib64/libexpat.so.1.6.0
3689e00000-3689e04000 r-xp 00000000 08:05 3184170                        /usr/lib64/libuuid.so.1.3.0
3689e04000-368a003000 ---p 00004000 08:05 3184170                        /usr/lib64/libuuid.so.1.3.0
368a003000-368a004000 r--p 00003000 08:05 3184170                        /usr/lib64/libuuid.so.1.3.0
368a004000-368a005000 rw-p 00004000 08:05 3184170                        /usr/lib64/libuuid.so.1.3.0
368b600000-368b607000 r-xp 00000000 08:05 3184177                        /usr/lib64/libSM.so.6.0.1
368b607000-368b806000 ---p 00007000 08:05 3184177                        /usr/lib64/libSM.so.6.0.1
368b806000-368b807000 r--p 00006000 08:05 3184177                        /usr/lib64/libSM.so.6.0.1
368b807000-368b808000 rw-p 00007000 08:05 3184177                        /usr/lib64/libSM.so.6.0.1
368ba00000-368ba17000 r-xp 00000000 08:05 3183850                        /usr/lib64/libICE.so.6.3.0
368ba17000-368bc16000 ---p 00017000 08:05 3183850                        /usr/lib64/libICE.so.6.3.0
368bc16000-368bc17000 r--p 00016000 08:05 3183850                        /usr/lib64/libICE.so.6.3.0
368bc17000-368bc18000 rw-p 00017000 08:05 3183850                        /usr/lib64/libICE.so.6.3.0
368bc18000-368bc1c000 rw-p 00000000 00:00 0 
368d200000-368d34e000 r-xp 00000000 08:05 3169121                        /usr/lib64/libxml2.so.2.7.8
368d34e000-368d54d000 ---p 0014e000 08:05 3169121                        /usr/lib64/libxml2.so.2.7.8
368d54d000-368d555000 r--p 0014d000 08:05 3169121                        /usr/lib64/libxml2.so.2.7.8
368d555000-368d557000 rw-p 00155000 08:05 3169121                        /usr/lib64/libxml2.so.2.7.8
368d557000-368d558000 rw-p 00000000 00:00 0 
368da00000-368da0f000 r-xp 00000000 08:05 3200237                        /usr/lib64/libtbbmalloc.so.2
368da0f000-368dc0f000 ---p 0000f000 08:05 3200237                        /usr/lib64/libtbbmalloc.so.2
368dc0f000-368dc11000 rw-p 0000f000 08:05 3200237                        /usr/lib64/libtbbmalloc.so.2
368dc11000-368dc22000 rw-p 00000000 00:00 0 
368fa00000-368fa42000 r-xp 00000000 08:05 3199587                        /usr/lib64/libdbus-1.so.3.5.6
368fa42000-368fc42000 ---p 00042000 08:05 3199587                        /usr/lib64/libdbus-1.so.3.5.6
368fc42000-368fc43000 r--p 00042000 08:05 3199587                        /usr/lib64/libdbus-1.so.3.5.6
368fc43000-368fc44000 rw-p 00043000 08:05 3199587                        /usr/lib64/libdbus-1.so.3.5.6
3690a00000-3690a3e000 r-xp 00000000 08:05 3173196                        /usr/lib64/libjpeg.so.62.0.0
3690a3e000-3690c3d000 ---p 0003e000 08:05 3173196                        /usr/lib64/libjpeg.so.62.0.0
3690c3d000-3690c3e000 r--p 0003d000 08:05 3173196                        /usr/lib64/libjpeg.so.62.0.0
3690c3e000-3690c3f000 rw-p 0003e000 08:05 3173196                        /usr/lib64/libjpeg.so.62.0.0Aborted (core dumped)


============================================================================

And after installing/running spacenavd as root:


[Me@tower20 ~]$ blender
ndof: unknown Logitech product c52b
ndof: unknown Logitech product c308

Blender quit

============================================================================

Blender should not be requiring drivers to be loaded for hardware that isn't even available on the system so this is a definite bug in blender somewhere.

Comment 1 Richard Shaw 2012-04-25 13:14:58 UTC

I think this is a bug in the ndof part of Blender. I got an email from one of the Blender developers saying this has been fixed in SVN, so I assume Jochen will backport the fix to the current release.

Comment 2 Richard Shaw 2012-04-25 13:16:27 UTC

It looks like the discussion is happening on 814665 so even though this bug was filed first I think it best to mark this one as the duplicate.

*** This bug has been marked as a duplicate of bug 814665 ***