Package: firefox Version: 1.5.dfsg+1.5.0.1-4 Severity: important
Trying to access http://en.wikipedia.org/wiki/Dash always brings up a segfault. gdb output, however the address is different each time: [Thread -1252717648 (LWP 6282) exited] Program received signal SIGSEGV, Segmentation fault. [Switching to Thread -1221876032 (LWP 6267)] 0xb7a1cdbb in FcFreeTypeCharIndex () from /usr/lib/libfontconfig.so.1 Backtrace is useless since return addresses get overwritten. Strace says: 6707 <... read resumed> "GIF89a\16\0\20\0\263\0\0\0\0\0\200\0\0\0\200\0\200\200"..., 4096) = 165 6681 <... gettimeofday resumed> {1143399437, 548154}, NULL) = 0 6707 read(48, <unfinished ...> 6681 write(6, "\372", 1 <unfinished ...> 6707 <... read resumed> "", 3931) = 0 6681 <... write resumed> ) = 1 6707 futex(0x8baea24, FUTEX_WAIT, 2, NULL <unfinished ...> 6681 futex(0x8baea24, FUTEX_WAKE, 1 <unfinished ...> 6707 <... futex resumed> ) = -1 EAGAIN (Resource temporarily unavailable) 6681 <... futex resumed> ) = 0 6681 write(3, "\1\30\r\0\326\5\240\1\267\4\240\1\0\0\0\0\1\0\1\0\0\0\1"..., 240) = 240 6681 ioctl(3, FIONREAD, [128]) = 0 6681 read(3, "\26\0\3661\327\5\240\1\327\5\240\1\0\0\0\0\0\0\0\0008\3"..., 128) = 128 6681 poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0 6681 poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0 6681 ioctl(3, FIONREAD, [0]) = 0 6681 poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}], 6, 0) = 0 6681 ioctl(3, FIONREAD, [0]) = 0 6681 poll([{fd=3, events=POLLIN}, {fd=9, events=POLLIN}, {fd=13, events=POLLIN|POLLPRI}, {fd=15, events=POLLIN|POLLPRI}, {fd=16, event s=POLLIN|POLLPRI}, {fd=17, events=POLLIN|POLLPRI}, {fd=5, events=POLLIN, revents=POLLIN}], 7, -1) = 1 6681 gettimeofday({1143399437, 549719}, NULL) = 0 6681 open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Oblique.ttf", O_RDONLY <unfinished ...> 6707 futex(0x8baea24, FUTEX_WAKE, 1 <unfinished ...> 6681 <... open resumed> ) = 47 6707 <... futex resumed> ) = 0 6681 fcntl64(47, F_SETFD, FD_CLOEXEC <unfinished ...> 6707 close(48 <unfinished ...> 6681 <... fcntl64 resumed> ) = 0 6707 <... close resumed> ) = 0 6681 fstat64(47, <unfinished ...> 6707 gettimeofday( <unfinished ...> 6681 <... fstat64 resumed> {st_mode=S_IFREG|0644, st_size=63684, ...}) = 0 6707 <... gettimeofday resumed> {1143399437, 558851}, NULL) = 0 6681 mmap2(NULL, 63684, PROT_READ, MAP_PRIVATE, 47, 0 <unfinished ...> 6707 gettimeofday( <unfinished ...> 6681 <... mmap2 resumed> ) = 0xb552d000 6707 <... gettimeofday resumed> {1143399437, 558925}, NULL) = 0 6681 close(47 <unfinished ...> 6707 clock_gettime(CLOCK_REALTIME, <unfinished ...> 6681 <... close resumed> ) = 0 6707 <... clock_gettime resumed> {1143399437, 558968000}) = 0 6707 futex(0x8c69718, FUTEX_WAIT, 47, {59, 999957000} <unfinished ...> 6681 open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Bold-Oblique.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=63208, ...}) = 0 6681 mmap2(NULL, 63208, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb551d000 6681 close(47) = 0 6681 brk(0x948f000) = 0x948f000 6681 brk(0x948d000) = 0x948d000 6681 open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Bold.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=58716, ...}) = 0 6681 mmap2(NULL, 58716, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb550e000 6681 close(47) = 0 6681 brk(0x94ae000) = 0x94ae000 6681 open("/var/lib/defoma/fontconfig.d/F/FreeSans-Medium.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=477820, ...}) = 0 6681 mmap2(NULL, 477820, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb438b000 6681 close(47) = 0 6681 brk(0x94cf000) = 0x94cf000 6681 brk(0x94f3000) = 0x94f3000 6681 open("/var/lib/defoma/fontconfig.d/D/DejaVu-Sans-Bold.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=125188, ...}) = 0 6681 mmap2(NULL, 125188, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb436c000 6681 close(47) = 0 6681 brk(0x9514000) = 0x9514000 6681 brk(0x9535000) = 0x9535000 6681 brk(0x9565000) = 0x9565000 6681 open("/usr/share/fonts/truetype/ttf-dejavu/DejaVuSansMono.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=94156, ...}) = 0 6681 mmap2(NULL, 94156, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb4355000 6681 close(47) = 0 6681 open("/var/lib/defoma/fontconfig.d/F/FreeSerif-Bold.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=248956, ...}) = 0 6681 mmap2(NULL, 248956, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb4318000 6681 close(47) = 0 6681 brk(0x9586000) = 0x9586000 6681 brk(0x95a7000) = 0x95a7000 6681 open("/var/lib/defoma/fontconfig.d/F/FreeSans-Bold.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=142772, ...}) = 0 6681 mmap2(NULL, 142772, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb42f5000 6681 close(47) = 0 6681 brk(0x95c8000) = 0x95c8000 6681 brk(0x95e9000) = 0x95e9000 6681 brk(0x960b000) = 0x960b000 6681 brk(0x9633000) = 0x9633000 6681 brk(0x9657000) = 0x9657000 6681 brk(0x9651000) = 0x9651000 6681 gettimeofday({1143399437, 647338}, NULL) = 0 6681 brk(0x9675000) = 0x9675000 6681 brk(0x966f000) = 0x966f000 6681 munmap(0xb4355000, 94156) = 0 6681 open("/var/lib/defoma/fontconfig.d/B/Bitstream-Vera-Sans-Mono.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=49224, ...}) = 0 6681 mmap2(NULL, 49224, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb435f000 6681 close(47) = 0 6681 brk(0x9691000) = 0x9691000 6681 brk(0x968f000) = 0x968f000 6681 munmap(0xb435f000, 49224) = 0 6681 open("/var/lib/defoma/fontconfig.d/D/DejaVu-Sans-Oblique.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=126872, ...}) = 0 6681 mmap2(NULL, 126872, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb42d6000 6681 close(47) = 0 6709 gettimeofday({1143399437, 692208}, NULL) = 0 6709 gettimeofday({1143399437, 692234}, NULL) = 0 6709 clock_gettime(CLOCK_REALTIME, {1143399437, 692257000}) = 0 6709 futex(0x8c69718, FUTEX_WAIT, 48, {59, 999977000} <unfinished ...> 6706 <... futex resumed> ) = -1 ETIMEDOUT (Connection timed out) 6706 gettimeofday({1143399437, 715061}, NULL) = 0 6706 futex(0x8b4fdd8, FUTEX_WAKE, 1) = 0 6706 gettimeofday({1143399437, 715122}, NULL) = 0 6706 gettimeofday({1143399437, 715144}, NULL) = 0 6706 clock_gettime(CLOCK_REALTIME, {1143399437, 715164000}) = 0 6706 futex(0x8b4b698, FUTEX_WAIT, 669, {5, 20980000} <unfinished ...> 6681 brk(0x96b0000) = 0x96b0000 6681 brk(0x96d9000) = 0x96d9000 6681 brk(0x96fd000) = 0x96fd000 6681 gettimeofday({1143399437, 764353}, NULL) = 0 6681 munmap(0xb42d6000, 126872) = 0 6681 open("/var/lib/defoma/fontconfig.d/F/FreeSerif-Medium.ttf", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=1059368, ...}) = 0 6681 mmap2(NULL, 1059368, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb41f2000 6681 close(47) = 0 6681 brk(0x971e000) = 0x971e000 6681 brk(0x973f000) = 0x973f000 6681 brk(0x973e000) = 0x973e000 6681 brk(0x973d000) = 0x973d000 6681 gettimeofday({1143399437, 806035}, NULL) = 0 6681 brk(0x975f000) = 0x975f000 6681 brk(0x9759000) = 0x9759000 6681 munmap(0xb559d000, 141668) = 0 6681 open("/usr/X11R6/lib/X11/fonts/Type1/n019003l.pfb", O_RDONLY) = 47 6681 fcntl64(47, F_SETFD, FD_CLOEXEC) = 0 6681 fstat64(47, {st_mode=S_IFREG|0644, st_size=69793, ...}) = 0 6681 mmap2(NULL, 69793, PROT_READ, MAP_PRIVATE, 47, 0) = 0xb55ae000 6681 close(47) = 0 6681 brk(0x9781000) = 0x9781000 6681 brk(0x977f000) = 0x977f000 6681 --- SIGSEGV (Segmentation fault) @ 0 (0) --- 6681 unlink("/home/hendrik/.mozilla/firefox/z8jcg1f2.default/lock") = 0 6681 rt_sigaction(SIGSEGV, {SIG_DFL}, NULL, 8) = 0 6681 rt_sigprocmask(SIG_UNBLOCK, [SEGV], NULL, 8) = 0 6681 tgkill(6681, 6681, SIGSEGV) = 0 6681 --- SIGSEGV (Segmentation fault) @ 0 (0) --- So it seems to be a problem related to font display. However, Firefox is the only application I encounter problems with. The crashes are not limited to the Wikipedia page, but this is the first URL where the crash is reproducible. This is probably related to https://bugzilla.mozilla.org/show_bug.cgi?id=320936. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.5 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages firefox depends on: ii debianutils 2.14.3 Miscellaneous utilities specific t ii fontconfig 2.3.2-2 generic font configuration library ii libatk1.0-0 1.10.3-1 The ATK accessibility toolkit ii libc6 2.3.6-1 GNU C Library: Shared libraries an ii libcairo2 1.0.2-3 The Cairo 2D vector graphics libra ii libfontconfig1 2.3.2-2 generic font configuration library ii libfreetype6 2.1.10-2 FreeType 2 font engine, shared lib ii libgcc1 1:4.0.2-5 GCC support library ii libglib2.0-0 2.8.6-1 The GLib library of C routines ii libgtk2.0-0 2.8.9-2 The GTK+ graphical user interface ii libidl0 0.8.5-1 library for parsing CORBA IDL file ii libjpeg62 6b-11 The Independent JPEG Group's JPEG ii libpango1.0-0 1.10.4-1 Layout and rendering of internatio ii libpng12-0 1.2.8rel-5 PNG library - runtime ii libstdc++6 4.0.2-5 The GNU Standard C++ Library v3 ii libx11-6 6.9.0.dfsg.1-5 X Window System protocol client li ii libxcursor1 1.1.3-1 X cursor management library ii libxext6 6.9.0.dfsg.1-5 X Window System miscellaneous exte ii libxft2 2.1.8.2-5.1 FreeType-based font drawing librar ii libxi6 6.9.0.dfsg.1-5 X Window System Input extension li ii libxinerama1 6.9.0.dfsg.1-5 X Window System multi-head display ii libxp6 6.9.0.dfsg.1-5 X Window System printing extension ii libxrandr2 6.9.0.dfsg.1-5 X Window System Resize, Rotate and ii libxrender1 1:0.9.0.2-1 X Rendering Extension client libra ii libxt6 6.9.0.dfsg.1-5 X Toolkit Intrinsics ii psmisc 21.6-1 Utilities that use the proc filesy ii zlib1g 1:1.2.3-4 compression library - runtime firefox recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
