Package: xpdf Version: 3.04+git20211001-1 Severity: critial Hello.
Xpdf 3.04+git20211001-1 crashes on bookworm/sid (amd64). Crash happens on every file I tried. Rollback to 3.04+git20210103-3 solves the problem. % LANG=C gdb -f /usr/bin/xpdf.real -c core GNU gdb (Debian 10.1-2) 10.1.90.20210103-git Copyright (C) 2021 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <https://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /usr/bin/xpdf.real... Reading symbols from /usr/lib/debug/.build-id/ae/68030198caae862ab4a92d3914927ee5b2dc19.debug... [New LWP 6657] [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". Core was generated by `xpdf.real Internet_819_9_2021-scan.pdf'. Program terminated with signal SIGSEGV, Segmentation fault. #0 ComputeMetrics (rend=0x55f686580c40, text=text@entry=0x55f686580e74, byte_count=7, type=<optimized out>, which_seg=which_seg@entry=3, width=width@entry=0x7fffdb64203c, height=0x7fffdb64203e, ascent=0x0, descent=0x0, utf8=0 '\000') at XmString.c:6343 6343 XmString.c: No such file or directory. (gdb) info reg rax 0x55f6865857b0 94517304252336 rbx 0x7fffdb64203c 140736874160188 rcx 0x7 7 rdx 0x2 2 rsi 0x0 0 rdi 0x55f686580e74 94517304233588 rbp 0x55f686580c40 0x55f686580c40 rsp 0x7fffdb641d50 0x7fffdb641d50 r8 0x7fffdb641d7c 140736874159484 r9 0x7fffdb64203c 140736874160188 r10 0x0 0 r11 0x55f6864cc220 94517303493152 r12 0x7 7 r13 0x55f686580b00 94517304232704 r14 0x7fffdb64203e 140736874160190 r15 0x0 0 rip 0x7f45ec327ed8 0x7f45ec327ed8 <ComputeMetrics+504> eflags 0x10246 [ PF ZF IF RF ] cs 0x33 51 ss 0x2b 43 ds 0x0 0 es 0x0 0 fs 0x0 0 gs 0x0 0 (gdb) x/-4i $pc 0x7f45ec327ec7 <ComputeMetrics+487>: mov 0x28(%rax),%r11 0x7f45ec327ecb <ComputeMetrics+491>: lea 0x2c(%rsp),%r8 0x7f45ec327ed0 <ComputeMetrics+496>: mov %r12d,%ecx 0x7f45ec327ed3 <ComputeMetrics+499>: mov %r10,0x8(%rsp) (gdb) x/8i $pc => 0x7f45ec327ed8 <ComputeMetrics+504>: mov (%rsi),%r9d 0x7f45ec327edb <ComputeMetrics+507>: mov 0x4(%rsi),%edx 0x7f45ec327ede <ComputeMetrics+510>: mov %r9d,0x18(%rsp) 0x7f45ec327ee3 <ComputeMetrics+515>: add %edx,%r9d 0x7f45ec327ee6 <ComputeMetrics+518>: mov %edx,0x1c(%rsp) 0x7f45ec327eea <ComputeMetrics+522>: mov %rdi,%rdx 0x7f45ec327eed <ComputeMetrics+525>: mov %r11,%rdi 0x7f45ec327ef0 <ComputeMetrics+528>: mov %r9d,(%rsp) (gdb) thread apply all bt full Thread 1 (Thread 0x7f45ea75b080 (LWP 6657)): #0 ComputeMetrics (rend=0x55f686580c40, text=text@entry=0x55f686580e74, byte_count=7, type=<optimized out>, which_seg=which_seg@entry=3, width=width@entry=0x7fffdb64203c, height=0x7fffdb64203e, ascent=0x0, descent=0x0, utf8=0 '\000') at XmString.c:6343 wid = 0 hi = 0 dir = 22006 asc = 0 desc = 0 #1 0x00007f45ec330615 in OptLineMetrics (r=r@entry=0x55f686580b00, opt=opt@entry=0x55f686580e70, rend_io=rend_io@entry=0x0, base_rend=base_rend@entry=0x0, width=width@entry=0x7fffdb64203c, height=height@entry=0x7fffdb64203e, ascent=0x0, descent=0x0) at XmString.c:2448 rend_index = 3 rend = 0x55f686580c40 tags = {0x3 <error: Cannot access memory at address 0x3>} d = <optimized out> screen = 0x7fffdb641e60 prev_val = <optimized out> val = <optimized out> i = <optimized out> ref_cnt = <optimized out> rt_ref_cnt = <optimized out> tl = 0x0 tab = <optimized out> tab_cnt = <optimized out> tab_w = 0 rend_int = <optimized out> #2 0x00007f45ec3320e4 in XmStringExtent (rendertable=0x55f686580b00, string=0x55f686580e70, width=width@entry=0x7fffdb64203c, height=height@entry=0x7fffdb64203e) at XmString.c:3118 cur_width = 0 max_width = 0 cur_height = 0 line_height = 0 asc = 11160 dsc = 38774 j = <optimized out> d = <optimized out> app = <optimized out> #3 0x00007f45ec2aba47 in _XmCalcLabelDimensions (wid=wid@entry=0x55f686585220) at Label.c:788 w = 0 h = 0 newlw = 0x55f686585220 lp = 0x55f686585388 w = 0 h = 0 #4 0x00007f45ec2ac7bb in Initialize (req=0x7fffdb6421d0, new_w=0x55f686585220, args=<optimized out>, num_args=<optimized out>) at Label.c:1258 lw = 0x55f686585220 menuSTrait = <optimized out> trans = <optimized out> #5 0x00007f45ebe2e449 in CallInitialize (class=0x7f45ec49cf80 <xmLabelClassRec>, req_widget=req_widget@entry=0x7fffdb6421d0, new_widget=new_widget@entry=0x55f686585220, args=args@entry=0x7fffdb642650, num_args=<optimized out>, num_args@entry=1) at ../../src/Create.c:226 superclass = <optimized out> initialize = <optimized out> initialize_hook = <optimized out> #6 0x00007f45ebe2ee9e in xtCreate (name=name@entry=0x55f68578ae45 "h0", class=class@entry=0x0, widget_class=widget_class@entry=0x7f45ec49cf80 <xmLabelClassRec>, parent=parent@entry=0x55f686584f30, default_screen=0x55f6864c8220, args=args@entry=0x7fffdb642650, num_args=1, typed_args=0x0, num_typed_args=<optimized out>, parent_constraint_class=0x7f45ec4a15e0 <xmRowColumnClassRec>, post_proc=0x7f45ebe2e540 <widgetPostProc>) at ../../src/Create.c:415 widget_cache = {4.6697752967900435e-310, 6.9138703470227391e-310, 4.6697752967528897e-310, 8.7350806184732389e-321, 0, 4.6697752968165254e-310, 0, 2.1302848370237304e-314, 0, 0, 0, 0, 0, 0, 0, 9.8813129168249309e-324, 0, 0, 4.6697752711648347e-310, 4.6697752585422479e-310, 1.5810100666919889e-322, 0, 1.1857575500189917e-322, 6.3711879632192942e-317, 9.8813129168249309e-324, 1.2697487098120036e-321, 0, 0, 7.4763940384716208e-317, 9.8813129168249309e-324, 3.5106545919779785e-317, 9.8813129168249309e-324, 0, 0, 9.8813129168249309e-324, 0, 0, 0, 0, 0, 0, 0, 0, 1.2598673968951787e-321, 0, 4.6697752959339265e-310, 0, 8.2890455643924491e-317, 4.6697745755365119e-310, 0, 8.2567944412288701e-317, 4.6697752958983538e-310, 6.475916046299555e-319, 2.1219957909652723e-314, 9.8813129168249309e-324, 9.8813129168249309e-324, 0, 0, 0, 0, 0, 0, 6.3659873733898826e-314, 9.8813129168249309e-324, 0, 0, 0, 0, 6.9533254626194761e-310, 6.9138702743330345e-310, 0, 9.8813129168249309e-324, 4.6697745755365119e-310, 0, 4.6697745726639154e-310, 6.9138702747836718e-310, 2.6055045899083978e-319, 4.6697745755365119e-310, 4.6697752742740886e-310, 4.9406564584124654e-324, 2.1219957919534036e-314, 0, 6.9533254626194761e-310, 4.6697745726639154e-310, 6.9533254626190809e-310, 0, 7.2911220195563991e-304, 0, 4.6697752955442075e-310, 5.9515350699729122e-314, 4.6697745726639154e-310, 4.6697745726639154e-310, 4.6697752959339265e-310, 6.9138702819902615e-310, 0, 0, 4.6697752953181231e-310, 4.6697752955015203e-310, 4.6697752955031013e-310, 5.1050370395067318e-303} req_widget = 0x7fffdb6421d0 req_constraints = <optimized out> wsize = <optimized out> csize = <optimized out> widget = 0x55f686585220 cache_refs = <optimized out> call_data = {type = 0xce00 <error: Cannot access memory at address 0xce00>, widget = 0x0, args = 0x0, num_args = 0} #7 0x00007f45ebe2f322 in _XtCreateWidget (name=name@entry=0x55f68578ae45 "h0", widget_class=widget_class@entry=0x7f45ec49cf80 <xmLabelClassRec>, parent=parent@entry=0x55f686584f30, args=args@entry=0x7fffdb642650, num_args=1, typed_args=typed_args@entry=0x0, num_typed_args=0) at ../../src/Create.c:570 widget = <optimized out> cwc = <optimized out> default_screen = <optimized out> class_inited = <optimized out> params = {0x55f68578ae45 "h0", 0x55f68579b079 <XtStrings+505> "orientation", 0x55f68578ae3d "xpopple"} num_params = 1 #8 0x00007f45ebe2f5da in XtCreateWidget (name=0x55f68578ae45 "h0", widget_class=0x7f45ec49cf80 <xmLabelClassRec>, parent=0x55f686584f30, args=0x7fffdb642650, num_args=<optimized out>) at ../../src/Create.c:589 retval = <optimized out> app = <optimized out> #9 0x000055f685783527 in XPDFViewer::initAboutDialog (this=this@entry=0x55f68650ed40) at xpdf/XPDFViewer.cc:2746 scrolledWin = <optimized out> col = 0x55f686584f30 label = <optimized out> sep = <optimized out> closeBtn = <optimized out> args = {{name = 0x55f685797daf <_XmStrings+7535> "labelString", value = 94517304233584}, {name = 0x55f68579821e <_XmStrings+8670> "packing", value = 1}, {name = 0x55f68579744d <_XmStrings+5133> "bottomWidget", value = 94517304225696}, {name = 0x55f685797dc5 <_XmStrings+7557> "leftAttachment", value = 1}, {name = 0x55f6857983d7 <_XmStrings+9111> "rightAttachment", value = 1}, {name = 0x55f685798527 <_XmStrings+9447> "scrollingPolicy", value = 0}, {name = 0x55f68579badb <XtShellStrings+507> "baseHeight", value = 0}, {name = 0x55f6857977c2 <_XmStrings+6018> "deleteResponse", value = 2}, {name = 0x0, value = -7532785394753119744}, {name = 0x55f6864c7e50 "\220\324L\206\366U", value = 94517303453104}, {name = 0x55f68650ea10 "\020\355P\206\366U", value = 94517303453104}, {name = 0x7fffdb642730 "", value = 94517303497872}, {name = 0x55f6864cc220 "\240\aP\206\366U", value = 139938285827527}, {name = 0x7fffdb642790 "\001", value = 4294967296}, {name = 0x0, value = -7532785394753119744}, {name = 0xffffffffffffff00 <error: Cannot access memory at address 0xffffffffffffff00>, value = 140736874162256}, {name = 0x55f6864cc220 "\240\aP\206\366U", value = 94517289589269}, {name = 0x7fffdb642840 "\020\352P\206\366U", value = 140736874162064}, {name = 0x20 <error: Cannot access memory at address 0x20>, value = 139938285711260}, {name = 0x0, value = 94517303531376}} n = 1 i = <optimized out> s = 0x55f686580e70 buf = "\001\000\243", '\000' <repeats 16 times> #10 0x000055f685786288 in XPDFViewer::init (this=0x55f68650ed40, appA=<optimized out>, doc=0x0, fileName=0x55f68650ea10, pageA=1, destName=0x0, fullScreen=false, ownerPassword=0x0, userPassword=0x0) at xpdf/XPDFViewer.cc:282 dest = std::unique_ptr<LinkDest> = {get() = 0x0} pg = 1 z = <optimized out> #11 0x000055f6857864b2 in XPDFViewer::XPDFViewer (this=this@entry=0x55f68650ed40, appA=appA@entry=0x55f6864c24b0, fileName=fileName@entry=0x55f68650ea10, pageA=pageA@entry=1, destName=destName@entry=0x0, fullScreen=<optimized out>, ownerPassword=0x0, userPassword=0x0) at xpdf/XPDFViewer.cc:254 No locals. #12 0x000055f68576d0d6 in XPDFApp::open (this=this@entry=0x55f6864c24b0, fileName=fileName@entry=0x55f68650ea10, page=page@entry=1, dest=dest@entry=0x0, ownerPassword=ownerPassword@entry=0x0, userPassword=userPassword@entry=0x0) at xpdf/XPDFApp.cc:230 viewer = 0x55f68650ea10 #13 0x000055f68576329d in main (argc=<optimized out>, argv=<optimized out>) at xpdf/xpdf.cc:275 app = std::unique_ptr<XPDFApp> = {get() = 0x55f6864c24b0} fileName = std::unique_ptr<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >> = {get() = 0x55f68650ea10} pg = 1 destName = std::unique_ptr<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >> = {get() = 0x0} userPassword = std::unique_ptr<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >> = {get() = 0x0} ownerPassword = std::unique_ptr<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >> = {get() = 0x0} ok = <optimized out> (gdb) quit Depends: ii libc6:amd64 2.32-4 amd64 GNU C Library: Shared libraries ii libc6-dbg:amd64 2.32-4 amd64 GNU C Library: detached debugging symbols ii libc6-dev:amd64 2.32-4 amd64 GNU C Library: Development Libraries and Header Files ii libc6-i386 2.32-4 amd64 GNU C Library: 32-bit shared libraries for AMD64 ii libgcc-s1:amd64 11.2.0-9 amd64 GCC support library ii libpaper1:amd64 1.1.28+b1 amd64 library for handling paper characteristics ii libpoppler102:amd64 20.09.0-3.1 amd64 PDF rendering library ii libx11-6:amd64 2:1.7.2-2+b1 amd64 X11 client-side library ii libxt6-dbgsym:amd64 1:1.2.0-1 amd64 debug symbols for libxt6 ii libxm4:amd64 2.3.8-3 amd64 Motif - X/Motif shared library ii libxm4-dbgsym:amd64 2.3.8-3 amd64 debug symbols for libxm4 ii libxt6:amd64 1:1.2.0-1 amd64 X11 toolkit intrinsics library % uname -rv 5.8.0-2-amd64 #1 SMP Debian 5.8.10-1 (2020-09-19) -- Eugene Berdnikov
