==3259== Invalid read of size 8 ==3259== at 0x77821D0: g_string_free (gstring.c:217) ==3259== by 0x1AD33072: poppler_attachment_finalize(_GObject*) (poppler-attachment.cc:88) ==3259== by 0x74D5011: g_object_unref (gobject.c:3340) ==3259== by 0x1AAE825D: ??? (ev-poppler.cc:3924) ==3259== by 0x5093B79: ev_job_attachments_run (ev-jobs.c:473) ==3259== by 0x5095C01: ev_job_thread (ev-job-scheduler.c:184) ==3259== by 0x5095C01: ev_job_thread_proxy (ev-job-scheduler.c:217) ==3259== by 0x7788194: g_thread_proxy (gthread.c:784) ==3259== by 0x7DD06DA: start_thread (pthread_create.c:463) ==3259== by 0x810988E: clone (clone.S:95)
-- You received this bug notification because you are a member of Desktop Packages, which is subscribed to evince in Ubuntu. https://bugs.launchpad.net/bugs/1849888 Title: evince crashes (segmentation fault) when opening file rfc8655.pdf and other new-format Internet standards Status in evince package in Ubuntu: Fix Released Bug description: When trying to display the PDF file rfc8655.pdf from https://tools.ietf.org/pdf/rfc8655.pdf evince crashes: $ evince rfc8655.pdf Segmentation fault (core dumped) I would have expected the PDF file to be displayed. Instead, evince crashed and did not display the document. The built-in PDF renderer of Firefox 70.0 does display the PDF correctly. Since the segmentation fault hints at a memory management error triggered by external input this may have security implications. I did not investigate this any further. I do not set the "This bug is a security vulnerability" flag because I do not know if it really is (it probably is, but I have no proof) and I do not want this bug report to be private. $ lsb_release -rd Description: Ubuntu 18.04.3 LTS Release: 18.04 $ apt-cache policy evince evince: Installed: 3.28.4-0ubuntu1.2 Candidate: 3.28.4-0ubuntu1.2 Version table: *** 3.28.4-0ubuntu1.2 500 500 http://de.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages 500 http://security.ubuntu.com/ubuntu bionic-security/main amd64 Packages 100 /var/lib/dpkg/status 3.28.2-1 500 500 http://de.archive.ubuntu.com/ubuntu bionic/main amd64 Packages $ evince --version GNOME Document Viewer 3.28.4 $ cat /etc/lsb-release DISTRIB_ID=Ubuntu DISTRIB_RELEASE=18.04 DISTRIB_CODENAME=bionic DISTRIB_DESCRIPTION="Ubuntu 18.04.3 LTS" This is a fresh install of Ubuntu 18.04 LTS on x86-64 (the upgrade from 16.04 resulted in a non-booting system). To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1849888/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
