Public bug reported:
Binary package hint: centerim
Client segfaults when sending? forwarded message (event)
Steps to reproduce:
* One other user is online, select user and press Ctrl-O (view message history)
* Select a message from this user
* Select Fwd
* Mark the sender itself as recipient
* Press return (shows "Outgoing message" screen)
* Press return again: segfaults
#0 0x080ba1d5 in ?? ()
#1 0x080fe4b7 in ?? ()
#2 0x081b21f2 in ?? ()
#3 0x08101a3c in ?? ()
#4 0x08055f12 in ?? ()
#5 0x0805654b in ?? ()
#6 0x0805753d in ?? ()
#7 0x0805766f in ?? ()
#8 0x080fe67f in ?? ()
#9 0x081b23e0 in ?? ()
#10 0x080fbdbc in ?? ()
#11 0x0805b978 in ?? ()
#12 0x0805d82f in ?? ()
#13 0x08107f07 in ?? ()
#14 0xb7be0450 in __libc_start_main () from /lib/tls/i686/cmov/libc.so.6
#15 0x0804e631 in ?? ()
(gdb) info registers
eax 0x8323340 137507648
ecx 0x0 0
edx 0x8384e58 137907800
ebx 0xd 13
esp 0xbff6b428 0xbff6b428
ebp 0xbff6b428 0xbff6b428
esi 0xbff6b52c -1074350804
edi 0x8396e61 137981537
eip 0x80ba1d5 0x80ba1d5
eflags 0x210246 [ PF ZF IF RF ID ]
cs 0x73 115
ss 0x7b 123
ds 0x7b 123
es 0x7b 123
fs 0x0 0
gs 0x33 51
(gdb) x/64b 0x080ba1b0
0x80ba1b0: 0x55 0x08 0x0f 0xb6 0x44 0x10 0x4d 0x5d
0x80ba1b8: 0xc3 0x90 0x55 0x89 0xe5 0x8b 0x4d 0x10
0x80ba1c0: 0x8b 0x55 0x08 0x8b 0x45 0x0c 0x88 0x4c
0x80ba1c8: 0x02 0x4d 0x5d 0xc3 0x55 0x89 0xe5 0x8b
0x80ba1d0: 0x45 0x08 0x8b 0x55 0x0c 0x0f 0xb6 0x44
0x80ba1d8: 0x10 0x61 0x5d 0xc3 0x55 0x89 0xe5 0x8b
0x80ba1e0: 0x4d 0x10 0x8b 0x55 0x08 0x8b 0x45 0x0c
0x80ba1e8: 0x88 0x4c 0x02 0x61 0x5d 0xc3 0x55 0x89
0x080ba1b8: ret
0x080ba1b9: nop
0x080ba1ba: push %ebp
0x080ba1bb: mov %esp,%ebp
0x080ba1bd: mov 0x10(%ebp),%ecx
0x080ba1c0: mov 0x8(%ebp),%edx
0x080ba1c3: mov 0xc(%ebp),%eax
0x080ba1c6: mov %cl,0x4d(%edx,%eax,1)
0x080ba1ca: pop %ebp
0x080ba1cb: ret
0x080ba1cc: push %ebp
0x080ba1cd: mov %esp,%ebp
0x080ba1cf: mov 0x8(%ebp),%eax
0x080ba1d2: mov 0xc(%ebp),%edx
0x080ba1d5: movzbl 0x61(%eax,%edx,1),%eax
0x080ba1da: pop %ebp
0x080ba1db: ret
0x080ba1dc: push %ebp
0x080ba1dd: mov %esp,%ebp
0x080ba1df: mov 0x10(%ebp),%ecx
0x080ba1e2: mov 0x8(%ebp),%edx
Code from centerim binary:
xxd /usr/bin/centerim | grep -5 "c390 5589 e58b 4d10"
0072160: 5589 e58b 550c 8b45 0888 5042 5dc3 5589 U...U..E..PB].U.
0072170: e58b 550c 8b45 0888 5043 5dc3 5589 e58b ..U..E..PC].U...
0072180: 550c 8b45 0888 5035 5dc3 5589 e58b 550c U..E..P5].U...U.
0072190: 8b45 0888 5038 5dc3 5589 e58b 450c 83f8 .E..P8].U...E...
00721a0: 0674 0583 f809 7507 b800 0000 00eb 088b .t....u.........
00721b0: 5508 0fb6 4410 4d5d c390 5589 e58b 4d10 U...D.M]..U...M.
00721c0: 8b55 088b 450c 884c 024d 5dc3 5589 e58b .U..E..L.M].U...
00721d0: 4508 8b55 0c0f b644 1061 5dc3 5589 e58b E..U...D.a].U...
00721e0: 4d10 8b55 088b 450c 884c 0261 5dc3 5589 M..U..E..L.a].U.
00721f0: e58b 4508 8b55 0c0f b644 106b 5dc3 5589 ..E..U...D.k].U.
0072200: e58b 4d10 8b55 088b 450c 884c 026b 5dc3 ..M..U..E..L.k].
The forwarded message did not contain any special characters.
Package: 4.22.2-1ubuntu2
** Affects: centerim (Ubuntu)
Importance: Undecided
Status: New
--
Forwarding an old message causes SEGV
https://bugs.launchpad.net/bugs/252567
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
