Ubuntu
pidgin package

pidgin crashed with SIGSEGV in g_slist_last()

Bug #241233 reported by Ricardo Pérez López
6
Affects Status Importance Assigned to Milestone
pidgin (Ubuntu)
Invalid
Medium
Unassigned

Bug Description

Binary package hint: pidgin

I have Ubuntu 8.04 LTS fully updated.

I opened Pidgin for the first time, and I created an MSN account. Since then, every time I open Pidgin, it crashed.

ProblemType: Crash
Architecture: i386
Date: Thu Jun 19 11:03:43 2008
DistroRelease: Ubuntu 8.04
ExecutablePath: /usr/bin/pidgin
NonfreeKernelModules: nvidia
Package: pidgin 1:2.4.1-1ubuntu2
PackageArchitecture: i386
ProcCmdline: pidgin
ProcEnviron:
 SHELL=/bin/bash
 PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
 LANG=es_ES.UTF-8
Signal: 11
SourcePackage: pidgin
StacktraceTop:
 g_slist_last () from /usr/lib/libglib-2.0.so.0
 g_slist_append () from /usr/lib/libglib-2.0.so.0
 g_main_context_wait () from /usr/lib/libglib-2.0.so.0
 ?? () from /usr/lib/libglib-2.0.so.0
 g_main_loop_run () from /usr/lib/libglib-2.0.so.0
Title: pidgin crashed with SIGSEGV in g_slist_last()
Uname: Linux 2.6.24-19-generic i686
UserGroups: adm admin audio cdrom dialout dip floppy fuse lpadmin plugdev video

Tags: apport-crash
Revision history for this message
Ricardo Pérez López (ricardo) wrote :
Revision history for this message
Ricardo Pérez López (ricardo) wrote :
Download full text (8.4 KiB)

When I disable apport, I go the following messages:

ricardo@shoggoth:~$ pidgin
*** glibc detected *** pidgin: free(): invalid next size (fast): 0x085eeed8 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6[0xb75cda85]
/lib/tls/i686/cmov/libc.so.6(cfree+0x90)[0xb75d14f0]
/usr/lib/libglib-2.0.so.0(g_free+0x31)[0xb772e8b1]
/usr/lib/libglib-2.0.so.0(g_strfreev+0x1f)[0xb774609f]
/usr/lib/purple-2/libmsn.so(msn_command_destroy+0x85)[0xb64b7b8a]
/usr/lib/purple-2/libmsn.so(msn_command_unref+0x98)[0xb64b7c92]
/usr/lib/purple-2/libmsn.so(msn_command_destroy+0x4f)[0xb64b7b54]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_destroy+0x6a)[0xb64b7042]
/usr/lib/purple-2/libmsn.so(msn_servconn_destroy+0xdd)[0xb64c80b1]
/usr/lib/purple-2/libmsn.so(msn_notification_destroy+0x43)[0xb64c3b14]
/usr/lib/purple-2/libmsn.so(msn_session_destroy+0x74)[0xb64c8e36]
/usr/lib/purple-2/libmsn.so[0xb64bee36]
/usr/lib/libpurple.so.0(purple_connection_destroy+0x138)[0xb7824f5d]
/usr/lib/libpurple.so.0(purple_account_disconnect+0xb3)[0xb7809b64]
/usr/lib/libpurple.so.0(purple_connections_disconnect_all+0x34)[0xb7825b50]
pidgin[0x80c6066]
[0xb7f06420]
/usr/lib/libglib-2.0.so.0(g_main_context_acquire+0x5d)[0xb77284dd]
/usr/lib/libglib-2.0.so.0[0xb7729ab8]
/usr/lib/libglib-2.0.so.0(g_main_loop_run+0x1e7)[0xb772a1e7]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xb4)[0xb7be8264]
pidgin(main+0xbbc)[0x80c70d5]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe0)[0xb7578450]
pidgin[0x806c821]
======= Memory map: ========
08048000-08115000 r-xp 00000000 08:03 140053 /usr/bin/pidgin
08115000-08118000 rw-p 000cc000 08:03 140053 /usr/bin/pidgin
08118000-08613000 rw-p 08118000 00:00 0 [heap]
b5000000-b5021000 rw-p b5000000 00:00 0
b5021000-b5100000 ---p b5021000 00:00 0
b51d7000-b5237000 rw-s 00000000 00:09 10944557 /SYSV00000000 (deleted)
b5237000-b5297000 rw-s 00000000 00:09 10878988 /SYSV00000000 (deleted)
b5297000-b52b6000 r-xp 00000000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b52b6000-b52b7000 rw-p 0001e000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b52c7000-b52cb000 r-xp 00000000 08:03 164919 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b52cb000-b52cc000 rw-p 00003000 08:03 164919 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b52cc000-b53d6000 r--s 00000000 08:03 3419502 /var/lib/aspell/es.rws
b53d7000-b54db000 rw-p b53d7000 00:00 0
b54db000-b54dd000 r-xp 00000000 08:03 180589 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b54dd000-b54de000 rw-p 00001000 08:03 180589 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b54de000-b556f000 r--p 00000000 08:03 280446 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf
b556f000-b5575000 r--s 00000000 08:03 3416134 /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2
b5575000-b5578000 r--s 00000000 08:03 3419962 /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2
b5578000-b557f000 r--s 00000000 08:03 3419961 /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2
b557f000-b5582000 r--s 00000000 08:03 3419959 /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2
b5582000-b558a000 r--s 00000000 08:03 3419899 /v...

Read more...

Revision history for this message
Ricardo Pérez López (ricardo) wrote :
Download full text (8.3 KiB)

I then tried removing ~/.purple directory, and run pidgin afterwards. Here's the result:

ricardo@shoggoth:~$ pidgin
*** glibc detected *** pidgin: double free or corruption (out): 0x086e20d0 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6[0xb7654a85]
/lib/tls/i686/cmov/libc.so.6(cfree+0x90)[0xb76584f0]
/usr/lib/libglib-2.0.so.0(g_free+0x31)[0xb77b58b1]
/usr/lib/libpurple.so.0[0xb78cf72f]
/usr/lib/libpurple.so.0(purple_proxy_get_setup+0x92)[0xb78d322c]
/usr/lib/libpurple.so.0(purple_proxy_connect+0x10f)[0xb78d357a]
/usr/lib/purple-2/libmsn.so(msn_servconn_connect+0x18c)[0xb654e599]
/usr/lib/purple-2/libmsn.so(msn_notification_connect+0x78)[0xb6549ceb]
/usr/lib/purple-2/libmsn.so[0xb654bf18]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_cmd+0x1de)[0xb653d89b]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_cmd_text+0x6c)[0xb653d953]
/usr/lib/purple-2/libmsn.so[0xb654ec21]
pidgin[0x80abca3]
/usr/lib/libglib-2.0.so.0[0xb77e1c5d]
/usr/lib/libglib-2.0.so.0(g_main_context_dispatch+0x178)[0xb77adbf8]
/usr/lib/libglib-2.0.so.0[0xb77b0e5e]
/usr/lib/libglib-2.0.so.0(g_main_loop_run+0x1e7)[0xb77b11e7]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xb4)[0xb7c6f264]
pidgin(main+0xbbc)[0x80c70d5]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe0)[0xb75ff450]
pidgin[0x806c821]
======= Memory map: ========
08048000-08115000 r-xp 00000000 08:03 140053 /usr/bin/pidgin
08115000-08118000 rw-p 000cc000 08:03 140053 /usr/bin/pidgin
08118000-08712000 rw-p 08118000 00:00 0 [heap]
b4e00000-b4e21000 rw-p b4e00000 00:00 0
b4e21000-b4f00000 ---p b4e21000 00:00 0
b4fc3000-b5023000 rw-s 00000000 00:09 11894829 /SYSV00000000 (deleted)
b5023000-b5032000 r-xp 00000000 08:03 4358182 /lib/libbz2.so.1.0.4
b5032000-b5033000 rw-p 0000f000 08:03 4358182 /lib/libbz2.so.1.0.4
b5033000-b5092000 r-xp 00000000 08:03 139394 /usr/lib/libgio-2.0.so.0.0.0
b5092000-b5094000 rw-p 0005e000 08:03 139394 /usr/lib/libgio-2.0.so.0.0.0
b5094000-b50c6000 r-xp 00000000 08:03 141020 /usr/lib/libcroco-0.6.so.3.0.1
b50c6000-b50c9000 rw-p 00031000 08:03 141020 /usr/lib/libcroco-0.6.so.3.0.1
b50c9000-b50f9000 r-xp 00000000 08:03 141274 /usr/lib/libgsf-1.so.114.0.7
b50f9000-b50fc000 rw-p 0002f000 08:03 141274 /usr/lib/libgsf-1.so.114.0.7
b50fc000-b50fd000 rw-p b50fc000 00:00 0
b50fd000-b512d000 r-xp 00000000 08:03 141597 /usr/lib/librsvg-2.so.2.22.2
b512d000-b512e000 rw-p 00030000 08:03 141597 /usr/lib/librsvg-2.so.2.22.2
b512e000-b512f000 r-xp 00000000 08:03 165411 /usr/lib/gtk-2.0/2.10.0/loaders/svg_loader.so
b512f000-b5130000 rw-p 00000000 08:03 165411 /usr/lib/gtk-2.0/2.10.0/loaders/svg_loader.so
b5130000-b5133000 r--p 00000000 08:03 658481 /usr/share/locale-langpack/es/LC_MESSAGES/atk10.mo
b5133000-b5237000 rw-p b5133000 00:00 0
b5237000-b52be000 r--p 00000000 08:03 280445 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans-Bold.ttf
b52be000-b531e000 rw-s 00000000 00:09 11567151 /SYSV00000000 (deleted)
b531e000-b533d000 r-xp 00000000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b533d000-b533e000 rw-p 0001e000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b534e000-b5352000 r-xp 00000000 08:03 164919 /usr/lib/gtk-2.0...

Read more...

Revision history for this message
Ricardo Pérez López (ricardo) wrote :
Download full text (8.2 KiB)

Another crash, with different output:

ricardo@shoggoth:~$ pidgin
*** glibc detected *** pidgin: munmap_chunk(): invalid pointer: 0x086e11d8 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(cfree+0x1bb)[0xb765361b]
/usr/lib/libglib-2.0.so.0(g_free+0x31)[0xb77b08b1]
/usr/lib/libpurple.so.0[0xb78ca72f]
/usr/lib/libpurple.so.0(purple_proxy_get_setup+0x92)[0xb78ce22c]
/usr/lib/libpurple.so.0(purple_proxy_connect+0x10f)[0xb78ce57a]
/usr/lib/purple-2/libmsn.so(msn_servconn_connect+0x18c)[0xb654a599]
/usr/lib/purple-2/libmsn.so(msn_notification_connect+0x78)[0xb6545ceb]
/usr/lib/purple-2/libmsn.so[0xb6547f18]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_cmd+0x1de)[0xb653989b]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_cmd_text+0x6c)[0xb6539953]
/usr/lib/purple-2/libmsn.so[0xb654ac21]
pidgin[0x80abca3]
/usr/lib/libglib-2.0.so.0[0xb77dcc5d]
/usr/lib/libglib-2.0.so.0(g_main_context_dispatch+0x178)[0xb77a8bf8]
/usr/lib/libglib-2.0.so.0[0xb77abe5e]
/usr/lib/libglib-2.0.so.0(g_main_loop_run+0x1e7)[0xb77ac1e7]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xb4)[0xb7c6a264]
pidgin(main+0xbbc)[0x80c70d5]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe0)[0xb75fa450]
pidgin[0x806c821]
======= Memory map: ========
08048000-08115000 r-xp 00000000 08:03 140053 /usr/bin/pidgin
08115000-08118000 rw-p 000cc000 08:03 140053 /usr/bin/pidgin
08118000-08714000 rw-p 08118000 00:00 0 [heap]
b4fbe000-b501e000 rw-s 00000000 00:09 12681274 /SYSV00000000 (deleted)
b501e000-b502d000 r-xp 00000000 08:03 4358182 /lib/libbz2.so.1.0.4
b502d000-b502e000 rw-p 0000f000 08:03 4358182 /lib/libbz2.so.1.0.4
b502e000-b508d000 r-xp 00000000 08:03 139394 /usr/lib/libgio-2.0.so.0.0.0
b508d000-b508f000 rw-p 0005e000 08:03 139394 /usr/lib/libgio-2.0.so.0.0.0
b508f000-b50c1000 r-xp 00000000 08:03 141020 /usr/lib/libcroco-0.6.so.3.0.1
b50c1000-b50c4000 rw-p 00031000 08:03 141020 /usr/lib/libcroco-0.6.so.3.0.1
b50c4000-b50f4000 r-xp 00000000 08:03 141274 /usr/lib/libgsf-1.so.114.0.7
b50f4000-b50f7000 rw-p 0002f000 08:03 141274 /usr/lib/libgsf-1.so.114.0.7
b50f7000-b50f8000 rw-p b50f7000 00:00 0
b50f8000-b5128000 r-xp 00000000 08:03 141597 /usr/lib/librsvg-2.so.2.22.2
b5128000-b5129000 rw-p 00030000 08:03 141597 /usr/lib/librsvg-2.so.2.22.2
b5129000-b512a000 r-xp 00000000 08:03 165411 /usr/lib/gtk-2.0/2.10.0/loaders/svg_loader.so
b512a000-b512b000 rw-p 00000000 08:03 165411 /usr/lib/gtk-2.0/2.10.0/loaders/svg_loader.so
b512b000-b512e000 r--p 00000000 08:03 658481 /usr/share/locale-langpack/es/LC_MESSAGES/atk10.mo
b512e000-b5232000 rw-p b512e000 00:00 0
b5232000-b52b9000 r--p 00000000 08:03 280445 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans-Bold.ttf
b52b9000-b5319000 rw-s 00000000 00:09 12222509 /SYSV00000000 (deleted)
b5319000-b5338000 r-xp 00000000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b5338000-b5339000 rw-p 0001e000 08:03 141403 /usr/lib/libjpeg.so.62.0.0
b5349000-b534d000 r-xp 00000000 08:03 164919 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b534d000-b534e000 rw-p 00003000 08:03 164919 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b534e000-b5458000 r--s 000000...

Read more...

Revision history for this message
Ricardo Pérez López (ricardo) wrote :

Interestingly, Pidgin works for me when I use a Jabber account, so the problem seems to be on the MSN side.

Revision history for this message
Apport retracing service (apport) wrote : Symbolic stack trace

StacktraceTop:IA__g_slist_last (list=0x63656c65) at /build/buildd/glib2.0-2.16.3/glib/gslist.c:692
IA__g_slist_append (list=0xb7dfa08b, data=0x63656c65)
IA__g_main_context_wait (context=0x81863d8, cond=0xb7277170, mutex=0x81863dc)
g_main_context_iterate (context=0x81863d8, block=1, dispatch=1, self=0x8118190)
IA__g_main_loop_run (loop=0x85d7c30) at /build/buildd/glib2.0-2.16.3/glib/gmain.c:2850

Revision history for this message
Apport retracing service (apport) wrote : Symbolic threaded stack trace
Changed in pidgin:
importance: Undecided → Medium
Revision history for this message
Sebastien Bacher (seb128) wrote :

Thank you for taking the time to report this bug and helping to make Ubuntu better. Please try to obtain a valgrind log following the instructions at https://wiki.ubuntu.com/Valgrind and attach the file to the bug report. This will greatly help us in tracking down your problem.

Changed in pidgin:
status: New → Incomplete
Revision history for this message
Pedro Villavicencio (pedro) wrote :

We are closing this bug report because it lacks the information we need to investigate the problem, as described in the previous comments. Please reopen it if you can give us the missing information, and don't hesitate to submit bug reports in the future. To reopen the bug report you can click on the current status, under the Status column, and change the Status back to New. Thanks again!.

Changed in pidgin:
status: Incomplete → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.