Ubuntu
gaim package

[apport] gaim crashed with SIGSEGV in malloc_consolidate() (libnotify valgrind)

Bug #89828 reported by hawkes on 2007-03-05

Affects		Status	Importance	Assigned to	Milestone
	gaim (Ubuntu)	Invalid	Medium	Unassigned

Bug Description

Binary package hint: gaim

I would bet, just another memory corruption bug

ProblemType: Crash
Architecture: amd64
CrashCounter: 1
Date: Mon Mar 5 10:02:08 2007
DistroRelease: Ubuntu 7.04
ExecutablePath: /usr/bin/gaim
Package: gaim 1:2.0.0+beta6-1ubuntu1
ProcCmdline: gaim
ProcCwd: /home/hawkes
ProcEnviron:
SHELL=/bin/bash
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/bin/X11:/usr/games
LANG=de_DE.UTF-8
Signal: 11
SourcePackage: gaim
StacktraceTop:
malloc_consolidate () from /lib/libc.so.6
_int_malloc () from /lib/libc.so.6
malloc () from /lib/libc.so.6
__alloc_dir () from /lib/libc.so.6
opendir () from /lib/libc.so.6
Uname: Linux ela 2.6.20-9-generic #2 SMP Sun Feb 25 22:59:06 UTC 2007 x86_64 GNU/Linux
UserGroups: adm admin audio cdrom dialout dip lpadmin plugdev pulse-rt scanner video

Revision history for this message

hawkes (hawkes) wrote on 2007-03-05:

CoreDump.gz Edit (2.0 MiB, application/x-gzip)
Dependencies.txt Edit (2.7 KiB, text/plain; charset="utf-8")
Disassembly.txt Edit (1.1 KiB, text/plain; charset="utf-8")
ProcMaps.txt Edit (63.1 KiB, text/plain; charset="utf-8")
ProcStatus.txt Edit (681 bytes, text/plain; charset="utf-8")
Registers.txt Edit (1022 bytes, text/plain; charset="utf-8")
Stacktrace.txt Edit (2.9 KiB, text/plain; charset="utf-8")
ThreadStacktrace.txt Edit (5.8 KiB, text/plain; charset="utf-8")

Revision history for this message

Mark Reitblatt (mark-reitblatt) wrote on 2007-03-05:

Thanks for your bug report. Could you please get a valgrind log for it? ( https://wiki.ubuntu.com/Valgrind )

Changed in gaim:
importance:	Undecided → Medium
status:	Unconfirmed → Needs Info

Revision history for this message

hawkes (hawkes) wrote on 2007-03-27:

GAIM Valgrind Log Edit (121.2 KiB, text/plain)

I'm fairly sure the bug is somewhere in the libnotify-Plugin. See attached valgrind log

Revision history for this message

Sebastien Bacher (seb128) wrote on 2007-03-27:

Thank you for your work on that, could you get an another backtrace with the --num-callers=40?

Revision history for this message

hawkes (hawkes) wrote on 2007-03-27:

Gaim Logfile with --num-callers=40 Edit (134.0 KiB, text/plain)

Here we go

Revision history for this message

Sebastien Bacher (seb128) wrote on 2007-04-02:

The log lists an error:

==5046== Invalid read of size 8
==5046== at 0x1A720BA6: _close_signal_handler (notification.c:677)
==5046== by 0x9F8673B: marshal_dbus_message_to_g_marshaller (dbus-gproxy.c:1635)
==5046== by 0x65A37D9: g_closure_invoke (gclosure.c:490)
==5046== by 0x65B3407: signal_emit_unlocked_R (gsignal.c:2440)
==5046== by 0x65B4842: g_signal_emit_valist (gsignal.c:2199)
==5046== by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046== by 0x9F87688: dbus_g_proxy_manager_filter (dbus-gproxy.c:1688)
==5046== by 0xA1A2F7F: dbus_connection_dispatch (dbus-connection.c:4267)
==5046== by 0x9F7EEA4: message_queue_dispatch (dbus-gmain.c:101)
==5046== by 0x6808A13: g_main_context_dispatch (gmain.c:2045)
==5046== by 0x680B85C: g_main_context_iterate (gmain.c:2677)
==5046== by 0x680BB69: g_main_loop_run (gmain.c:2881)
==5046== by 0x5827022: gtk_main (gtkmain.c:1177)
==5046== by 0x468630: main (gtkmain.c:816)
==5046== Address 0xC023908 is 24 bytes inside a block of size 32 free'd
==5046== at 0x4C2067E: free (vg_replace_malloc.c:233)
==5046== by 0x65C10D2: g_type_free_instance (gtype.c:1602)
==5046== by 0x65C4352: g_value_unset (gvalue.c:155)
==5046== by 0x65B487D: g_signal_emit_valist (gsignal.c:2229)
==5046== by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046== by 0x1A720BA5: _close_signal_handler (notification.c:677)
==5046== by 0x9F8673B: marshal_dbus_message_to_g_marshaller (dbus-gproxy.c:1635)
==5046== by 0x65A37D9: g_closure_invoke (gclosure.c:490)
==5046== by 0x65B3407: signal_emit_unlocked_R (gsignal.c:2440)
==5046== by 0x65B4842: g_signal_emit_valist (gsignal.c:2199)
==5046== by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046== by 0x9F87688: dbus_g_proxy_manager_filter (dbus-gproxy.c:1688)
==5046== by 0xA1A2F7F: dbus_connection_dispatch (dbus-connection.c:4267)
==5046== by 0x9F7EEA4: message_queue_dispatch (dbus-gmain.c:101)
==5046== by 0x6808A13: g_main_context_dispatch (gmain.c:2045)
==5046== by 0x680B85C: g_main_context_iterate (gmain.c:2677)
==5046== by 0x680BB69: g_main_loop_run (gmain.c:2881)
==5046== by 0x5827022: gtk_main (gtkmain.c:1177)
==5046== by 0x468630: main (gtkmain.c:816)

The log lists an error:

==5046== Invalid read of size 8
==5046==    at 0x1A720BA6: _close_signal_handler (notification.c:677)
==5046==    by 0x9F8673B: marshal_dbus_message_to_g_marshaller (dbus-gproxy.c:1635)
==5046==    by 0x65A37D9: g_closure_invoke (gclosure.c:490)
==5046==    by 0x65B3407: signal_emit_unlocked_R (gsignal.c:2440)
==5046==    by 0x65B4842: g_signal_emit_valist (gsignal.c:2199)
==5046==    by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046==    by 0x9F87688: dbus_g_proxy_manager_filter (dbus-gproxy.c:1688)
==5046==    by 0xA1A2F7F: dbus_connection_dispatch (dbus-connection.c:4267)
==5046==    by 0x9F7EEA4: message_queue_dispatch (dbus-gmain.c:101)
==5046==    by 0x6808A13: g_main_context_dispatch (gmain.c:2045)
==5046==    by 0x680B85C: g_main_context_iterate (gmain.c:2677)
==5046==    by 0x680BB69: g_main_loop_run (gmain.c:2881)
==5046==    by 0x5827022: gtk_main (gtkmain.c:1177)
==5046==    by 0x468630: main (gtkmain.c:816)
==5046==  Address 0xC023908 is 24 bytes inside a block of size 32 free'd
==5046==    at 0x4C2067E: free (vg_replace_malloc.c:233)
==5046==    by 0x65C10D2: g_type_free_instance (gtype.c:1602)
==5046==    by 0x65C4352: g_value_unset (gvalue.c:155)
==5046==    by 0x65B487D: g_signal_emit_valist (gsignal.c:2229)
==5046==    by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046==    by 0x1A720BA5: _close_signal_handler (notification.c:677)
==5046==    by 0x9F8673B: marshal_dbus_message_to_g_marshaller (dbus-gproxy.c:1635)
==5046==    by 0x65A37D9: g_closure_invoke (gclosure.c:490)
==5046==    by 0x65B3407: signal_emit_unlocked_R (gsignal.c:2440)
==5046==    by 0x65B4842: g_signal_emit_valist (gsignal.c:2199)
==5046==    by 0x65B4A12: g_signal_emit (gsignal.c:2243)
==5046==    by 0x9F87688: dbus_g_proxy_manager_filter (dbus-gproxy.c:1688)
==5046==    by 0xA1A2F7F: dbus_connection_dispatch (dbus-connection.c:4267)
==5046==    by 0x9F7EEA4: message_queue_dispatch (dbus-gmain.c:101)
==5046==    by 0x6808A13: g_main_context_dispatch (gmain.c:2045)
==5046==    by 0x680B85C: g_main_context_iterate (gmain.c:2677)
==5046==    by 0x680BB69: g_main_loop_run (gmain.c:2881)
==5046==    by 0x5827022: gtk_main (gtkmain.c:1177)
==5046==    by 0x468630: main (gtkmain.c:816)

Changed in gaim:
status:	Needs Info → Confirmed

Revision history for this message

Adam Niedling (krychek) wrote on 2008-11-30:

Feisty and gaim are not supported anymore. Please open a new bug if you get a crash with pidgin in a later version of Ubuntu.

Changed in gaim:
status:	Confirmed → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

Duplicates of this bug

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntugaim package

[apport] gaim crashed with SIGSEGV in malloc_consolidate() (libnotify valgrind)

Bug Description

Duplicates of this bug

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
gaim package