Ubuntu
aptitude package

aptitude SIGABRT on attempting to play minesweeper

Bug #285241 reported by Catherine West
186
This bug affects 29 people
Affects Status Importance Assigned to Milestone
aptitude
Fix Released
Unknown
aptitude (Ubuntu)
Fix Released
Undecided
Unassigned
Nominated for Lucid by Jan

Bug Description

Binary package hint: aptitude

I feel silly even mentioning this as a bug, but aptitude on intrepid aborts with "Ouch! Got SIGABRT, dying.." on selecting 'Play Minesweeper' from the Actions menu.

I realize that not being able to play minesweeper in a package manager is hardly of any importance with all the things going on in intrepid right now, but I always thought it was sort of a cute feature. I also believe this is the first actual crash I have ever encountered in aptitude since using it in Debian woody, so it's kind of funny that it would be in minesweeper.

Anders Kaseorg (andersk)
Changed in aptitude:
status: New → Confirmed
Revision history for this message
helix84 (helix84) wrote :

I can reproduce this on x86 Ubuntu Desktop. Attaching strace.

Revision history for this message
Manfred Georg (tharkban) wrote :

Reproduced on x86_64 Intrepid

Revision history for this message
Vernon Tang (vtang) wrote :

Here's a patch that fixes a potential (but non-exploitable) buffer overflow in cmine.cc. Since gcc on Ubuntu defines _FORTIFY_SOURCE=2 by default, the buffer overflow gets caught, and hence aborting the program, every time minesweeper is started.

Revision history for this message
António Lima (amrlima) wrote :

This bug seems that this is fixed in aptitude 0.5.1-1 which is in debian experimental now. I guess its too late to sync now?

Revision history for this message
rrichter (rrichterzittau-deactivatedaccount) wrote :
Download full text (10.9 KiB)

gdb output for aptitude amd64 (copy of the bug https://bugs.launchpad.net/bugs/331108):

Binary package hint: evolution

│Nur veraltete Paketdateien löschen │
├───────────────────────────────────────┤
*** buffer overflow detected ***: /usr/bin/aptitude terminated
├───────────────────────────────────────┤ ======= Backtrace: =========
│Root werden │ /lib/libc.so.6(__fortify_fail+0x37)[0x7fc0bedcc2c7]
│Beenden Q│ /lib/libc.so.6[0x7fc0bedca170]
└───────────────────────────────────────┘ /lib/libc.so.6[0x7fc0bedcafec]
                                                                                                                                                                                                         /lib/libc.so.6(__swprintf_chk+0x7b)[0x7fc0bedcaebb]
/usr/bin/aptitude[0x5205a9]
                           /usr/bin/aptitude[0x520dc6]
                                                      /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets6widget7displayERKNS_5styleE+0xff)[0x7fc0c029e20f]
                                                                                                                                                    /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets9multiplex5paintERKNS_5styleE+0x37a)[0x7fc0c027c48a]
                                                                                                                                                                                                                                                    /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets6widget7displayERKNS_5styleE+0xff)[0x7fc0c029e20f]
                                                                                      /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets5table5paintERKNS_5styleE+0x52)[0x7fc0c028d8d2]
                                                                                                                                                                                 /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets6widget7displayERKNS_5styleE+0xff)[0x7fc0c029e20f]
                   /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets7stacked5paintERKNS_5styleE+0x52)[0x7fc0c0287532]
                                                                                                                /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets6widget7displayERKNS_5styleE+0xff)[0x7fc0c029e20f]
                                                                                                                                                                                                              /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets7menubar5paintERKNS_5styleE+0x3d)[0x7fc0c0270e1d]
                                               /usr/lib/libcwidget.so.3(_ZN7cwidget7widgets6widget7displayERKNS_5styleE+0xff)[0x7fc0c029e20f]
                                                                                                                                             /usr/lib/libcwidget.so.3(_ZN7cwidget8toplevel9updatenowEv+0x65)[0x7fc0c023f635]
                                                                                                                                                                                   ...

Revision history for this message
Alex Valavanis (valavanisalex) wrote :

Apparently this is fixed upstream in aptitude-0.5.1-1

Alex Valavanis (valavanisalex)
Changed in aptitude:
status: Unknown → Fix Released
Revision history for this message
Алексей Капранов (Alex Kapranoff) (kkapp) wrote :

The bug is still present in Lucid Beta1.

Revision history for this message
Jan (jancborchardt-deactivatedaccount) wrote :

> The bug is still present in Lucid Beta1.

I'll have to second that.

Revision history for this message
David Futcher (bobbo) wrote :

This is still present in Maverick Alpha 1. The bug has been fixed in Debian in version 0.5.1-1 which is currently in experimental. When it hits unstable or testing, it should be synced/merged downstream. We just have to wait until it appears in Maverick.

tags: added: patch-accepted-upstream
tags: added: patch-accepted-debian
removed: patch-accepted-upstream
Revision history for this message
Anders Kaseorg (andersk) wrote :

David: You’re misreading the changelog. aptitude 0.5.1-1 was in experimental a year and a half ago. The current version is 0.6.1.5-3 in testing and 0.6.2.1-2 in unstable. The 0.6.x series has been in unstable for seven months and testing for two. We don’t need to wait for anything; someone just needs to merge the 971 lines of Ubuntu changes (or decide they are no longer needed).

Revision history for this message
Kip Warner (kip) wrote :

I confirm it under Lucid.

Revision history for this message
Alex Valavanis (valavanisalex) wrote :

Looks like aptitude 0.6.1.5-3ubuntu1 is in the build queue for Maverick. The fixed package should appear in the Maverick repositories soon, I guess.

Changed in aptitude (Ubuntu):
status: Confirmed → Fix Committed
Revision history for this message
Anders Kaseorg (andersk) wrote :

aptitude (0.6.1.5-3ubuntu1) maverick; urgency=low

  * Merge from Debian unstable, remaining changes:
    - debian/05aptitude: never autoremove kernels
    - drop aptitude-doc to Suggests
    - 03_branding.dpatch: ubuntu branding
    - 04_changelog.dpatch: take changelogs from changelogs.ubuntu.com
    - 09_ubuntu_fortify_source.dpatch: Suppress a number of warnings (turned
      into errors by -Werror) triggered by Ubuntu's default of
      -D_FORTIFY_SOURCE=2.
    - 11_ubuntu_uses_sudo.dpatch: fix status line of 'Become root' menu entry
      to not refer to su.
    - 12_point_manpage_to_doc_package.dpatch: point manpages to the correct
      place for further info
    - 13_screensize.dpatch: fix a bug that stops outputting aptitude
      downloads on big screens
    - debian/rules: build with --disable-werror
  * Dropped changes, superseded in Debian:
    - debian/control: depend on debhelper 5 or later (lintian warning)
    - aptitude-0.4.11.11/doc/fi/fixman: comment line to fix FTBFS
  * Drop 07_hide_recommends_warning.dpatch, which wasn't being applied anyway
  * Drop 10_gcc44.dpatch, apparently these headers are now being included
    elsewhere because the package no longer fails to build.
  * 01_intltool_update.dpatch: run intltool-update against the source
    directory, since the po/ directory in the upstream tarball doesn't match
    the source!
  * 12_point_manpage_to_doc_package.dpatch: German manpage is now built with
    po4a, so this is now only applicable to the Finnish manpage
  * 14_html2text_preferred.dpatch: switch back to html2text in favor of
    elinks, since html2text is in main and elinks isn't.
  * Drop dpatch, switch to 3.0 (quilt) source format

 -- Steve Langasek <email address hidden> Sun, 20 Jun 2010 01:17:51 +0000

Changed in aptitude (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.