Ubuntu
bash package

bash crashed with SIGSEGV in _IO_vfprintf_internal()

Bug #946401 reported by Dmitry Shachnev
18
This bug affects 3 people
Affects Status Importance Assigned to Milestone
bash (Ubuntu)
Confirmed
Medium
Unassigned

Bug Description

Paste of my session log ("fg &" was an accident mistake, I wanted just "fg"):

mandriver@mandriver-laptop:~/Desktop/testdir$ firefox html/index.html
^Z
[1]+ Stopped firefox html/index.html
mandriver@mandriver-laptop:~/Desktop/testdir$ python3 ~/retext-git/wpgen/wpgen.py usestyle SimpleGrey
mandriver@mandriver-laptop:~/Desktop/testdir$ fg &
[2] 29080
mandriver@mandriver-laptop:~/Desktop/testdir$ fg
firefox html/index.html
Stopped
[2] Segmentation fault (core dumped) fg
mandriver@mandriver-laptop:~/Рабочий стол/testdir$

ProblemType: Crash
DistroRelease: Ubuntu 12.04
Package: bash 4.2-1ubuntu1
ProcVersionSignature: Ubuntu 3.2.0-17.27-generic 3.2.6
Uname: Linux 3.2.0-17-generic i686
ApportVersion: 1.94-0ubuntu1
Architecture: i386
Date: Sun Mar 4 19:09:17 2012
ExecutablePath: /bin/bash
InstallationMedia: Ubuntu 10.04 "Lucid Lynx" - Beta i386 (20100318)
ProcCmdline: bash
SegvAnalysis:
 Segfault happened at: 0x889a14 <_IO_vfprintf_internal+12836>: repnz scas %es:(%edi),%al
 PC (0x00889a14) ok
 source "%es:(%edi)" (0xffff03fa) not located in a known VMA region (needed readable region)!
 destination "%al" ok
SegvReason: reading unknown VMA
Signal: 11
SourcePackage: bash
StacktraceTop:
 _IO_vfprintf_internal (s=0x9e6980, format=<optimized out>, ap=0xbfbfc478 "\b.\227\b") at vfprintf.c:1621
 ___vfprintf_chk (fp=0x9e6980, flag=1, format=0xb7454cb1 <Address 0xb7454cb1 out of bounds>, ap=0xbfbfc474 "\177\003\377\377\b.\227\b") at vfprintf_chk.c:35
 builtin_error ()
 fg_builtin ()
 ?? ()
Title: bash crashed with SIGSEGV in _IO_vfprintf_internal()
UpgradeStatus: Upgraded to precise on 2012-02-10 (23 days ago)
UserGroups: adm admin audio cdrom dialout dip fax floppy fuse lpadmin netdev nopasswdlogin plugdev sambashare tape video

See original description
Revision history for this message
Dmitry Shachnev (mitya57) wrote :
visibility: private → public
Revision history for this message
Apport retracing service (apport) wrote :

StacktraceTop:
 _IO_vfprintf_internal (s=0x9e6980, format=<optimized out>, ap=0xbfbfc478 "\b.\227\b") at vfprintf.c:1621
 ___vfprintf_chk (fp=0x9e6980, flag=1, format=0xb7454cb1 <Address 0xb7454cb1 out of bounds>, ap=0xbfbfc474 "\177\003\377\377\b.\227\b") at vfprintf_chk.c:35
 vfprintf (__ap=0xbfbfc474 "\177\003\377\377\b.\227\b", __fmt=0xb7454cb1 <Address 0xb7454cb1 out of bounds>, __stream=<optimized out>) at /usr/include/i386-linux-gnu/bits/stdio2.h:128
 builtin_error (format=0xb7454cb1 <Address 0xb7454cb1 out of bounds>) at ../../bash/builtins/common.c:122
 fg_builtin (list=0x0) at ../../bash/builtins/../../bash/builtins/fg_bg.def:68

Revision history for this message
Apport retracing service (apport) wrote : Stacktrace.txt
Revision history for this message
Apport retracing service (apport) wrote : ThreadStacktrace.txt
Changed in bash (Ubuntu):
importance: Undecided → Medium
tags: removed: need-i386-retrace
Dmitry Shachnev (mitya57)
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in bash (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.