cupsfilter crashed with SIGSEGV in strlen()

Bug #442283 reported by Johannes on 2009-10-04
This bug affects 5 people
Affects Status Importance Assigned to Milestone
cups (Ubuntu)
Martin Pitt

Bug Description

Binary package hint: cups

cupsfilter -p /etc/cups/ppd/FS-C5100DN.ppd /etc/fstab crashes...
It seems to crash with every ppd-file.
release: Karmic with latest updates from fourth of october
  Installiert: 1.4.1-4
  Kandidat: 1.4.1-4
 *** 1.4.1-4 0
        500 karmic/main Packages
        100 /var/lib/dpkg/status
I think I Expected a pdf with printpreview insted I got a sigsegv :)
Since upgrade to karmic the printer doesn't work. It just prints 4 Lines
that look like a postscript header...

ProblemType: Crash
Architecture: i386
CrashCounter: 1
Date: Sun Oct 4 16:22:13 2009
DistroRelease: Ubuntu 9.10
ExecutablePath: /usr/sbin/cupsfilter
Lpstat: device for FS-C5100DN: lpd://
 Bus 003 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
 Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
 Bus 002 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
MachineType: ASUSTeK Computer INC. A7N8X
NonfreeKernelModules: nvidia
Package: cups 1.4.1-4
Papersize: a4
PpdFiles: FS-C5100DN: Kyocera FS-C5100DN (KPDL)
ProcCmdLine: root=UUID=a8ba4faf-d9fc-4177-af7b-f8728bc85e11 ro quiet splash
ProcCmdline: cupsfilter -p /etc/cups/ppd/FS-C5100DN.ppd /etc/fstab
 PATH=(custom, user)
ProcVersionSignature: Ubuntu 2.6.31-11.38-generic
 Segfault happened at: 0x1a0f43 <strlen+51>: mov (%eax),%ecx
 PC (0x001a0f43) ok
 source "(%eax)" (0x00000000) not located in a known VMA region (needed readable region)!
 destination "%ecx" ok
SegvReason: reading NULL VMA
Signal: 11
SourcePackage: cups
 strlen () from /lib/tls/i686/cmov/
 strdup () from /lib/tls/i686/cmov/
 ?? () from /usr/sbin/cupsfilter
 main () from /usr/sbin/cupsfilter
Title: cupsfilter crashed with SIGSEGV in strlen()
Uname: Linux 2.6.31-11-generic i686
UserGroups: adm admin audio cdrom dialout dip disk floppy fuse lpadmin netdev plugdev powerdev pulse sambashare scanner video 11/25/2002
dmi.bios.vendor: Phoenix Technologies, LTD
dmi.bios.version: ASUS A7N8X ACPI BIOS Rev 1020 Beta 002 A7N8X
dmi.board.vendor: ASUSTeK Computer INC.
dmi.board.version: REV 1.xx
dmi.chassis.asset.tag: Asset-1234567890
dmi.chassis.type: 3
dmi.chassis.vendor: Chassis Manufactture
dmi.chassis.version: Chassis Version
dmi.modalias: dmi:bvnPhoenixTechnologies,LTD:bvrASUSA7N8XACPIBIOSRev1020Beta002:bd11/25/2002:svnASUSTeKComputerINC.:pnA7N8X:pvrREV1.xx:rvnASUSTeKComputerINC.:rnA7N8X:rvrREV1.xx:cvnChassisManufactture:ct3:cvrChassisVersion: A7N8X
dmi.product.version: REV 1.xx
dmi.sys.vendor: ASUSTeK Computer INC.

Related branches

Johannes (hummlbach) wrote :
Johannes (hummlbach) on 2009-10-04
visibility: private → public

StacktraceTop:strlen () at ../sysdeps/i386/i486/strlen.S:69
*__GI___strdup (s=0x0) at strdup.c:42
?? () from /usr/sbin/cupsfilter
main () from /usr/sbin/cupsfilter

Changed in cups (Ubuntu):
importance: Undecided → Medium
tags: removed: need-i386-retrace
Till Kamppeter (till-kamppeter) wrote :

Crashes even with a PPD file which does not exist.

Till Kamppeter (till-kamppeter) wrote :
Changed in cups (Ubuntu):
status: New → Confirmed
Changed in cups:
status: New → Confirmed
Till Kamppeter (till-kamppeter) wrote :

The bug was in the Ubuntu/Debian patch for determining the RIP Cache size dynamically. Fixed in the BZR repository of the CUPS package at Debian. This fix will be in the next CUPS package of Ubuntu Lucid.

Changed in cups:
status: Confirmed → Invalid
Changed in cups (Ubuntu):
status: Confirmed → Fix Committed
assignee: nobody → Martin Pitt (pitti)
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package cups - 1.4.2-8

cups (1.4.2-8) unstable; urgency=low

  [ Till Kamppeter ]
  * dynamic-default-ripcache-size.dpatch: Fixed the copy of thr new function
    cupsdDefaultRIPCacheSize() which goes into the cupsfilter utility. It did
    not return its result and made cupsfilter segfaulting independent of the
    input (LP: #442283).

  [ Martin Pitt ]
  * debian/control: Update libjpeg62-dev build/binary dependency to
    libjpeg8-dev | libjpeg-dev. (Closes: #569230)
  * Acknowledge Bdale Garbee's NMU to work around bad pdftotext behaviour due
    to a bug in ttf-freefont. This has been worked around in texttopdf itself
    in the previous upload (see LP #447961). (Closes: #519643)
 -- Martin Pitt <email address hidden> Thu, 11 Feb 2010 14:26:33 +0100

Changed in cups (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Duplicates of this bug

Other bug subscribers