Ubuntu
dia package

dia tool crashes when exiting (*** glibc detected *** dia: double free or corruption)

Bug #607697 reported by Dominique Pellé
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
dia (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Binary package hint: dia

The dia tool crashes sometimes (not 100% of the times) when I quit.
I'm using Ubuntu-10.04 (Lucid Lynx) with latest updates.

$ dia --version
Dia version 0.97.1, compiled 22:05:25 Mar 30 2010

I start dia from a shell. I edit something, I save, I quit and then dia crashes (sometimes).
When crash happens, I see this on the terminal:

$ dia foo.dia
*** glibc detected *** dia: double free or corruption (!prev): 0x09a1dae0 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(+0x6b591)[0xbcb591]
/lib/tls/i686/cmov/libc.so.6(+0x6cde8)[0xbccde8]
/lib/tls/i686/cmov/libc.so.6(cfree+0x6d)[0xbcfecd]
/lib/libglib-2.0.so.0(g_free+0x36)[0xdd5fc6]
/usr/lib/dia/libdb_objects.so(table_dialog_free+0x2c)[0x4abe93c]
/usr/lib/dia/libdb_objects.so(+0x5019)[0x4abb019]
/usr/lib/dia/libdia.so(destroy_object_list+0x2a)[0x7759aa]
/usr/lib/dia/libdia.so(layer_destroy+0x2f)[0x762e1f]
/usr/lib/dia/libdia.so(+0x16178)[0x763178]
/usr/lib/libgobject-2.0.so.0(g_object_unref+0x1d4)[0x2fd3f4]
dia(ddisplay_really_destroy+0x41)[0x8075931]
/usr/lib/libgobject-2.0.so.0(g_cclosure_marshal_VOID__VOID+0x7c)[0x308dcc]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x1b2)[0x2fb252]
/usr/lib/libgobject-2.0.so.0(+0x1f99d)[0x30f99d]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x754)[0x310db4]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x26)[0x311256]
/usr/lib/libgtk-x11-2.0.so.0(+0x164441)[0x4a0441]
/usr/lib/libgtk-x11-2.0.so.0(+0x2723b4)[0x5ae3b4]
/usr/lib/libgtk-x11-2.0.so.0(+0x280206)[0x5bc206]
/usr/lib/libgobject-2.0.so.0(g_object_run_dispose+0x7f)[0x2fd8bf]
/usr/lib/libgtk-x11-2.0.so.0(gtk_object_destroy+0x7e)[0x4a014e]
dia(app_exit+0x1cc)[0x806fdec]
/usr/lib/libgobject-2.0.so.0(g_cclosure_marshal_VOID__VOID+0x7c)[0x308dcc]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x1b2)[0x2fb252]
/usr/lib/libgobject-2.0.so.0(+0x1f99d)[0x30f99d]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x754)[0x310db4]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x26)[0x311256]
/usr/lib/libgtk-x11-2.0.so.0(+0x64da5)[0x3a0da5]
/usr/lib/libgtk-x11-2.0.so.0(gtk_action_activate+0x8d)[0x3a2ead]
/usr/lib/libgobject-2.0.so.0(g_cclosure_marshal_VOID__VOID+0x7c)[0x308dcc]
/usr/lib/libgobject-2.0.so.0(+0x98b9)[0x2f98b9]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x1b2)[0x2fb252]
/usr/lib/libgobject-2.0.so.0(+0x1f23a)[0x30f23a]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x754)[0x310db4]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x26)[0x311256]
/usr/lib/libgtk-x11-2.0.so.0(gtk_widget_activate+0x95)[0x5aa3e5]
/usr/lib/libgtk-x11-2.0.so.0(gtk_menu_shell_activate_item+0x120)[0x4889a0]
/usr/lib/libgtk-x11-2.0.so.0(+0x14e31f)[0x48a31f]
/usr/lib/libgtk-x11-2.0.so.0(+0x143c64)[0x47fc64]
/usr/lib/libgtk-x11-2.0.so.0(+0x13d424)[0x479424]
/usr/lib/libgobject-2.0.so.0(+0x98b9)[0x2f98b9]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x1b2)[0x2fb252]
/usr/lib/libgobject-2.0.so.0(+0x1f5e6)[0x30f5e6]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x5d3)[0x310c33]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x26)[0x311256]
/usr/lib/libgtk-x11-2.0.so.0(+0x26a636)[0x5a6636]
/usr/lib/libgtk-x11-2.0.so.0(gtk_propagate_event+0xcd)[0x471a5d]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main_do_event+0x307)[0x472e07]
/usr/lib/libgdk-x11-2.0.so.0(+0x5639a)[0x16639a]
/lib/libglib-2.0.so.0(g_main_context_dispatch+0x1d5)[0xdcd5e5]
/lib/libglib-2.0.so.0(+0x3f2d8)[0xdd12d8]
/lib/libglib-2.0.so.0(g_main_loop_run+0x187)[0xdd1817]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xb9)[0x4733c9]
dia(main+0x35)[0x80a2635]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe6)[0xb76bd6]
dia[0x805f781]
======= Memory map: ========
00110000-001a3000 r-xp 00000000 08:01 4458559 /usr/lib/libgdk-x11-2.0.so.0.2000.1
001a3000-001a5000 r--p 00093000 08:01 4458559 /usr/lib/libgdk-x11-2.0.so.0.2000.1
001a5000-001a6000 rw-p 00095000 08:01 4458559 /usr/lib/libgdk-x11-2.0.so.0.2000.1
001a6000-001bf000 r-xp 00000000 08:01 4458507 /usr/lib/libatk-1.0.so.0.3009.1
001bf000-001c0000 ---p 00019000 08:01 4458507 /usr/lib/libatk-1.0.so.0.3009.1
001c0000-001c1000 r--p 00019000 08:01 4458507 /usr/lib/libatk-1.0.so.0.3009.1
001c1000-001c2000 rw-p 0001a000 08:01 4458507 /usr/lib/libatk-1.0.so.0.3009.1
001c2000-001cc000 r-xp 00000000 08:01 4460056 /usr/lib/libpangocairo-1.0.so.0.2800.0
001cc000-001cd000 r--p 00009000 08:01 4460056 /usr/lib/libpangocairo-1.0.so.0.2800.0
001cd000-001ce000 rw-p 0000a000 08:01 4460056 /usr/lib/libpangocairo-1.0.so.0.2800.0
001ce000-00268000 r-xp 00000000 08:01 4458502 /usr/lib/libgio-2.0.so.0.2400.1
00268000-00269000 ---p 0009a000 08:01 4458502 /usr/lib/libgio-2.0.so.0.2400.1
00269000-0026a000 r--p 0009a000 08:01 4458502 /usr/lib/libgio-2.0.so.0.2400.1
0026a000-0026b000 rw-p 0009b000 08:01 4458502 /usr/lib/libgio-2.0.so.0.2400.1
0026b000-0026c000 rw-p 00000000 00:00 0
0026c000-00284000 r-xp 00000000 08:01 4458560 /usr/lib/libgdk_pixbuf-2.0.so.0.2000.1
00284000-00285000 r--p 00017000 08:01 4458560 /usr/lib/libgdk_pixbuf-2.0.so.0.2000.1
00285000-00286000 rw-p 00018000 08:01 4458560 /usr/lib/libgdk_pixbuf-2.0.so.0.2000.1
00286000-002ab000 r-xp 00000000 08:01 4460058 /usr/lib/libpangoft2-1.0.so.0.2800.0
002ab000-002ac000 r--p 00024000 08:01 4460058 /usr/lib/libpangoft2-1.0.so.0.2800.0
002ac000-002ad000 rw-p 00025000 08:01 4460058 /usr/lib/libpangoft2-1.0.so.0.2800.0
002ad000-002ed000 r-xp 00000000 08:01 4460054 /usr/lib/libpango-1.0.so.0.2800.0
002ed000-002ee000 ---p 00040000 08:01 4460054 /usr/lib/libpango-1.0.so.0.2800.0
002ee000-002ef000 r--p 00040000 08:01 4460054 /usr/lib/libpango-1.0.so.0.2800.0
002ef000-002f0000 rw-p 00041000 08:01 4460054 /usr/lib/libpango-1.0.so.0.2800.0
002f0000-0032d000 r-xp 00000000 08:01 4458499 /usr/lib/libgobject-2.0.so.0.2400.1
0032d000-0032e000 r--p 0003c000 08:01 4458499 /usr/lib/libgobject-2.0.so.0.2400.1
0032e000-0032f000 rw-p 0003d000 08:01 4458499 /usr/lib/libgobject-2.0.so.0.2400.1
0032f000-00332000 r-xp 00000000 08:01 4458500 /usr/lib/libgmodule-2.0.so.0.2400.1
00332000-00333000 r--p 00002000 08:01 4458500 /usr/lib/libgmodule-2.0.so.0.2400.1
00333000-00334000 rw-p 00003000 08:01 4458500 /usr/lib/libgmodule-2.0.so.0.2400.1
00334000-00338000 r-xp 00000000 08:01 4458501 /usr/lib/libgthread-2.0.so.0.2400.1
00338000-00339000 r--p 00003000 08:01 4458501 /usr/lib/libgthread-2.0.so.0.2400.1
00339000-0033a000 rw-p 00004000 08:01 4458501 /usr/lib/libgthread-2.0.so.0.2400.1
0033b000-0033c000 r-xp 00000000 00:00 0 [vdso]
0033c000-00709000 r-xp 00000000 08:01 4458558 /usr/lib/libgtk-x11-2.0.so.0.2000.1
00709000-0070d000 r--p 003cd000 08:01 4458558 /usr/lib/libgtk-x11-2.0.so.0.2000.1
0070d000-0070f000 rw-p 003d1000 08:01 4458558 /usr/lib/libgtk-x11-2.0.so.0.2000.1
0070f000-00711000 rw-p 00000000 00:00 0
00711000-0073f000 r-xp 00000000 08:01 4459605 /usr/lib/libfontconfig.so.1.4.4
0073f000-00740000 r--p 0002d000 08:01 4459605 /usr/lib/libfontconfig.so.1.4.4
00740000-00741000 rw-p 0002e000 08:01 4459605 /usr/lib/libfontconfig.so.1.4.4
00741000-00748000 r-xp 00000000 08:01 262309 /lib/tls/i686/cmov/librt-2.11.1.so
00748000-00749000 r--p 00006000 08:01 262309 /lib/tls/i686/cmov/librt-2.11.1.so
00749000-0074a000 rw-p 00007000 08:01 262309 /lib/tls/i686/cmov/librt-2.11.1.so
0074d000-007b8000 r-xp 00000000 08:01 396810 /usr/lib/dia/libdia.so
007b8000-007b9000 ---p 0006b000 08:01 396810 /usr/lib/dia/libdia.soAborted

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: dia 0.97.1-2ubuntu1
ProcVersionSignature: Ubuntu 2.6.32-21.32-generic 2.6.32.11+drm33.2
Uname: Linux 2.6.32-21-generic i686
Architecture: i386
Date: Tue Jul 20 13:15:34 2010
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release i386 (20100429)
ProcEnviron:
 PATH=(custom, user)
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: dia

Revision history for this message
Dominique Pellé (dominique-pelle) wrote :
Revision history for this message
penalvch (penalvch) wrote :

Dominique Pellé, thank you for reporting this and helping make Ubuntu better. However, your crash report is missing. Please follow these instructions to have apport report a new bug about your crash that can be dealt with by the automatic retracer. First, execute at a terminal:
cd /var/crash && sudo rm * ; sudo apt-get update && sudo apt-get -y upgrade && sudo service apport start force_start=1

If you are running the Ubuntu Stable Release you might need to enable apport in /etc/default/apport and restart.

Now reproduce the crash, then open your file manager, navigate to your /var/crash directory and open the crash report you wish to submit.
If this fails you will have to open a terminal and file your report with 'ubuntu-bug /var/crash/_my_crash_report.crash' where _my_crash_report.crash is the crash you would like to report. If you get an error that you aren't allowed to access this report you will have to file it with 'sudo ubuntu-bug /var/crash/_my_crash_report.crash'. If you run the command against the crash report and a window pops up asking you to report this, but then never opens a new report, you would be affected by https://bugs.launchpad.net/ubuntu/+source/apport/+bug/994921 . In order to WORKAROUND this, one would need to open the following file via a command line:
gksudo gedit /etc/apport/crashdb.conf

and comment out the line:
'problem_types': ['Bug', 'Package'],

by changing it to:
# 'problem_types': ['Bug', 'Package'],

Save, close, and try to file the crash report again via:
ubuntu-bug /var/crash/_my_crash_report.crash

I'm closing this bug report since the process outlined above will automatically open a new bug report which can then dealt with more efficiently.

Please do not attach your crash report manually to this report and reopen it.

Thank you for your understanding.

Helpful bug reporting tips:
https://wiki.ubuntu.com/ReportingBugs

Changed in dia (Ubuntu):
status: New → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.