gmusicbrowser crashes on close

Bug #1401609 reported by Thaddaeus Tintenfisch on 2014-12-11
186
This bug affects 35 people
Affects Status Importance Assigned to Milestone
gmusicbrowser (Ubuntu)
Medium
Unassigned

Bug Description

The application crashed after closing it via menu. Reproducible.

ProblemType: Crash
DistroRelease: Ubuntu 15.04
Package: gmusicbrowser 1.1.13~ds0-1ubuntu1
ProcVersionSignature: Ubuntu 3.16.0-25.33-generic 3.16.7
Uname: Linux 3.16.0-25-generic i686
ApportVersion: 2.15-0ubuntu2
Architecture: i386
CurrentDesktop: XFCE
Date: Thu Dec 11 18:01:58 2014
EcryptfsInUse: Yes
ExecutablePath: /usr/bin/gmusicbrowser
InstallationDate: Installed on 2014-12-08 (2 days ago)
InstallationMedia: Xubuntu 15.04 "Vivid Vervet" - Alpha i386 (20141208)
InterpreterPath: /usr/bin/perl
PackageArchitecture: all
ProcCmdline: /usr/bin/perl /usr/bin/gmusicbrowser
SegvAnalysis:
 Segfault happened at: 0xb70fb996: cmp 0x4(%eax),%edx
 PC (0xb70fb996) ok
 source "0x4(%eax)" (0x00000007) not located in a known VMA region (needed readable region)!
 destination "%edx" ok
SegvReason: reading NULL VMA
Signal: 11
SourcePackage: gmusicbrowser
StacktraceTop:
 ?? () from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
 g_signal_emit_valist () from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
 g_signal_emit () from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
 ?? () from /usr/lib/i386-linux-gnu/libgtk-x11-2.0.so.0
 ?? () from /usr/lib/i386-linux-gnu/libgtk-x11-2.0.so.0
Title: gmusicbrowser crashed with SIGSEGV in g_signal_emit_valist()
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: adm cdrom dip lpadmin plugdev sambashare sudo

CVE References

StacktraceTop:
 emission_find (instance=<optimized out>, detail=<optimized out>, signal_id=<optimized out>) at /build/buildd/glib2.0-2.43.1/./gobject/gsignal.c:761
 signal_emit_unlocked_R (node=0x3, node@entry=0xa784de0, detail=198312840, detail@entry=0, instance=0xbd20388, emission_return=0x0, instance_and_params=0xbfe17a80) at /build/buildd/glib2.0-2.43.1/./gobject/gsignal.c:3414
 g_signal_emit_valist (instance=0xbd20388, signal_id=11, detail=0, var_args=0xbfe17bcc "I\r2\266\067~\"\266") at /build/buildd/glib2.0-2.43.1/./gobject/gsignal.c:3286
 g_signal_emit (instance=0xbd20388, signal_id=11, detail=0) at /build/buildd/glib2.0-2.43.1/./gobject/gsignal.c:3342
 gtk_object_dispose (gobject=0xbd20388) at /build/buildd/gtk+2.0-2.24.25/gtk/gtkobject.c:421

Changed in gmusicbrowser (Ubuntu):
importance: Undecided → Medium
summary: - gmusicbrowser crashed with SIGSEGV in g_signal_emit_valist()
+ gmusicbrowser crashed with SIGSEGV in emission_find()
tags: removed: need-i386-retrace
information type: Private → Public

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in gmusicbrowser (Ubuntu):
status: New → Confirmed
Quentin Sculo (squentin) wrote :

I managed to reproduce this within VirtualBox. Turns out it is caused by the trayicon, after disabling it (in the layouts tab) it no longer crashes. The trayicon doesn't work anyway in unity, though the appindicator plugin provides some of the functionality for those interested.
I need to find a proper way to detect what kind trayicon/appindicator is supported by the desktop.

Chris Hermansen (c-hermansen) wrote :

Apparently this is the same bug as https://bugs.launchpad.net/ubuntu/+source/gmusicbrowser/+bug/1401609 which I find a bit odd because the latter occurs in a different place in the code than this one. But anyway...

I have been using gmusicbrowser a bit today and I haven't had the crash.

I *think* I may have caused it by double-clicking the (X) button.

Chris Hermansen (c-hermansen) wrote :

Sorry an error on my part in the preceding comment, it is the same as https://bugs.launchpad.net/ubuntu/+source/gmusicbrowser/+bug/1438026

Quentin Sculo (squentin) wrote :

I've investigated this a bit, this is more complicated that I thought. This crash happens in the global destruction, once the program itself is finished. A few parts of the code can cause it to crash, though not every time. I tracked down 3 locations (one is the trayicon) but there is at least 1 more, maybe more. I can change the code a bit in these locations to avoid the crash, but I don't really want to commit that, as they are not really bugs in my code.

These crashes did not happen before, I've reproduced it in a VM with the ubuntu 15.04 cd, but I can't reproduce it with the 14.10 cd. So something has changed, but I don't know what: I've reproduced it on 15.04 with old versions or gmb, of perl and of the main perl modules I use, so it's something else, maybe a C library used by perl, I don't know.

summary: - gmusicbrowser crashed with SIGSEGV in emission_find()
+ gmusicbrowser crashes on close
movwf0x0c (movwf0x0c) wrote :
Download full text (1.3 MiB)

Here's strace report:
execve("/usr/bin/gmusicbrowser", ["gmusicbrowser"], [/* 60 vars */]) = 0
brk(0) = 0x84b1000
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
mmap2(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb774a000
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size=72506, ...}) = 0
mmap2(NULL, 72506, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb7738000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/i386-linux-gnu/libdl.so.2", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220\n\0\0004\0\0\0"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size=13808, ...}) = 0
mmap2(NULL, 16512, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0xb7733000
mmap2(0xb7736000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0xb7736000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/i386-linux-gnu/libm.so.6", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177ELF\1\1\1\3\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\320E\0\0004\0\0\0"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size=309156, ...}) = 0
mmap2(NULL, 311456, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0xb76e6000
mmap2(0xb7731000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x4a000) = 0xb7731000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/i386-linux-gnu/libpthread.so.0", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177ELF\1\1\1\3\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220O\0\0004\0\0\0"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0755, st_size=137044, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb76e5000
mmap2(NULL, 115404, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0xb76c8000
mmap2(0xb76e1000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x18000) = 0xb76e1000
mmap2(0xb76e3000, 4812, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb76e3000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/i386-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177ELF\1\1\1\3\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220\210\1\0004\0\0\0"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0755, st_size=1807496, ...}) = 0
mmap2(NULL, 1814236, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0xb750d000
mmap2(0xb76c1000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1b3000) = 0xb76c1000
mmap2(0xb76c6000, 7900, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb76c6000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/i386-linux-gnu/libcrypt.so.1", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177...

Le Gluon Du Net (legluondunet) wrote :

I have this crash on Ubuntu 15.10 too.

Ubuntu QA Website (ubuntuqa) wrote :

This bug has been reported on the Ubuntu ISO testing tracker.

A list of all reports related to this bug can be found here:
http://iso.qa.ubuntu.com/qatracker/reports/bugs/1401609

tags: added: iso-testing
Kev Bowring (flocculant) on 2015-09-23
tags: added: wily xubuntu-exp
wgroiss (wolfgang-groiss-gmx) wrote :

me too on xubuntu 15.10. Just after stopping playing and then closing the application

Ubuntu QA Website (ubuntuqa) wrote :

This bug has been reported on the Ubuntu Package testing tracker.

A list of all reports related to this bug can be found here:
http://packages.qa.ubuntu.com/qatracker/reports/bugs/1401609

tags: added: package-qa-testing
Hicks (hickscorp) wrote :

Me too, on 15.10.

Hairong Zhu (hrzhu) wrote :

I had this bug when I first installed Xubuntu 16.04. Now the problem seems gone, I can't reproduce it for now. Some recent update might have fixed the bug. Can anyone using 16.04 confirm this?

Hairong Zhu (hrzhu) wrote :

Well it still crashes on close if I enable tray icon. If I remember correctly, tray icon is disabled by default on Xubuntu. I didn't need to enable it to trigger the bug.

Kev Bowring (flocculant) wrote :

@hrzhu - when did you first install 16.04? Not sure what's going on with your installation - gmb hasn't been seeded with this release for some time.

Hairong Zhu (hrzhu) wrote :

^ On 2016-01-04. Not sure if it's related, I receive an alsa upgrade today, since then gmusic browser haven't crashed on close with tray icon disabled, which is default setting.

Roman Spirgi (the-ant-gmx) wrote :
Download full text (5.4 KiB)

This bug doesn't occur anymore on my Fedora 23 installation since a few days - maybe a Perl update did fix the issue?!

Cheers,
Roman

---

Current output of perl -V:
Summary of my perl5 (revision 5 version 22 subversion 1) configuration:

  Platform:
    osname=linux, osvers=4.3.5-300.fc23.x86_64, archname=x86_64-linux-thread-multi
    uname='linux buildvm-19.phx2.fedoraproject.org 4.3.5-300.fc23.x86_64 #1 smp mon feb 1 03:18:41 utc 2016 x86_64 x86_64 x86_64 gnulinux '
    config_args='-des -Doptimize=none -Dccflags=-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic -Dldflags=-Wl,-z,relro -Dccdlflags=-Wl,--enable-new-dtags -Wl,-z,relro -Dlddlflags=-shared -Wl,-z,relro -Dshrpdir=/usr/lib64 -DDEBUGGING=-g -Dversion=5.22.1 -Dmyhostname=localhost -Dperladmin=root@localhost -Dcc=gcc -Dcf_by=Red Hat, Inc. -Dprefix=/usr -Dvendorprefix=/usr -Dsiteprefix=/usr/local -Dsitelib=/usr/local/share/perl5 -Dsitearch=/usr/local/lib64/perl5 -Dprivlib=/usr/share/perl5 -Dvendorlib=/usr/share/perl5/vendor_perl -Darchlib=/usr/lib64/perl5 -Dvendorarch=/usr/lib64/perl5/vendor_perl -Darchname=x86_64-linux-thread-multi -Dlibpth=/usr/local/lib64 /lib64 /usr/lib64 -Duseshrplib -Dusethreads -Duseithreads -Dusedtrace=/usr/bin/dtrace -Duselargefiles -Dd_semctl_semun -Di_db -Ui_ndbm -Di_gdbm -Di_shadow -Di_syslog -Dman3ext=3pm -Duseperlio -Dinstallusrbinperl=n -Ubincompat5005 -Uversiononly -Dpager=/usr/bin/less -isr -Dd_gethostent_r_proto -Ud_endhostent_r_proto -Ud_sethostent_r_proto -Ud_endprotoent_r_proto -Ud_setprotoent_r_proto -Ud_endservent_r_proto -Ud_setservent_r_proto -Dscriptdir=/usr/bin -Dusesitecustomize'
    hint=recommended, useposix=true, d_sigaction=define
    useithreads=define, usemultiplicity=define
    use64bitint=define, use64bitall=define, uselongdouble=undef
    usemymalloc=n, bincompat5005=undef
  Compiler:
    cc='gcc', ccflags ='-D_REENTRANT -D_GNU_SOURCE -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic -fwrapv -fno-strict-aliasing -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64',
    optimize=' -g',
    cppflags='-D_REENTRANT -D_GNU_SOURCE -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic -fwrapv -fno-strict-aliasing -I/usr/local/include'
    ccversion='', gccversion='5.3.1 20151207 (Red Hat 5.3.1-2)', gccosandvers=''
    intsize=4, longsize=8, ptrsize=8, doublesize=8, byteorder=12345678, doublekind=3
    d_longlong=define, longlongsize=8, d_longdbl=define, longdblsize=16, longdblkind=3
    ivtype='long', ivsize=8, nvtype='double', nvsize=8, Off_t='off_t', lseeksize=8
    alignbytes=8, prototype=define
  Linker and Libraries:
    ld='gcc', ldflags ='-Wl,-z,relro -fstack-protector-strong -L/usr/local/lib'
    libpth=/usr/local/lib64 /lib64 /usr/lib64 /usr/local/lib /usr/lib /lib/../lib64 /usr/lib/../lib64 /lib
    libs=-lpthread -lresolv -lnsl -lgdbm -ldb -ldl -l...

Read more...

no longer affects: gmusicbrowser (Fedora)
Majestyx (majestyx) wrote :
Tony Diep (tonydiep) wrote :

BTW: I can confirm this bug on Fedora 24 and Fedora 25 as well. Every time I exit gmusicbrowser, there's a notification that gmusicbrowser crashed.

Paul White (paulw2u) wrote :

I'm also seeing this on Xubuntu 17.04

tags: added: zesty
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.