Ubuntu
poppler package

evince crashed with SIGSEGV in cairo_transform()

Bug #312989 reported by Muelli
22
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libcairo
Fix Released
Medium
poppler (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

Binary package hint: evince

Crashing PDF file is http://www.urbanvelo.org/issue11/urbanvelo11.pdf

Scroll through the PDF with spacebar. I didn't fully display the pdf, so I had to scroll through the pages before it automatically switched the pages.

ProblemType: Crash
Architecture: amd64
DistroRelease: Ubuntu 8.10
ExecutablePath: /usr/bin/evince
Package: evince 2.24.1-0ubuntu1
ProcAttrCurrent: unconfined
ProcCmdline: evince urbanvelo11.pdf
Signal: 11
SourcePackage: evince
StacktraceTop:
 cairo_transform () from /usr/lib/libcairo.so.2
 CairoOutputDev::setDefaultCTM ()
 Gfx::Gfx () from /usr/lib/libpoppler.so.3
 Page::createGfx () from /usr/lib/libpoppler.so.3
 Page::displaySlice () from /usr/lib/libpoppler.so.3
Title: evince crashed with SIGSEGV in cairo_transform()
Uname: Linux 2.6.27-9-generic x86_64
UserGroups: adm admin audio cdrom dialout dip floppy fuse kvm libvirtd lpadmin netdev plugdev powerdev scanner tty vboxusers video

See original description
Tags: apport-crash
Revision history for this message
Muelli (ubuntu-bugs-auftrags-killer) wrote :

Binary package hint: evince

Crashing PDF file is http://www.urbanvelo.org/issue11/urbanvelo11.pdf

Scroll through the PDF with spacebar. I didn't fully display the pdf, so I had to scroll through the pages before it automatically switched the pages.

ProblemType: Crash
Architecture: amd64
DistroRelease: Ubuntu 8.10
ExecutablePath: /usr/bin/evince
Package: evince 2.24.1-0ubuntu1
ProcAttrCurrent: unconfined
ProcCmdline: evince urbanvelo11.pdf
Signal: 11
SourcePackage: evince
StacktraceTop:
 cairo_transform () from /usr/lib/libcairo.so.2
 CairoOutputDev::setDefaultCTM ()
 Gfx::Gfx () from /usr/lib/libpoppler.so.3
 Page::createGfx () from /usr/lib/libpoppler.so.3
 Page::displaySlice () from /usr/lib/libpoppler.so.3
Title: evince crashed with SIGSEGV in cairo_transform()
Uname: Linux 2.6.27-9-generic x86_64
UserGroups: adm admin audio cdrom dialout dip floppy fuse kvm libvirtd lpadmin netdev plugdev powerdev scanner tty vboxusers video

Revision history for this message
Muelli (ubuntu-bugs-auftrags-killer) wrote :
Revision history for this message
Apport retracing service (apport) wrote : Symbolic stack trace

StacktraceTop:cairo_transform () from /usr/lib/libcairo.so.2
CairoOutputDev::setDefaultCTM (this=0x1470dc0,
Gfx (this=0x1875340, xrefA=<value optimized out>,
Page::createGfx (this=0x14cbb10, out=0x1470dc0,
Page::displaySlice (this=0x14cbb10, out=0x1470dc0,

Revision history for this message
Apport retracing service (apport) wrote : Symbolic threaded stack trace
Changed in evince:
importance: Undecided → Medium
Revision history for this message
Pedro Villavicencio (pedro) wrote :

libcairo crash, reassigning.

Revision history for this message
In , Sebastien Bacher (seb128) wrote :

There is a crash similar on https://bugs.launchpad.net/ubuntu/+source/libcairo/+bug/312989

"Crashing PDF file is http://www.urbanvelo.org/issue11/urbanvelo11.pdf

Scroll through the PDF with spacebar. I didn't fully display the pdf, so I had to scroll through the pages before it automatically switched the pages.

#0 0x00007f15aaaef7a4 in cairo_transform () from /usr/lib/libcairo.so.2
#1 0x00007f15ab900955 in CairoOutputDev::setDefaultCTM (this=0x1470dc0,
    ctm=0x7f159417aab0) at CairoOutputDev.cc:218
 matrix = {xx = 1, yx = 0, xy = 0, yy = -1, x0 = -0, y0 = 594}
#2 0x00007f15a7582a4c in Gfx (this=0x1875340, xrefA=<value optimized out>,
    outA=0x1470dc0, pageNum=46, resDict=<value optimized out>,
    catalogA=<value optimized out>, hDPI=72, vDPI=72, box=0x41c54e20,
    cropBox=0x0, rotate=0, abortCheckCbkA=0, abortCheckCbkDataA=0x0)
    at Gfx.cc:484
No locals.
#3 0x00007f15a75c9b8d in Page::createGfx (this=0x14cbb10, out=0x1470dc0,
    hDPI=72, vDPI=72, rotate=0, useMediaBox=<value optimized out>, crop=0,
    sliceX=<value optimized out>, sliceY=-1, sliceW=-1, sliceH=-1, printing=0,
    catalog=0x1470640, abortCheckCbk=0, abortCheckCbkData=0x0,
    annotDisplayDecideCbk=0, annotDisplayDecideCbkData=0x0) at Page.cc:381
 box = {x1 = 0, y1 = 0, x2 = 495, y2 = 594}
 gfx = (Gfx *) 0x1875340
#4 0x00007f15a75c9e04 in Page::displaySlice (this=0x14cbb10, out=0x1470dc0,
    hDPI=72, vDPI=72, rotate=<value optimized out>, useMediaBox=0, crop=1,
    sliceX=-1, sliceY=-1, sliceW=-1, sliceH=-1, printing=0, catalog=0x1470640,
    abortCheckCbk=0, abortCheckCbkData=0x0, annotDisplayDecideCbk=0,
    annotDisplayDecideCbkData=0x0) at Page.cc:410
 gfx = <value optimized out>
 obj = {type = objNone, {booln = 0, intg = 0, real = 0, string = 0x0,
    name = 0x0, array = 0x0, dict = 0x0, stream = 0x0, ref = {num = 0,
      gen = 0}, cmd = 0x0}}
 annotList = <value optimized out>
 i = <value optimized out>
#5 0x00007f15ab8f917f in _poppler_page_render (page=0x7f159c105ca0,
    cairo=0x1abd3e0, printing=0) at poppler-page.cc:529
 output_dev = (class CairoOutputDev *) 0x1470dc0
 __PRETTY_FUNCTION__ = "void _poppler_page_render(PopplerPage*, cairo_t*, GBool)"
#6 0x00007f15a36cc73d in pdf_document_render (document=<value optimized out>,
    rc=0x7f159c04d240) at ev-poppler.cc:477
 poppler_page = (PopplerPage *) 0x7f159c105ca0
 width_points = 495
 height_points = 594
 width = 608
 height = 729
#7 0x0000000000422d91 in ev_job_render_run (job=0x15c3e30) at ev-jobs.c:512
 job_render = (EvJobRender *) 0x15c3e30
 rc = <value optimized out>
#8 0x0000000000420620 in ev_job_thread_proxy (data=<value optimized out>)
    at ev-job-scheduler.c:183
 job = (EvSchedulerJob *) 0x185e7d0"

Revision history for this message
Sebastien Bacher (seb128) wrote :

The crash is similar to https://bugs.freedesktop.org/show_bug.cgi?id=17337

Changed in libcairo:
status: New → Triaged
Bug Watch Updater (bug-watch-updater)
Changed in libcairo:
status: Unknown → Confirmed
Revision history for this message
In , Carlos Garcia Campos (carlosgc) wrote :

Fixed in both master and poppler-0.10.

Thanks for reporting.

Bug Watch Updater (bug-watch-updater)
Changed in libcairo:
status: Confirmed → Fix Released
Revision history for this message
Sebastien Bacher (seb128) wrote :

the issue is fixed in jaunty

affects: libcairo (Ubuntu) → cairo (Ubuntu)
Changed in cairo (Ubuntu):
status: Triaged → Fix Released
affects: cairo (Ubuntu) → poppler (Ubuntu)
Revision history for this message
Paolo Montrasio (paolo-paolomontrasio) wrote :

I run into this bug on 8.10 (see #396905). Is there any plan to release a fix for Intrepid?

Revision history for this message
Paolo Montrasio (paolo-paolomontrasio) wrote :

It has been fixed. I can see that file in Karmic.
The bug can be closed.

Bug Watch Updater (bug-watch-updater)
Changed in libcairo:
importance: Unknown → Medium
Bug Watch Updater (bug-watch-updater)
Changed in libcairo:
importance: Medium → Unknown
Bug Watch Updater (bug-watch-updater)
Changed in libcairo:
importance: Unknown → Medium
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.