Ubuntu
webkitgtk package

liferea crashed with SIGSEGV in operator->()

Bug #1560383 reported by Adolfo Jayme Barrientos
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
webkitgtk (Ubuntu)
New
Medium
Unassigned

Bug Description

Seems I’ve made it run out of memory with three open tabs…

ProblemType: Crash
DistroRelease: Ubuntu 16.04
Package: liferea 1.10.17-1ubuntu2
ProcVersionSignature: Ubuntu 4.4.0-13.29-generic 4.4.5
Uname: Linux 4.4.0-13-generic x86_64
ApportVersion: 2.20-0ubuntu3
Architecture: amd64
CurrentDesktop: Unity
Date: Tue Mar 22 01:19:27 2016
ExecutablePath: /usr/bin/liferea
InstallationDate: Installed on 2015-09-12 (191 days ago)
InstallationMedia: Ubuntu 15.10 "Wily Werewolf" - Alpha amd64 (20150820)
ProcCmdline: liferea -w shown
SegvAnalysis:
 Segfault happened at: 0x7f65d71b4968 <_ZNK3JSC6JSCell11toPrimitiveEPNS_9ExecStateENS_22PreferredPrimitiveTypeE+8>: mov (%rdi),%rax
 PC (0x7f65d71b4968) ok
 source "(%rdi)" (0xffffffff) not located in a known VMA region (needed readable region)!
 destination "%rax" ok
SegvReason: reading unknown VMA
Signal: 11
SourcePackage: liferea
StacktraceTop:
 JSC::JSCell::toPrimitive(JSC::ExecState*, JSC::PreferredPrimitiveType) const () from /usr/lib/x86_64-linux-gnu/libjavascriptcoregtk-3.0.so.0
 JSC::JSValue::toStringSlowCase(JSC::ExecState*) const () from /usr/lib/x86_64-linux-gnu/libjavascriptcoregtk-3.0.so.0
 ?? () from /usr/lib/x86_64-linux-gnu/libjavascriptcoregtk-3.0.so.0
 ?? () from /usr/lib/x86_64-linux-gnu/libjavascriptcoregtk-3.0.so.0
 ?? ()
Title: liferea crashed with SIGSEGV in JSC::JSCell::toPrimitive()
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: adm cdrom dip lpadmin plugdev sambashare sudo

Revision history for this message
Adolfo Jayme Barrientos (fitojb) wrote :
Revision history for this message
Apport retracing service (apport) wrote :

StacktraceTop:
 operator-> (this=0xffffffff) at ../Source/JavaScriptCore/runtime/WriteBarrier.h:123
 isString (this=0xffffffff) at ../Source/JavaScriptCore/runtime/JSCellInlines.h:124
 JSC::JSCell::toPrimitive (this=0xffffffff, exec=exec@entry=0x7f6567b7fb58, preferredType=preferredType@entry=JSC::PreferString) at ../Source/JavaScriptCore/runtime/JSCell.cpp:128
 JSC::JSValue::toStringSlowCase (this=<optimized out>, exec=0x7f6567b7fb58) at ../Source/JavaScriptCore/runtime/JSCJSValue.cpp:312
 JSC::getByVal (exec=0x7f6567b7fb58, baseValue=..., subscript=..., returnAddress=...) at ../Source/JavaScriptCore/jit/JITOperations.cpp:1383

Revision history for this message
Apport retracing service (apport) wrote : Stacktrace.txt
Revision history for this message
Apport retracing service (apport) wrote : StacktraceSource.txt
Revision history for this message
Apport retracing service (apport) wrote : ThreadStacktrace.txt
Changed in liferea (Ubuntu):
importance: Undecided → Medium
summary: - liferea crashed with SIGSEGV in JSC::JSCell::toPrimitive()
+ liferea crashed with SIGSEGV in operator->()
tags: removed: need-amd64-retrace
Adolfo Jayme Barrientos (fitojb)
information type: Private → Public
Revision history for this message
Paul Gevers (paul-climbing) wrote :

Forwarded upstream: https://github.com/lwindolf/liferea/issues/327

Revision history for this message
Paul Gevers (paul-climbing) wrote :

As per liferea upstream investigation, this problem lies with webgitgtk

affects: liferea (Ubuntu) → webkitgtk (Ubuntu)
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.