#584 lxappearance crashes (invalid pointer) during theme install

None
closed-fixed
7
2014-09-19
2013-07-02
No

Discovered bug when trying to import mouse cursor theme ArchCursorTheme (http://gnome-look.org/content/show.php/?content=135902).

*** Error in `lxappearance': munmap_chunk(): invalid pointer: 0x0000000000ce6e73 ***

Using gdb found that the invalid pointer was being generated by line 195 of utils.c in lxappearance: "g_free(name);".

(gdb) bt
#0 0x00007ffff4cca1c9 in raise () from /usr/lib/libc.so.6
#1 0x00007ffff4ccb5c8 in abort () from /usr/lib/libc.so.6
#2 0x00007ffff4d08037 in __libc_message () from /usr/lib/libc.so.6
#3 0x00007ffff4d0d8ae in malloc_printerr () from /usr/lib/libc.so.6
#4 0x0000000000407a18 in install_icon_theme_package (package_path=0x8d9c00 "/home/david/downloads/135902-ArchCursorTheme.tar.gz") at utils.c:195
#5 install_icon_theme (parent=<optimized out>) at utils.c:234
#6 0x00007ffff618b687 in ?? () from /usr/lib/libgobject-2.0.so.0
#7 0x00007ffff61a3778 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#8 0x00007ffff61a4462 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#9 0x00007ffff7836ad5 in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#10 0x00007ffff618b458 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#11 0x00007ffff619bc27 in ?? () from /usr/lib/libgobject-2.0.so.0
#12 0x00007ffff61a4219 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#13 0x00007ffff61a4462 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#14 0x00007ffff7835a19 in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#15 0x00007ffff78d72e5 in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#16 0x00007ffff618b458 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#17 0x00007ffff619c1cb in ?? () from /usr/lib/libgobject-2.0.so.0
#18 0x00007ffff61a3e52 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#19 0x00007ffff61a4462 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#20 0x00007ffff79e6974 in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#21 0x00007ffff78d5a94 in gtk_propagate_event () from /usr/lib/libgtk-x11-2.0.so.0
#22 0x00007ffff78d5e4b in gtk_main_do_event () from /usr/lib/libgtk-x11-2.0.so.0
#23 0x00007ffff7551b1c in ?? () from /usr/lib/libgdk-x11-2.0.so.0
#24 0x00007ffff57e4da6 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#25 0x00007ffff57e50f8 in ?? () from /usr/lib/libglib-2.0.so.0
#26 0x00007ffff57e54fa in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
#27 0x00007ffff78d4f37 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#28 0x0000000000404dca in main (argc=1, argv=0x7fffffffea18) at lxappearance.c:579

I think the cause is explained here: http://www.gtk.org/api/2.6/glib/glib-File-Utilities.html#g-dir-read-name (the result of g_dir_read_name() should not be freed).

Discussion

  • - 2013-07-02

    full stdout and gdb output

     
  • Lonely Stranger

    Lonely Stranger - 2014-09-19

    I believe this issue is completely fixed in the most recent release of LXAppearance (0.5.6). Try it, please, when it's possible for you and leave a comment if issue wasn't solved to reopen the report. Thank you very much.

     
  • Lonely Stranger

    Lonely Stranger - 2014-09-19
    • status: open --> closed-fixed
    • assigned_to: Lonely Stranger
    • Group: -->
    • Priority: 5 --> 7
     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.





No, thanks