After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 531664 - crash when pressing page down on PDF document
crash when pressing page down on PDF document
Status: RESOLVED NOTGNOME
Product: evince
Classification: Core
Component: general
2.22.x
Other All
: Normal critical
: ---
Assigned To: Evince Maintainers
Evince Maintainers
Depends on:
Blocks:
 
 
Reported: 2008-05-06 05:04 UTC by Mikel Ward
Modified: 2009-11-05 08:48 UTC
See Also:
GNOME target: ---
GNOME version: 2.21/2.22

Attachments
PDF that causes the problem (555.37 KB, application/pdf)
2008-05-06 05:06 UTC, Mikel Ward 		Details

Description Mikel Ward 2008-05-06 05:04:32 UTC 
Steps to reproduce:
Open the attached file.  Press Page Down.

Stack trace:

+ Trace 196997

  • #0 __kernel_vsyscall
  • #1 raise
    at ../nptl/sysdeps/unix/sysv/linux/raise.c line 64
  • #2 abort
    at abort.c line 88
  • #3 __libc_message
    at ../sysdeps/unix/sysv/linux/libc_fatal.c line 170
  • #4 malloc_printerr
    at malloc.c line 5949
  • #5 __libc_free
    at malloc.c line 3625
  • #6 operator delete
    at ../../../../libstdc++-v3/libsupc++/del_op.cc line 49
  • #7 AnnotQuadrilaterals
    at Annot.cc line 215
  • #8 AnnotLink::initialize
  • #9 AnnotLink
    at Annot.cc line 1300
  • #10 Annots::createAnnot
  • #11 Annots
    at Annot.cc line 3322
  • #12 Page::displaySlice
    at Page.cc line 420
  • #13 _poppler_page_render
    at poppler-page.cc line 529
  • #14 poppler_page_render
    at poppler-page.cc line 550
  • #15 pdf_document_render
    at ev-poppler.cc line 488
  • #16 ev_document_render
    at ev-document.c line 221
  • #17 ev_job_render_run
    at ev-jobs.c line 372
  • #18 handle_job
    at ev-job-queue.c line 137
  • #19 ev_render_thread
    at ev-job-queue.c line 264
  • #20 g_thread_create_proxy
    at gthread.c line 635
  • #21 start_thread
    at pthread_create.c line 297
  • #22 clone
    from /lib/libc-2.8.so 


Other information:
My screen resolution is 1680x1050.  I am using continuous view.

I'm using Fedora 9 i386/i686 preview with latest updates.

When run from the console, I also get this info:
*** glibc detected *** evince: free(): invalid pointer: 0xb3d00138 ***
======= Backtrace: =========
/lib/libc.so.6[0x5517e4]
/lib/libc.so.6(cfree+0x96)[0x553846]
/usr/lib/libstdc++.so.6(_ZdlPv+0x21)[0xbed461]
/usr/lib/libpoppler.so.3(_ZN19AnnotQuadrilateralsC1EP5ArrayP12PDFRectangle+0x131)[0x442d6c1]
/usr/lib/libpoppler.so.3(_ZN9AnnotLink10initializeEP4XRefP7CatalogP4Dict+0x12f)[0x442d9df]
/usr/lib/libpoppler.so.3(_ZN9AnnotLinkC1EP4XRefP4DictP7CatalogP6Object+0x6d)[0x443530d]
/usr/lib/libpoppler.so.3(_ZN6Annots11createAnnotEP4XRefP4DictP7CatalogP6Object+0xe7)[0x4435e87]
/usr/lib/libpoppler.so.3(_ZN6AnnotsC1EP4XRefP7CatalogP6Object+0xeb)[0x44367ab]
/usr/lib/libpoppler.so.3(_ZN4Page12displaySliceEP9OutputDevddiiiiiiiiP7CatalogPFiPvES4_PFiP5AnnotS4_ES4_+0x19e)[0x44993be]
/usr/lib/libpoppler-glib.so.3[0x48b30a]
/usr/lib/libpoppler-glib.so.3(poppler_page_render+0x87)[0x48b447]
/usr/lib/evince/backends/libpdfdocument.so[0x3e3491]
/usr/lib/libevbackend.so.0(ev_document_render+0x40)[0x46b9b0]
evince[0x805f24e]
evince[0x805d504]
evince[0x805dab9]
/lib/libglib-2.0.so.0[0x73146f]
/lib/libpthread.so.0[0x68732f]
/lib/libc.so.6(clone+0x5e)[0x5c227e]
======= Memory map: ========
00110000-00111000 r-xp 00110000 00:00 0          [vdso]
00111000-00133000 r-xp 00000000 fd:00 1041137    /usr/lib/libjpeg.so.62.0.0
00133000-00134000 rw-p 00021000 fd:00 1041137    /usr/lib/libjpeg.so.62.0.0
00134000-00136000 r-xp 00000000 fd:00 917900     /lib/libcom_err.so.2.1
00136000-00137000 rw-p 00001000 fd:00 917900     /lib/libcom_err.so.2.1
00137000-00139000 r-xp 00000000 fd:00 917672     /lib/libkeyutils-1.2.so
00139000-0013a000 rw-p 00001000 fd:00 917672     /lib/libkeyutils-1.2.so
0013a000-00144000 r-xp 00000000 fd:00 917847     /lib/libnss_files-2.8.so
00144000-00145000 r--p 0000a000 fd:00 917847     /lib/libnss_files-2.8.so
00145000-00146000 rw-p 0000b000 fd:00 917847     /lib/libnss_files-2.8.so
00146000-0028f000 r-xp 00000000 fd:00 1743349    /usr/lib/libxml2.so.2.6.32
0028f000-00294000 rw-p 00149000 fd:00 1743349    /usr/lib/libxml2.so.2.6.32
00294000-00295000 rw-p 00294000 00:00 0 
00295000-002d6000 r-xp 00000000 fd:00 1740718    /usr/lib/libpango-1.0.so.0.2000.1
002d6000-002d8000 rw-p 00040000 fd:00 1740718    /usr/lib/libpango-1.0.so.0.2000.1
002d9000-002fd000 r-xp 00000000 fd:00 1041089    /usr/lib/libk5crypto.so.3.1
002fd000-002fe000 rw-p 00024000 fd:00 1041089    /usr/lib/libk5crypto.so.3.1
00300000-0039d000 r-xp 00000000 fd:00 1041090    /usr/lib/libkrb5.so.3.3
0039d000-003a0000 rw-p 0009c000 fd:00 1041090    /usr/lib/libkrb5.so.3.3
003a2000-003cf000 r-xp 00000000 fd:00 1041091    /usr/lib/libgssapi_krb5.so.2.2
003cf000-003d1000 rw-p 0002d000 fd:00 1041091    /usr/lib/libgssapi_krb5.so.2.2
003d3000-003db000 r-xp 00000000 fd:00 1738464    /usr/lib/libkrb5support.so.0.1
003db000-003dc000 rw-p 00007000 fd:00 1738464    /usr/lib/libkrb5support.so.0.1
003dc000-003e5000 r-xp 00000000 fd:00 1878304    /usr/lib/evince/backends/libpdfdocument.so
003e5000-003e6000 rw-p 00009000 fd:00 1878304    /usr/lib/evince/backends/libpdfdocument.so
003f4000-0043b000 r-xp 00000000 fd:00 918504     /lib/libssl.so.0.9.8g
0043b000-0043f000 rw-p 00046000 fd:00 918504     /lib/libssl.so.0.9.8g
00441000-0045e000 r-xp 00000000 fd:00 1041170    /usr/lib/libdbus-glib-1.so.2.1.0
0045e000-0045f000 rw-p 0001d000 fd:00 1041170    /usr/lib/libdbus-glib-1.so.2.1.0
00461000-00475000 r-xp 00000000 fd:00 1744332    /usr/lib/libevbackend.so.0.0.0
00475000-00476000 rw-p 00014000 fd:00 1744332    /usr/lib/libevbackend.so.0.0.0
00478000-0049e000 r-xp 00000000 fd:00 1040739    /usr/lib/libpoppler-glib.so.3.0.0
0049e000-004a0000 rw-p 00026000 fd:00 1040739    /usr/lib/libpoppler-glib.so.3.0.0
004c4000-004e0000 r-xp 00000000 fd:00 917594     /lib/ld-2.8.so
004e0000-004e1000 r--p 0001c000 fd:00 917594     /lib/ld-2.8.so
004e1000-004e2000 rw-p 0001d000 fd:00 917594     /lib/ld-2.8.so
004e4000-00647000 r-xp 00000000 fd:00 917596     /lib/libc-2.8.so
00647000-00649000 r--p 00163000 fd:00 917596     /lib/libc-2.8.so
00649000-0064a000 rw-p 00165000 fd:00 917596     /lib/libc-2.8.so
0064a000-0064d000 rw-p 0064a000 00:00 0 
0064f000-00676000 r-xp 00000000 fd:00 917633     /lib/libm-2.8.so
00676000-00677000 r--p 00026000 fd:00 917633     /lib/libm-2.8.so
00677000-00678000 rw-p 00027000 fd:00 917633     /lib/libm-2.8.so
0067a000-0067d000 r-xp 00000000 fd:00 917601     /lib/libdl-2.8.so
0067d000-0067e000 r--p 00002000 fd:00 917601     /lib/libdl-2.8.so
0067e000-0067f000 rw-p 00003000 fd:00 917601     /lib/libdl-2.8.so
00681000-00696000 r-xp 00000000 fd:00 917622     /lib/libpthread-2.8.so
00696000-00697000 r--p 00014000 fd:00 917622     /lib/libpthread-2.8.so
00697000-00698000 rw-p 00015000 fd:00 917622     /lib/libpthread-2.8.so
00698000-0069a000 rw-p 00698000 00:00 0 
0069c000-006b6000 r-xp 00000000 fd:00 917602     /lib/libselinux.so.1
006b6000-006b7000 r--p 00019000 fd:00 917602     /lib/libselinux.so.1
006b7000-006b8000 rw-p 0001a000 fd:00 917602     /lib/libselinux.so.1
006ba000-006cd000 r-xp 00000000 fd:00 917667     /lib/libz.so.1.2.3
006cd000-006ce000 rw-p 00012000 fd:00 917667     /lib/libz.so.1.2.3
006d0000-007b0000 r-xp 00000000 fd:00 917604     /lib/libglib-2.0.so.0.1600.3
007b0000-007b1000 rw-p 000e0000 fd:00 917604     /lib/libglib-2.0.so.0.1600.3
007b3000-007bb000 r-xp 00000000 fd:00 917624     /lib/librt-2.8.so
007bb000-007bc000 r--p 00007000 fd:00 917624     /lib/librt-2.8.so
007bc000-007bd000 rw-p 00008000 fd:00 917624     /lib/librt-2.8.so
007bf000-007da000 r-xp 00000000 fd:00 1743069    /usr/lib/libxcb.so.1.0.0
007da000-007db000 rw-p 0001a000 fd:00 1743069    /usr/lib/libxcb.so.1.0.0
007dd000-007df000 r-xp 00000000 fd:00 1743063    /usr/lib/libXau.so.6.0.0
007df000-007e0000 rw-p 00001000 fd:00 1743063    /usr/lib/libXau.so.6.0.0
007e2000-007e7000 r-xp 00000000 fd:00 1743067    /usr/lib/libXdmcp.so.6.0.0
007e7000-007e8000 rw-p 00004000 fd:00 1743067    /usr/lib/libXdmcp.so.6.0.0
007ea000-008e7000 r-xp 00000000 fd:00 1743608    /usr/lib/libX11.so.6.2.0
008e7000-008eb000 rw-p 000fc000 fd:00 1743608    /usr/lib/libX11.so.6.2.0
008ed000-008ee000 r-xp 00000000 fd:00 1743445    /usr/lib/libxcb-xlib.so.0.0.0
008ee000-008ef000 rw-p 00000000 fd:00 1743445    /usr/lib/libxcb-xlib.so.0.0.0
008f1000-00900000 r-xp 00000000 fd:00 1040608    /usr/lib/libXext.so.6.4.0
00900000-00901000 rw-p 0000e000 fd:00 1040608    /usr/lib/libXext.so.6.4.0
00903000-00928000 r-xp 00000000 fd:00 917598     /lib/libexpat.so.1.5.2
00928000-0092a000 rw-p 00024000 fd:00 917598     /lib/libexpat.so.1.5.2
0092c000-009b7000 r-xp 00000000 fd:00 1742169    /usr/lib/libfreetype.so.6.3.16
009b7000-009bb000 rw-p 0008a000 fd:00 1742169    /usr/lib/libfreetype.so.6.3.16
009bd000-009c1000 r-xp 00000000 fd:00 917625     /lib/libgthread-2.0.so.0.1600.3
009c1000-009c2000 rw-p 00003000 fd:00 917625     /lib/libgthread-2.0.so.0.1600.3
009c4000-009ea000 r-xp 00000000 fd:00 1737580    /usr/lib/libpng12.so.0.24.0
009ea000-009eb000 rw-p 00026000 fd:00 1737580    /usr/lib/libpng12.so.0.24.0
009ed000-00a1b000 r-xp 00000000 fd:00 1742788    /usr/lib/libfontconfig.so.1.3.0
00a1b000-00a1c000 rw-p 0002e000 fd:00 1742788    /usr/lib/libfontconfig.so.1.3.0
00a1e000-00a26000 r-xp 00000000 fd:00 1744190    /usr/lib/libXrender.so.1.3.0
00a26000-00a27000 rw-p 00007000 fd:00 1744190    /usr/lib/libXrender.so.1.3.0
00a29000-00a31000 r-xp 00000000 fd:00 1040848    /usr/lib/libXi.so.6.0.0
00a31000-00a32000 rw-p 00007000 fd:00 1040848    /usr/lib/libXi.so.6.0.0
00a34000-00a36000 r-xp 00000000 fd:00 1040639    /usr/lib/libXinerama.so.1.0.0
00a36000-00a37000 rw-p 00001000 fd:00 1040639    /usr/lib/libXinerama.so.1.0.0
00a39000-00a42000 r-xp 00000000 fd:00 1041028    /usr/lib/libXcursor.so.1.0.2
00a42000-00a43000 rw-p 00008000 fd:00 1041028    /usr/lib/libXcursor.so.1.0.2
00a45000-00a4b000 r-xp 00000000 fd:00 1041012    /usr/lib/libXrandr.so.2.1.0
00a4b000-00a4c000 rw-p 00005000 fd:00 1041012    /usr/lib/libXrandr.so.2.1.0
00a4e000-00a52000 r-xp 00000000 fd:00 1041019    /usr/lib/libXfixes.so.3.1.0
00a52000-00a53000 rw-p 00003000 fd:00 1041019    /usr/lib/libXfixes.so.3.1.0
00a55000-00a66000 r-xp 00000000 fd:00 917899     /lib/libresolv-2.8.so
00a66000-00a67000 r--p 00010000 fd:00 917899     /lib/libresolv-2.8.so
00a67000-00a68000 rw-p 00011000 fd:00 917899     /lib/lzsh: abort (core dumped)  evince 08SAGE-AU-V14.3.pdf
Comment 1 Mikel Ward 2008-05-06 05:06:19 UTC 
Created attachment 110435 [details]
PDF that causes the problem
Comment 2 Mikel Ward 2008-05-06 05:29:55 UTC 
The newsletter was created in Adobe InDesign and exported as a pdf.
Subsequently it was opened in Adobe Acrobat 7.0 and resaved.
Comment 3 Carlos Garcia Campos 2008-05-25 17:46:13 UTC 
It doesn't crash for me. Looking at the trace it might be a poppler bug that has been fixed yet. Could you try again with poppler from git?

Thanks for reporting.
Comment 4 Sven Arvidsson 2008-07-03 13:38:13 UTC 
A Debian user has reported something similar, but I only have a limited backtrace as the file doesn't crash for me:

+ Trace 201963

  • #0 raise
    from /lib/libc.so.6
  • #1 abort
    from /lib/libc.so.6
  • #2 ??
    from /lib/libc.so.6
  • #3 ??
    from /lib/libc.so.6
  • #4 free
    from /lib/libc.so.6
  • #5 AnnotQuadrilaterals::AnnotQuadrilaterals
    from /usr/lib/libpoppler.so.3
  • #6 AnnotLink::initialize
  • #7 AnnotLink::AnnotLink
  • #8 Annots::createAnnot
  • #9 Annots::Annots
    from /usr/lib/libpoppler.so.3
  • #10 Page::displaySlice
  • #11 ??
    from /usr/lib/libpoppler-glib.so.3
  • #12 ??
  • #13 ??
  • #14 ??
  • #15 ??
  • #16 ??
    from /usr/lib/libglib-2.0.so.0
  • #17 start_thread
    from /lib/libpthread.so.0
  • #18 clone
    from /lib/libc.so.6
  • #19 ?? 

This happens with Poppler 0.8.4 and Evince 2.22.2, might it be the same problem?

Original bug report with PDF attached; http://bugs.debian.org/489035
Comment 5 Mikel Ward 2008-11-10 11:14:05 UTC 
WFM with libpoppler 0.8.7-1 and evince 2.24.1-0ubuntu1.
Comment 6 Emmanuel Fleury 2009-11-04 19:00:23 UTC 
Both PDF sample worked for me with Evince 2.29.1 (git master), Poppler 0.12.0 (git master).

Can somebody confirm ?
Comment 7 Carlos Garcia Campos 2009-11-05 08:48:31 UTC 
Yes it was fixed in poppler long time ago.