After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 602405 - Evince crashes with a PDF file
Evince crashes with a PDF file
Status: RESOLVED FIXED
Product: evince
Classification: Core
Component: PDF
2.28.x
Other Linux
: Normal blocker
: ---
Assigned To: Evince Maintainers
Evince Maintainers
: 613025 646385 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2009-11-19 13:17 UTC by Jean-Philippe Fleury
Modified: 2011-04-01 00:33 UTC
See Also:
GNOME target: ---
GNOME version: ---

Attachments
The PDF file making Evince to crash. (264.48 KB, application/octet-stream)
2009-11-19 13:17 UTC, Jean-Philippe Fleury 		Details

Description Jean-Philippe Fleury 2009-11-19 13:17:54 UTC 
Created attachment 148114 [details]
The PDF file making Evince to crash.

Note: the PDF file related to this bug report contains some fields that we can fill with text.

Now to reproduce the bug:

1) Extract the .bz2 archive attached to this report.

2) Open with Evince the PDF file extracted.

3) In a field, keyboard some text without press "Enter". For example, go to the page 2 and keyboard "a" in the field "Nom à la naissance". Don't press "Enter".

4) Navigate through the pages by clicking the "Next page" button.

Actual result: Evince crashes.

I'll attach the backtrace.
Comment 1 Jean-Philippe Fleury 2009-11-19 13:18:41 UTC 
GNU gdb (GDB) 7.0-ubuntu
Copyright (C) 2009 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i486-linux-gnu".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /usr/bin/evince...Reading symbols from /usr/lib/debug/usr/bin/evince...done.
(no debugging symbols found)...done.
(gdb) handle SIG33 pass nostop noprint
Signal        Stop	Print	Pass to program	Description
SIG33         No	No	Yes		Real-time event 33
(gdb) set pagination 0
(gdb) run
Starting program: /usr/bin/evince 
[Thread debugging using libthread_db enabled]
[New Thread 0xb6d4db70 (LWP 6154)]
[New Thread 0xb654cb70 (LWP 6155)]
[New Thread 0xb5d4bb70 (LWP 6156)]
[New Thread 0xb554ab70 (LWP 6157)]
[New Thread 0xb4d49b70 (LWP 6158)]
[New Thread 0xb4548b70 (LWP 6159)]
[New Thread 0xb3d47b70 (LWP 6160)]
[New Thread 0xb3546b70 (LWP 6161)]
[New Thread 0xb2d45b70 (LWP 6162)]
[New Thread 0xb2544b70 (LWP 6163)]
[Thread 0xb5d4bb70 (LWP 6156) exited]
[Thread 0xb3d47b70 (LWP 6160) exited]
[Thread 0xb554ab70 (LWP 6157) exited]
[Thread 0xb654cb70 (LWP 6155) exited]
[Thread 0xb6d4db70 (LWP 6154) exited]
[Thread 0xb4d49b70 (LWP 6158) exited]
[Thread 0xb4548b70 (LWP 6159) exited]
[Thread 0xb2d45b70 (LWP 6162) exited]
[Thread 0xb3546b70 (LWP 6161) exited]
[New Thread 0xb3546b70 (LWP 6164)]
[New Thread 0xb2d45b70 (LWP 6165)]
[Thread 0xb3546b70 (LWP 6164) exited]
[Thread 0xb2d45b70 (LWP 6165) exited]
[New Thread 0xb2d45b70 (LWP 6166)]
[New Thread 0xb3546b70 (LWP 6167)]
[Thread 0xb3546b70 (LWP 6167) exited]
[New Thread 0xb3546b70 (LWP 6177)]
[New Thread 0xb4548b70 (LWP 6178)]
[New Thread 0xb4d49b70 (LWP 6179)]
[New Thread 0xb1458b70 (LWP 6180)]
[New Thread 0xb0c57b70 (LWP 6181)]
[New Thread 0xb0456b70 (LWP 6182)]
[New Thread 0xafc55b70 (LWP 6183)]
[Thread 0xb3546b70 (LWP 6177) exited]
[Thread 0xafc55b70 (LWP 6183) exited]
[Thread 0xb2544b70 (LWP 6163) exited]
[Thread 0xb0c57b70 (LWP 6181) exited]
[Thread 0xb1458b70 (LWP 6180) exited]
[Thread 0xb4d49b70 (LWP 6179) exited]
[Thread 0xb4548b70 (LWP 6178) exited]

** (evince:6151): WARNING **: Unimplemented annotation: POPPLER_ANNOT_STRIKE_OUT, please post a bug report in Evince bugzilla (http://bugzilla.gnome.org) with a testcase.

** (evince:6151): WARNING **: Unimplemented annotation: POPPLER_ANNOT_STRIKE_OUT, please post a bug report in Evince bugzilla (http://bugzilla.gnome.org) with a testcase.
[Thread 0xb0456b70 (LWP 6182) exited]

Program received signal SIGSEGV, Segmentation fault.
doc_rect_to_view_rect (view=0x8d32188, page=<value optimized out>, doc_rect=0x0, view_rect=0xbfdb5020) at ev-view.c:950
950	ev-view.c: Aucun fichier ou dossier de ce type.
	in ev-view.c
(gdb) d[Kbacktrace full

+ Trace 219183

Thread 1 (Thread 0xb7758760 (LWP 6151))

  • #0 doc_rect_to_view_rect
    at ev-view.c line 950
  • #1 ev_view_get_area_from_mapping
    at ev-view.c line 1149
  • #2 ev_view_size_allocate
    at ev-view.c line 2621
  • #3 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #4 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #5 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #6 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #7 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #8 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #9 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #10 gtk_scrolled_window_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkscrolledwindow.c line 1430
  • #11 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #12 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #13 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #14 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #15 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #16 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #17 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #18 gtk_box_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkbox.c line 500
  • #19 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #20 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #21 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #22 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #23 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #24 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #25 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #26 gtk_paned_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkpaned.c line 969
  • #27 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #28 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #29 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #30 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #31 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #32 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #33 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #34 gtk_box_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkbox.c line 500
  • #35 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #36 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #37 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #38 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #39 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #40 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #41 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #42 gtk_window_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwindow.c line 4941
  • #43 IA__g_cclosure_marshal_VOID__BOXED
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 566
  • #44 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #45 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #46 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3177
  • #47 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #48 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #49 IA__gtk_widget_size_allocate
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwidget.c line 3887
  • #50 IA__gtk_container_resize_children
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkcontainer.c line 1470
  • #51 gtk_window_move_resize
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwindow.c line 6352
  • #52 gtk_window_check_resize
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkwindow.c line 5358
  • #53 IA__g_cclosure_marshal_VOID__VOID
    at /build/buildd/glib2.0-2.22.2/gobject/gmarshal.c line 77
  • #54 g_type_class_meta_marshal
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 878
  • #55 IA__g_closure_invoke
    at /build/buildd/glib2.0-2.22.2/gobject/gclosure.c line 767
  • #56 signal_emit_unlocked_R
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3285
  • #57 IA__g_signal_emit_valist
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 2980
  • #58 IA__g_signal_emit
    at /build/buildd/glib2.0-2.22.2/gobject/gsignal.c line 3037
  • #59 IA__gtk_container_check_resize
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkcontainer.c line 1424
  • #60 gtk_container_idle_sizer
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkcontainer.c line 1350
  • #61 gdk_threads_dispatch
    at /build/buildd/gtk+2.0-2.18.3/gdk/gdk.c line 506
  • #62 g_idle_dispatch
    at /build/buildd/glib2.0-2.22.2/glib/gmain.c line 4065
  • #63 g_main_dispatch
    at /build/buildd/glib2.0-2.22.2/glib/gmain.c line 1960
  • #64 IA__g_main_context_dispatch
    at /build/buildd/glib2.0-2.22.2/glib/gmain.c line 2513
  • #65 g_main_context_iterate
    at /build/buildd/glib2.0-2.22.2/glib/gmain.c line 2591
  • #66 IA__g_main_loop_run
    at /build/buildd/glib2.0-2.22.2/glib/gmain.c line 2799
  • #67 IA__gtk_main
    at /build/buildd/gtk+2.0-2.18.3/gtk/gtkmain.c line 1218
  • #68 main
    at main.c line 497 
A debugging session is active.

	Inferior 1 [process 6151] will be killed.

Quit anyway? (y or n)
Comment 2 Carlos Garcia Campos 2009-11-19 13:24:22 UTC 
I can reproduce it.
Comment 3 Carlos Garcia Campos 2009-12-09 17:54:46 UTC 
Fixed in git master. Thanks for reporting.
Comment 4 Fabio Durán Verdugo 2010-03-16 16:25:28 UTC 
*** Bug 613025 has been marked as a duplicate of this bug. ***
Comment 5 Akhil Laddha 2011-04-01 00:33:10 UTC 
*** Bug 646385 has been marked as a duplicate of this bug. ***