Bug 344076 – crash after closing an inline view of text attachment

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 344076 - crash after closing an inline view of text attachment


Summary:	crash after closing an inline view of text attachment


Status:	RESOLVED OBSOLETE

Product:	GtkHtml
Classification:	Other
Component:	Rendering
Version:	3.28.x
Hardware:	Other Linux

Importance:	High critical
Target Milestone:	---
Assigned To:	Frederic Crozat
QA Contact:	Evolution QA team

URL:
Whiteboard:

Duplicates:	549496 564980 570800 572576 573415 575066 575867 578753 581992 586322 588582 590104 592852 594458 594888 597530 598086 604265 622763 (view as bug list)
Depends on:
Blocks:

Reported:	2006-06-06 21:52 UTC by Karsten Bräckelmann
Modified:	2014-08-30 15:18 UTC

See Also:
GNOME target:	---
GNOME version:	2.27/2.28

Description Karsten Bräckelmann 2006-06-06 21:52:04 UTC

Got a mail with 2 text attachments, content disposition attached. A tiny patch, and a larg-ish log file.

After displaying the large-ish text inline, and closing it again (using the attachment button), the inline view vanished. But the attachment buttons where not redrawn. After about 2 seconds I clicked where I expected the attachment buttons. Then the crash dialog appeared... (Mentioning this, since that click may or may not be relevant, given the time till I clicked there.)


GtkHTML 3.10.2.

Including the crashing top-most thread only (entire stacktrace saved).


Backtrace was generated from '/opt/gnome-2.14/bin/evolution-2.6'

Using host libthread_db library "/lib/tls/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread -1230387520 (LWP 8337)]
[New Thread -1288287312 (LWP 9658)]
[Thread debugging using libthread_db enabled]
[New Thread -1230387520 (LWP 8337)]
[New Thread -1288287312 (LWP 9658)]
[Thread debugging using libthread_db enabled]
[New Thread -1230387520 (LWP 8337)]
[New Thread -1288287312 (LWP 9658)]
[New Thread -1397392464 (LWP 8452)]
[New Thread -1296680016 (LWP 8451)]
[New Thread -1405785168 (LWP 8445)]
[New Thread -1313465424 (LWP 8384)]
[New Thread -1270842448 (LWP 8343)]
[New Thread -1252725840 (LWP 8341)]
[New Thread -1244333136 (LWP 8340)]
[New Thread -1235940432 (LWP 8339)]
0xffffe410 in ?? ()

+ Trace 68692

#0 ??
#1 ??
#2 ??
#3 ??
#4 __waitpid_nocancel
from /lib/tls/libpthread.so.0
#5 libgnomeui_segv_handle
at gnome-ui-init.c line 820
#6 <signal handler called>
#7 ??
#8 ??
#9 ??
#10 ??
#11 raise
from /lib/tls/libc.so.6
#12 abort
from /lib/tls/libc.so.6
#13 IA__g_logv
#14 IA__g_log
at gmessages.c line 517
#15 IA__g_assert_warning
at gmessages.c line 552
#16 gtk_layout_move_internal
at gtklayout.c line 384
#17 draw
at htmlembedded.c line 82
#18 html_object_draw
at htmlobject.c line 1042
#19 draw
at htmlclue.c line 268
#20 draw
at htmlclueflow.c line 1371
#21 html_object_draw
at htmlobject.c line 1042
#22 draw
at htmlclue.c line 268
#23 draw
at htmlcluev.c line 395
#24 draw
at htmltablecell.c line 172
#25 html_object_draw
at htmlobject.c line 1042
#26 draw
at htmltable.c line 1243
#27 html_object_draw
at htmlobject.c line 1042
#28 draw
at htmlclue.c line 268
#29 draw
at htmlclueflow.c line 1371
#30 html_object_draw
at htmlobject.c line 1042
#31 draw
at htmlclue.c line 268
#32 draw
at htmlcluev.c line 395
#33 html_object_draw
at htmlobject.c line 1042
#34 html_engine_draw_real
at htmlengine.c line 4811
#35 html_engine_expose
at htmlengine.c line 4827
#36 expose
at gtkhtml.c line 1066
#37 _gtk_marshal_BOOLEAN__BOXED
at gtkmarshalers.c line 83
#38 g_type_class_meta_marshal
at gclosure.c line 567
#39 IA__g_closure_invoke
at gclosure.c line 490
#40 signal_emit_unlocked_R
at gsignal.c line 2476
#41 IA__g_signal_emit_valist
at gsignal.c line 2207
#42 IA__g_signal_emit
at gsignal.c line 2241
#43 gtk_widget_event_internal
at gtkwidget.c line 3751
#44 IA__gtk_main_do_event
at gtkmain.c line 1382
#45 gdk_window_process_updates_internal
at gdkwindow.c line 2292
#46 IA__gdk_window_process_all_updates
at gdkwindow.c line 2345
#47 gtk_container_idle_sizer
at gtkcontainer.c line 1117
#48 g_idle_dispatch
at gmain.c line 3796
#49 IA__g_main_context_dispatch
at gmain.c line 1916
#50 g_main_context_iterate
at gmain.c line 2547
#51 IA__g_main_loop_run
at gmain.c line 2751
#52 bonobo_main
at bonobo-main.c line 311
#53 main
at main.c line 611

Comment 1 Karsten Bräckelmann 2006-06-06 21:56:01 UTC

Does not seem to be reproducible.

Comment 2 Akhil Laddha 2009-02-05 03:43:42 UTC

*** Bug 564980 has been marked as a duplicate of this bug. ***

Comment 3 Akhil Laddha 2009-02-05 03:43:56 UTC

*** Bug 549496 has been marked as a duplicate of this bug. ***

Comment 4 Akhil Laddha 2009-02-05 03:46:02 UTC

With evolution 2.25.90 


Gtk:ERROR:gtklayout.c:394:gtk_layout_move_internal: assertion failed: (child)

Program received signal SIGABRT, Aborted.
0x00007fffe8843645 in raise () from /lib64/libc.so.6
(gdb) t a a bt

+ Trace 212234

Thread 1 (Thread 0x7ffff7f9e7f0 (LWP 4972))

#0 raise
from /lib64/libc.so.6
#1 abort
from /lib64/libc.so.6
#2 IA__g_assertion_message
at gtestutils.c line 1301
#3 IA__g_assertion_message_expr
at gtestutils.c line 1312
#4 gtk_layout_move_internal
at gtklayout.c line 394
#5 draw
at htmlembedded.c line 82
#6 draw
at htmliframe.c line 185
#7 draw
at htmlclue.c line 268
#8 draw
at htmlclueflow.c line 1371
#9 draw
at htmlclue.c line 268
#10 draw
at htmlcluev.c line 396
#11 draw
at htmlclue.c line 268
#12 draw
at htmlcluev.c line 396
#13 html_engine_draw_real
at htmlengine.c line 5021
#14 expose
at gtkhtml.c line 1179
#15 _gtk_marshal_BOOLEAN__BOXED
at gtkmarshalers.c line 84
#16 IA__g_closure_invoke
at gclosure.c line 767
#17 signal_emit_unlocked_R
at gsignal.c line 3282
#18 IA__g_signal_emit_valist
at gsignal.c line 2987
#19 IA__g_signal_emit
at gsignal.c line 3034
#20 gtk_widget_event_internal
at gtkwidget.c line 4745
#21 IA__gtk_main_do_event
at gtkmain.c line 1553
#22 gdk_window_process_updates_internal
at gdkwindow.c line 2598
#23 IA__gdk_window_process_all_updates
at gdkwindow.c line 2664
#24 gtk_container_idle_sizer
at gtkcontainer.c line 1309
#25 gdk_threads_dispatch
at gdk.c line 473
#26 IA__g_main_context_dispatch
at gmain.c line 2144
#27 g_main_context_iterate
at gmain.c line 2778
#28 IA__g_main_loop_run
at gmain.c line 2986
#29 bonobo_main
from /usr/lib64/libbonobo-2.so.0
#30 main
at main.c line 704
#0 raise
from /lib64/libc.so.6
#1 abort
from /lib64/libc.so.6
#2 IA__g_assertion_message
at gtestutils.c line 1301
#3 IA__g_assertion_message_expr
at gtestutils.c line 1312
#4 gtk_layout_move_internal
at gtklayout.c line 394
#5 draw
at htmlembedded.c line 82
#6 draw
at htmliframe.c line 185
#7 draw
at htmlclue.c line 268
#8 draw
at htmlclueflow.c line 1371
#9 draw
at htmlclue.c line 268
#10 draw
at htmlcluev.c line 396
#11 draw
at htmlclue.c line 268
#12 draw
at htmlcluev.c line 396
#13 html_engine_draw_real
at htmlengine.c line 5021
#14 expose
at gtkhtml.c line 1179
#15 _gtk_marshal_BOOLEAN__BOXED
at gtkmarshalers.c line 84
#16 IA__g_closure_invoke
at gclosure.c line 767
#17 signal_emit_unlocked_R
at gsignal.c line 3282
#18 IA__g_signal_emit_valist
at gsignal.c line 2987
#19 IA__g_signal_emit
at gsignal.c line 3034
#20 gtk_widget_event_internal
at gtkwidget.c line 4745
#21 IA__gtk_main_do_event
at gtkmain.c line 1553
#22 gdk_window_process_updates_internal
at gdkwindow.c line 2598
#23 IA__gdk_window_process_all_updates
at gdkwindow.c line 2664
#24 gtk_container_idle_sizer
at gtkcontainer.c line 1309
#25 gdk_threads_dispatch
at gdk.c line 473
#26 IA__g_main_context_dispatch
at gmain.c line 2144
#27 g_main_context_iterate
at gmain.c line 2778
#28 IA__g_main_loop_run
at gmain.c line 2986
#29 bonobo_main
from /usr/lib64/libbonobo-2.so.0
#30 main
at main.c line 704

Comment 5 Akhil Laddha 2009-02-05 03:52:28 UTC

I got a mail with html attachment. I viewed attachment inline and later closed the inline view and evolution crashed.

Valgrind 

**
Gtk:ERROR:gtklayout.c:394:gtk_layout_move_internal: assertion failed: (child)
==5133== 
==5133== Thread 1:
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x13E1D768: g_free (gmem.c:189)
==5133==    by 0x173658DE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x4C24365: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658DE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Invalid free() / delete / delete[]
==5133==    at 0x4C243AF: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658DE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133==  Address 0x1 is not stack'd, malloc'd or (recently) free'd
==5133== 
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x13E1D768: g_free (gmem.c:189)
==5133==    by 0x173658E6: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x4C24365: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658E6: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Invalid free() / delete / delete[]
==5133==    at 0x4C243AF: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658E6: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133==  Address 0x1 is not stack'd, malloc'd or (recently) free'd
==5133== 
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x13E1D768: g_free (gmem.c:189)
==5133==    by 0x173658EE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Conditional jump or move depends on uninitialised value(s)
==5133==    at 0x4C24365: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658EE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133== 
==5133== Invalid free() / delete / delete[]
==5133==    at 0x4C243AF: free (in /usr/lib64/valgrind/amd64-linux/vgpreload_memcheck.so)
==5133==    by 0x173658EE: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x173659C8: (within /usr/lib64/gtk-2.0/modules/libgnomebreakpad.so)
==5133==    by 0x88F8A8F: (within /lib64/libpthread-2.9.so)
==5133==    by 0x140D2644: raise (in /lib64/libc-2.9.so)
==5133==    by 0x140D3C32: abort (in /lib64/libc-2.9.so)
==5133==    by 0x13E3B202: g_assertion_message (gtestutils.c:1301)
==5133==    by 0x13E3B6A1: g_assertion_message_expr (gtestutils.c:1312)
==5133==    by 0x1001C185: gtk_layout_move_internal (gtklayout.c:394)
==5133==    by 0xA31BB45: draw (htmlembedded.c:82)
==5133==    by 0xA36544A: draw (htmliframe.c:185)
==5133==    by 0xA30F820: draw (htmlclue.c:268)
==5133==  Address 0x1 is not stack'd, malloc'd or (recently) free'd

Comment 6 Akhil Laddha 2009-02-07 13:07:49 UTC

*** Bug 570800 has been marked as a duplicate of this bug. ***

Comment 7 Akhil Laddha 2009-02-07 13:21:31 UTC

confirming as per duplicates

Comment 8 Milan Crha 2009-02-13 14:56:10 UTC

Akhil, I'm sorry, I do not know why that does what that does. I cannot figure it out. As far as I can tell, it does all things in the same way, except when collapsing the inner html attachment the GtkHTML is in a "frozen" state, to stay in the same position as before (with respect to vertical scrollbar). It sometimes doesn't show that button, usually it does. It's just doing its own things.

Comment 9 Akhil Laddha 2009-02-16 04:24:58 UTC

No probs, Milan ! Don't feel so sad, cheer up :-)

Comment 10 Milan Crha 2009-02-20 17:25:41 UTC

*** Bug 572576 has been marked as a duplicate of this bug. ***

Comment 11 Milan Crha 2009-02-20 17:26:31 UTC

The above bug contains a test message, with caret mode off crashes quite often.

Comment 12 Frederic Crozat 2009-02-20 17:31:59 UTC

Ok, found why bug is not always visible : it is depending on gtkrc theme property.

To be more precise, evolution will crash if theme gtkrc contains this :

style "ia_ora-thin" 
{
  ythickness = 1
}

widget_class "*.GtkHTMLEmbedded.*GtkButton" style "ia_ora-thin"

Comment 13 André Klapper 2009-02-27 23:44:42 UTC

no reasons for needinfo here.

Comment 14 André Klapper 2009-02-27 23:44:46 UTC

*** Bug 573415 has been marked as a duplicate of this bug. ***

Comment 15 palfrey 2009-03-12 15:18:55 UTC

*** Bug 575066 has been marked as a duplicate of this bug. ***

Comment 16 Fabio Durán Verdugo 2009-03-18 20:36:28 UTC

*** Bug 575867 has been marked as a duplicate of this bug. ***

Comment 17 Fabio Durán Verdugo 2009-04-12 17:23:36 UTC

*** Bug 578753 has been marked as a duplicate of this bug. ***

Comment 18 Shahar Or 2009-04-15 17:14:38 UTC

Dear friends,

I think that solving this bug will be quite valuable for many people.

Many blessings.

Comment 19 palfrey 2009-05-11 11:38:46 UTC

*** Bug 581992 has been marked as a duplicate of this bug. ***

Comment 20 André Klapper 2009-05-12 09:47:59 UTC

Email to trigger this (from bug 581992): 
http://mail.gnome.org/archives/gnome-i18n/2009-May/msg00076.html

Comment 21 Akhil Laddha 2009-06-19 04:01:52 UTC

*** Bug 586322 has been marked as a duplicate of this bug. ***

Comment 22 Akhil Laddha 2009-07-15 04:24:33 UTC

*** Bug 588582 has been marked as a duplicate of this bug. ***

Comment 23 Akhil Laddha 2009-07-30 03:32:42 UTC

*** Bug 590104 has been marked as a duplicate of this bug. ***

Comment 24 Fabio Durán Verdugo 2009-08-24 14:14:39 UTC

*** Bug 592852 has been marked as a duplicate of this bug. ***

Comment 25 Akhil Laddha 2009-09-08 11:59:56 UTC

*** Bug 594458 has been marked as a duplicate of this bug. ***

Comment 26 Fabio Durán Verdugo 2009-09-12 01:12:27 UTC

*** Bug 594888 has been marked as a duplicate of this bug. ***

Comment 27 Akhil Laddha 2009-10-06 11:44:44 UTC

*** Bug 597530 has been marked as a duplicate of this bug. ***

Comment 28 Akhil Laddha 2009-10-12 04:12:39 UTC

*** Bug 598086 has been marked as a duplicate of this bug. ***

Comment 29 Milan Crha 2009-11-30 12:06:47 UTC

Downstream bug report about the same in 3.28:
https://bugzilla.redhat.com/show_bug.cgi?id=541590

Comment 30 Fabio Durán Verdugo 2009-12-10 12:23:34 UTC

*** Bug 604265 has been marked as a duplicate of this bug. ***

Comment 31 Akhil Laddha 2010-06-09 07:00:47 UTC

This commit fixed the crash for me

http://git.gnome.org/browse/gtkhtml/commit/?h=gnome-2-30&id=d43a84424361bcf8657459b6e2023b513322414d

Could anybody please confirm the same ?

Comment 32 Reinout van Schouwen 2010-06-25 21:37:10 UTC

*** Bug 622763 has been marked as a duplicate of this bug. ***

Comment 33 André Klapper 2014-08-30 15:18:51 UTC

Assuming that comment 31 fixed this.