After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 640964 - PDF causes evince to crash
PDF causes evince to crash
Status: RESOLVED NOTGNOME
Product: evince
Classification: Core
Component: PDF
2.32.x
Other Linux
: Normal normal
: ---
Assigned To: Evince Maintainers
Evince Maintainers
Depends on:
Blocks:
 
 
Reported: 2011-01-30 19:24 UTC by Ben
Modified: 2011-02-06 12:57 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description Ben 2011-01-30 19:24:47 UTC 
I forwarding this downstream bug: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/710072

Using fotex.PDF that is attached to the downstream bug navigate to page 93-96 and it should crash evince.

I created a backtrace of the crash, this happens immediately when i open the document in evince as it tries to open straight to page 96 since that is where i was last time it crashed.

Program received signal SIGABRT, Aborted.

+ Trace 225768

Thread 140029602461440 (LWP 15592)

  • #0 raise
    at ../nptl/sysdeps/unix/sysv/linux/raise.c line 64
  • #1 abort
    at abort.c line 92
  • #2 __libc_message
    at ../sysdeps/unix/sysv/linux/libc_fatal.c line 189
  • #3 malloc_printerr
  • #4 __libc_free
    at malloc.c line 3738
  • #5 pixman_image_unref
    from /usr/lib/libpixman-1.so.0
  • #6 _composite_unaligned_boxes
    at /build/buildd/cairo-1.10.0/src/cairo-image-surface.c line 2853
  • #7 _composite_boxes
    at /build/buildd/cairo-1.10.0/src/cairo-image-surface.c line 2899
  • #8 _clip_and_composite_boxes
  • #9 _cairo_image_surface_fill
    at /build/buildd/cairo-1.10.0/src/cairo-image-surface.c line 3711
  • #10 _cairo_surface_fill
    at /build/buildd/cairo-1.10.0/src/cairo-surface.c line 2261
  • #11 _cairo_gstate_fill
    at /build/buildd/cairo-1.10.0/src/cairo-gstate.c line 1290
  • #12 cairo_fill_preserve
    at /build/buildd/cairo-1.10.0/src/cairo.c line 2448
  • #13 cairo_fill
    at /build/buildd/cairo-1.10.0/src/cairo.c line 2424
  • #14 CairoOutputDev::drawImage
    at CairoOutputDev.cc line 2456
  • #15 Gfx::doImage
    at Gfx.cc line 4174
  • #16 Gfx::opXObject
    at Gfx.cc line 3781
  • #17 Gfx::go
    at Gfx.cc line 702
  • #18 Gfx::display
    at Gfx.cc line 669
  • #19 Gfx::doForm1
    at Gfx.cc line 4354
  • #20 Gfx::doForm
    at Gfx.cc line 4280
  • #21 Gfx::opXObject
    at Gfx.cc line 3789
  • #22 Gfx::go
    at Gfx.cc line 702
  • #23 Gfx::display
    at Gfx.cc line 669
  • #24 Page::displaySlice
  • #25 _poppler_page_render
    at poppler-page.cc line 336
  • #26 pdf_page_render
    at /build/buildd/evince-2.32.0/./backend/pdf/ev-poppler.cc line 373
  • #27 pdf_document_render
    at /build/buildd/evince-2.32.0/./backend/pdf/ev-poppler.cc line 407
  • #28 ev_job_render_run
    at /build/buildd/evince-2.32.0/./libview/ev-jobs.c line 574
  • #29 ev_job_thread
    at /build/buildd/evince-2.32.0/./libview/ev-job-scheduler.c line 183
  • #30 ev_job_thread_proxy
    at /build/buildd/evince-2.32.0/./libview/ev-job-scheduler.c line 213
  • #31 g_thread_create_proxy
    at /build/buildd/glib2.0-2.26.0/glib/gthread.c line 1897
  • #32 start_thread
    from /lib/libpthread.so.0
  • #33 clone
    at ../sysdeps/unix/sysv/linux/x86_64/clone.S line 112
  • #34 ?? 






Comment 1


Fabio Durán Verdugo





          2011-01-31 02:52:35 UTC
        



yes I can confirm this bug


[New Thread 3031]
[New Thread 3025]
[New Thread 3024]
[New Thread 3032]
Core was generated by `evince /home/fabio/Downloads/Ftex.pdf'.
Program terminated with signal 6, Aborted.




+
Trace
    225774
















Comment 2


Carlos Garcia Campos





          2011-01-31 08:49:24 UTC
        



It doesn't crash for me with cairo and pixman from git






Comment 3


Ben





          2011-02-06 06:15:41 UTC
        



ePDFviewer also crashes with this PDF so the problem is with poppler I believe. Also here is a smaller PDF that causes the same crash, but immediately upon being opened: http://www.poepping.de/fotoversicherung/Aenderungsantrag-FORMULAR-Fotoversicherung-2010-GE.pdf






Comment 4


Dennis Sheil





          2011-02-06 12:50:39 UTC
        



The bug is in cairo.  Carlos is right, the crash does not occur with the current cairo master git head.  The bug was patched on October 29th, 2010 ( http://cgit.freedesktop.org/cairo/commit/?id=e9c1fc31887c5bfbb7d086f923a7628b7cfa739c ) in cairo git master.  The fix has not been part of any cairo releases as of yet.

So this is a cairo-related bug, not a bug in evince itself.