GNOME Bugzilla – Bug 711824
[abrt] Crash due to use-after-free after pine import
Last modified: 2013-11-20 20:58:47 UTC
Moving this from a downstream bug report: https://bugzilla.redhat.com/show_bug.cgi?id=1028680 Description of problem: Start evolution after migrating from f19 Version-Release number of selected component: evolution-3.10.1-1.fc20 Additional info: reporter: libreport-2.1.9 backtrace_rating: 4 cmdline: evolution crash_function: g_type_check_instance_is_a executable: /usr/bin/evolution kernel: 3.11.7-300.fc20.x86_64 Core was generated by `evolution'. Program terminated with signal SIGSEGV, Segmentation fault.
+ Trace 232741
Thread 5 (Thread 0x7fa8d31b2a40 (LWP 3306))
Created attachment 260387 [details] [review] evo patch for evolution; I was able to reproduce this too, which led me to a use-after-free caused by the mail_importer_import_mbox_sync() not reffing the GCancellable as it should (it's because its 'free' method unrefs the cancellable at the end).
Created commit a05f4a9 in evo master (3.11.3+) Created commit 79bfc1a in evo gnome-3-10 (3.10.3+)