Bug#546260: segfaults when scanning /usr folder as non-root

Alexander Korolkov alexander.korolkov at gmail.com
Thu Oct 22 20:06:27 UTC 2009 

Package: gnome-utils
Version: 2.26.0-1
Severity: normal

Hi,

found an easy way to reproduce this bug:
mkdir /tmp/x
chmod a-r /tmp/x
then scan this directory using baobab.

Here is an output from valgrind:
==4466== Invalid read of size 4                                                                                      
==4466==    at 0x42AF22A: gtk_tree_model_get_valist (gtktreemodel.c:1443)                                            
==4466==    by 0x42AF45E: gtk_tree_model_get (gtktreemodel.c:1405)                                                   
==4466==    by 0x805FBC3: baobab_chart_get_items (baobab-chart.c:527)                                                
==4466==    by 0x805FFBA: baobab_chart_expose (baobab-chart.c:827)                                                   
==4466==    by 0x41D0F35: _gtk_marshal_BOOLEAN__BOXED (gtkmarshalers.c:84)                                           
==4466==    by 0x48C1568: ??? (in /usr/lib/libgobject-2.0.so.0.2200.2)                                               
==4466==    by 0x48C2DE2: g_closure_invoke (in /usr/lib/libgobject-2.0.so.0.2200.2)                                  
==4466==    by 0x48D6BB6: ??? (in /usr/lib/libgobject-2.0.so.0.2200.2)                                               
==4466==    by 0x48D81EE: g_signal_emit_valist (in /usr/lib/libgobject-2.0.so.0.2200.2)                              
==4466==    by 0x48D87B5: g_signal_emit (in /usr/lib/libgobject-2.0.so.0.2200.2)                                     
==4466==    by 0x42ED075: gtk_widget_event_internal (gtkwidget.c:4767)                                               
==4466==    by 0x41CAC6C: gtk_main_do_event (gtkmain.c:1569)                                                         
==4466==  Address 0x18 is not stack'd, malloc'd or (recently) free'd                                                 

This program segfaults while trying to draw an empty tree.

Patch is in the attachment.

-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.31.4
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages gnome-utils depends on:
ii  e2fslibs               1.41.9-1          ext2/ext3/ext4 file system librari
ii  gconf2                 2.28.0-1          GNOME configuration database syste
ii  libart-2.0-2           2.3.20-2          Library of functions for 2D graphi
ii  libatk1.0-0            1.28.0-1          The ATK accessibility toolkit
ii  libbonobo2-0           2.24.2-1          Bonobo CORBA interfaces library
ii  libbonoboui2-0         2.24.2-1          The Bonobo UI library
ii  libc6                  2.9-25            GNU C Library: Shared libraries
ii  libcairo2              1.8.8-2           The Cairo 2D vector graphics libra
ii  libdbus-1-3            1.2.16-2          simple interprocess messaging syst
ii  libfontconfig1         2.6.0-4           generic font configuration library
ii  libfreetype6           2.3.9-5           FreeType 2 font engine, shared lib
ii  libgconf2-4            2.28.0-1          GNOME configuration database syste
ii  libgdict-1.0-6         2.26.0-1          GNOME Dictionary base library
ii  libglade2-0            1:2.6.4-1         library to load .glade files at ru
ii  libglib2.0-0           2.22.2-2          The GLib library of C routines
ii  libgnome-desktop-2-11  2.28.0-1          Utility library for loading .deskt
ii  libgnome2-0            2.26.0-1          The GNOME library - runtime files
ii  libgnomecanvas2-0      2.26.0-1          A powerful object-oriented display
ii  libgnomeui-0           2.24.2-1          The GNOME libraries (User Interfac
ii  libgnomevfs2-0         1:2.24.2-1        GNOME Virtual File System (runtime
ii  libgtk2.0-0            2.18.2-1          The GTK+ graphical user interface 
ii  libgtop2-7             2.28.0-1          gtop system monitoring library (sh
ii  libhal1                0.5.13-3          Hardware Abstraction Layer - share
ii  libice6                2:1.0.5-1         X11 Inter-Client Exchange library
ii  liborbit2              1:2.14.17-1       libraries for ORBit2 - a CORBA ORB
ii  libpanel-applet2-0     2.26.3-1          library for GNOME Panel applets
ii  libpango1.0-0          1.26.0-1          Layout and rendering of internatio
ii  libpopt0               1.15-1            lib for parsing cmdline parameters
ii  libsm6                 2:1.1.1-1         X11 Session Management library
ii  libstartup-notificatio 0.10-1            library for program launch feedbac
ii  libx11-6               2:1.2.2-1         X11 client-side library
ii  libxext6               2:1.0.4-1         X11 miscellaneous extension librar
ii  libxml2                2.7.6.dfsg-1      GNOME XML library
ii  zlib1g                 1:1.2.3.3.dfsg-15 compression library - runtime

Versions of packages gnome-utils recommends:
ii  gksu                          2.0.2-2+b1 graphical frontend to su

Versions of packages gnome-utils suggests:
pn  gcalctool                     <none>     (no description available)
ii  yelp                          2.26.0-3   Help browser for GNOME

-- no debconf information
-------------- next part --------------
A non-text attachment was scrubbed...
Name: baobab-segfault.patch
Type: text/x-c
Size: 764 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20091023/fe3bdb35/attachment.bin>

More information about the pkg-gnome-maintainers mailing list