← Back to team overview

desktop-packages team mailing list archive

  1. desktop-packages team
  2. Mailing list archive
  3. Message #52529

[Bug 745836] Re: encrypted swap corrupts application stack/heap [was: soffice.bin SIGSEGV cppu::throwException()]

  Thread PreviousDate PreviousThread Next 
This bug was fixed in the package linux - 2.6.38-13.52

---------------
linux (2.6.38-13.52) natty-proposed; urgency=low

  [Herton R. Krzesinski]

  * Release Tracking Bug
    - LP: #887379

  [ Konrad Rzeszutek Wilk ]

  * SAUCE: x86/paravirt: Partially revert "remove lazy mode in interrupts"
    - LP: #854050

  [ Ming Lei ]

  * SAUCE: [media] uvcvideo: Set alternate setting 0 on resume if the bus
    has been reset
    - LP: #816484

  [ Seth Forshee ]

  * SAUCE: acer-wmi: Add wireless quirk for Lenovo 3000 N200
    - LP: #857297

  [ Upstream Kernel Changes ]

  * Make TASKSTATS require root access, CVE-2011-2494
    - LP: #866021
    - CVE-2011-2494
  * proc: restrict access to /proc/PID/io, CVE-2011-2495
    - LP: #866025
    - CVE-2011-2495
  * proc: fix a race in do_io_accounting(), CVE-2011-2495
    - LP: #866025
    - CVE-2011-2495
  * staging: comedi: fix infoleak to userspace, CVE-2011-2909
    - LP: #869261
    - CVE-2011-2909
  * perf tools: do not look at ./config for configuration, CVE-2011-2905
    - LP: #869259
    - CVE-2011-2905
  * e1000e: workaround for packet drop on 82579 at 100Mbps
    - LP: #870127
  * eCryptfs: Remove unnecessary grow_file() function
    - LP: #745836
  * eCryptfs: Remove ECRYPTFS_NEW_FILE crypt stat flag
    - LP: #745836
  * block: blkdev_get() should access ->bd_disk only after success
    - LP: #857170
  * ipv6: restore correct ECN handling on TCP xmit
    - LP: #872179
  * nl80211: fix overflow in ssid_len - CVE-2011-2517
    - LP: #869245
    - CVE-2011-2517
  * ksm: fix NULL pointer dereference in scan_get_next_rmap_item() -
    CVE-2011-2183
    - LP: #869227
    - CVE-2011-2183
  * NLM: Don't hang forever on NLM unlock requests - CVE-2011-2491
    - LP: #869237
    - CVE-2011-2491
  * KVM: fix kvmclock regression due to missing clock update
    - LP: #795717
  * drm/i915: don't enable plane, pipe and PLL prematurely
    - LP: #812638
  * drm/i915: add pipe/plane enable/disable functions
    - LP: #812638
 -- Herton Ronaldo Krzesinski <herton.krzesinski@xxxxxxxxxxxxx>   Mon, 07 Nov 2011 22:11:51 -0200

** Changed in: linux (Ubuntu Natty)
       Status: In Progress => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2183

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2491

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2494

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2495

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2517

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2905

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-2909

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to libreoffice in Ubuntu.
https://bugs.launchpad.net/bugs/745836

Title:
  encrypted swap corrupts application stack/heap [was: soffice.bin
  SIGSEGV cppu::throwException()]

Status in LibreOffice Productivity Suite:
  Won't Fix
Status in “ecryptfs-utils” package in Ubuntu:
  Invalid
Status in “libreoffice” package in Ubuntu:
  Invalid
Status in “linux” package in Ubuntu:
  Fix Released
Status in “openoffice.org” package in Ubuntu:
  Won't Fix
Status in “ecryptfs-utils” source package in Maverick:
  Invalid
Status in “libreoffice” source package in Maverick:
  Invalid
Status in “linux” source package in Maverick:
  Confirmed
Status in “openoffice.org” source package in Maverick:
  Won't Fix
Status in “ecryptfs-utils” source package in Natty:
  Invalid
Status in “libreoffice” source package in Natty:
  Invalid
Status in “linux” source package in Natty:
  Fix Released
Status in “openoffice.org” source package in Natty:
  Won't Fix
Status in “ecryptfs-utils” source package in Oneiric:
  Invalid
Status in “libreoffice” source package in Oneiric:
  Invalid
Status in “linux” source package in Oneiric:
  Fix Released
Status in “openoffice.org” source package in Oneiric:
  Won't Fix

Bug description:
  Binary package hint: libreoffice

  1) lsb_release -rd
  Description:	Ubuntu 11.04
  Release:	11.04

  2) apt-cache policy libreoffice-calc
  libreoffice-calc:
    Installed: 1:3.3.3-1ubuntu2
    Candidate: 1:3.3.3-1ubuntu2
    Version table:
   *** 1:3.3.3-1ubuntu2 0
          100 /var/lib/dpkg/status
       1:3.3.2-1ubuntu5 0
          500 http://us.archive.ubuntu.com/ubuntu/ natty-updates/main i386 Packages
       1:3.3.2-1ubuntu4 0
          500 http://us.archive.ubuntu.com/ubuntu/ natty/main i386 Packages

  apt-cache policy libreoffice-writer
  libreoffice-writer:
    Installed: 1:3.3.3-1ubuntu2
    Candidate: 1:3.3.3-1ubuntu2
    Version table:
   *** 1:3.3.3-1ubuntu2 0
          100 /var/lib/dpkg/status
       1:3.3.2-1ubuntu5 0
          500 http://us.archive.ubuntu.com/ubuntu/ natty-updates/main i386 Packages
       1:3.3.2-1ubuntu4 0
          500 http://us.archive.ubuntu.com/ubuntu/ natty/main i386 Packages

  3) What is expected to happen in a KDE Natty in a KDE session with the
  KDE integration active or GNOME is a Writer or Calc file untouched for
  a long period of time (ex. 1 hour+) is when one tries to edit it, the
  application does not crash.

  4) What happens instead is it crashes. This is highly correlated to
  both EcryptfsInUse and resource constrained (Memory & CPU >> 50%)
  environments. Occurs with:

  + Intel drivers, Compiz not enabled, Writer open only bug 745836
  + binary ATI drivers, Compiz enabled, Calc open only bug 799047

  ProblemType: Crash
  DistroRelease: Ubuntu 11.04
  Package: libreoffice-core 1:3.3.2-1ubuntu2
  ProcVersionSignature: Ubuntu 2.6.38-7.39-generic 2.6.38
  Uname: Linux 2.6.38-7-generic i686
  Architecture: i386
  Date: Wed Mar 30 12:34:39 2011
  Disassembly: => 0x100000:	Cannot access memory at address 0x100000
  EcryptfsInUse: Yes
  ExecutablePath: /usr/lib/libreoffice/program/soffice.bin
  ProcCmdline: /usr/lib/libreoffice/program/soffice.bin -writer -splash-pipe=5
  ProcEnviron:
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  SegvAnalysis:
   Segfault happened at: 0x100000:	Cannot access memory at address 0x100000
   PC (0x00100000) not located in a known VMA region (needed executable region)!
  SegvReason: executing unknown VMA
  Signal: 11SourcePackage: libreoffice
  StacktraceTop:
   ?? ()
   cppu::throwException(com::sun::star::uno::Any const&) () from /usr/lib/libreoffice/program/../basis-link/program/../ure-link/lib/libuno_cppuhelpergcc3.so.3
   ucbhelper::cancelCommandExecution(com::sun::star::ucb::IOErrorCode, com::sun::star::uno::Sequence<com::sun::star::uno::Any> const&, com::sun::star::uno::Reference<com::sun::star::ucb::XCommandEnvironment> const&, rtl::OUString const&, com::sun::star::uno::Reference<com::sun::star::ucb::XCommandProcessor> const&) () from /usr/lib/libreoffice/program/../basis-link/program/libucbhelper4gcc3.so
   ?? () from /usr/lib/libreoffice/program/../basis-link/program/libucpfile1.so
   ?? () from /usr/lib/libreoffice/program/../basis-link/program/libucpfile1.so
  Title: soffice.bin crashed with SIGSEGV in cppu::throwException()UpgradeStatus: Upgraded to natty on 2011-03-29 (0 days ago)
  UserGroups: adm admin cdrom dialout lpadmin plugdev sambashare

To manage notifications about this bug go to:
https://bugs.launchpad.net/df-libreoffice/+bug/745836/+subscriptions
  Thread PreviousDate PreviousThread Next