Ubuntu
mir package

*** buffer overflow detected ***: unity8 terminated ... in MirEvent::deserialize(std::string const&)

Bug #1636673 reported by Daniel van Vugt
14
This bug affects 3 people
Affects Status Importance Assigned to Milestone
Mir
New
High
Unassigned
mir (Ubuntu)
New
High
Unassigned

Bug Description

*** buffer overflow detected ***: unity8 terminated ... in MirEvent::deserialize(std::string const&)

From one user's unity8.log:

qtmir.mir: Command line arguments passed to Qt: ("unity8")
[2016-10-05 15:44:31.663159] mirserver: Starting
[2016-10-05 15:44:31.670542] mirserver: Using nested cursor
*** buffer overflow detected ***: unity8 terminated
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(+0x77725)[0x7fc167c71725]
/lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x5c)[0x7fc167d1289c]
/lib/x86_64-linux-gnu/libc.so.6(+0x1168a0)[0x7fc167d108a0]
/usr/lib/x86_64-linux-gnu/libmircommon.so.6(_ZN8MirEvent11deserializeERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEE+0x79)[0x7fc15d3aa9a9]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(_ZN3mir6events17deserialize_eventERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEE+0x1d)[0x7fc15f50667d]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(+0x51fad)[0x7fc15f4fafad]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(+0x4b857)[0x7fc15f4f4857]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(+0x572d3)[0x7fc15f5002d3]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(+0x4c0ed)[0x7fc15f4f50ed]
/usr/lib/x86_64-linux-gnu/libmirclient.so.9(+0x4c1d7)[0x7fc15f4f51d7]
/usr/lib/x86_64-linux-gnu/libmircommon.so.5(_ZN3mir8dispatch24MultiplexingDispatchable8dispatchEj+0x134)[0x7fc15e500354]
/usr/lib/x86_64-linux-gnu/libmircommon.so.5(_ZN3mir8dispatch24MultiplexingDispatchable8dispatchEj+0x134)[0x7fc15e500354]
/usr/lib/x86_64-linux-gnu/libmircommon.so.5(+0x2081f)[0x7fc15e50f81f]
/usr/lib/x86_64-linux-gnu/libmircommon.so.5(+0x187fe)[0x7fc15e5077fe]
/usr/lib/x86_64-linux-gnu/libstdc++.so.6(+0xb8c80)[0x7fc168291c80]
/lib/x86_64-linux-gnu/libpthread.so.0(+0x76fa)[0x7fc1679e46fa]
/lib/x86_64-linux-gnu/libc.so.6(clone+0x6d)[0x7fc167d00b5d]

Revision history for this message
Daniel van Vugt (vanvugt) wrote :

Also, if these crashes aren't reaching errors.ubuntu.com then we should address that.

Changed in mir:
milestone: none → 0.25.0
Daniel van Vugt (vanvugt)
Changed in mir:
importance: Critical → High
Brandon Schaefer (brandontschaefer)
Changed in mir:
milestone: 0.25.0 → 0.26.0
Revision history for this message
dinamic (dinamic6661) wrote :

2016-12-17:15:03:10.526] qtmir.mir: SessionListener::~SessionListener - this= SessionListener(0x7f7d001647c0)
*** Error in `unity8': double free or corruption (out): 0x00007f7ce412e600 ***
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(+0x777e5)[0x7f7d2aab17e5]
/lib/x86_64-linux-gnu/libc.so.6(+0x7fe0a)[0x7f7d2aab9e0a]
/lib/x86_64-linux-gnu/libc.so.6(cfree+0x4c)[0x7f7d2aabd98c]
/usr/lib/x86_64-linux-gnu/libprotobuf.so.9(_ZN6google8protobuf8internal28DestroyDefaultRepeatedFieldsEv+0x71)[0x7f7cec0a8901]
/usr/lib/x86_64-linux-gnu/libprotobuf-lite.so.9(_ZN6google8protobuf23ShutdownProtobufLibraryEv+0x8b)[0x7f7d20c0172b]
/usr/lib/x86_64-linux-gnu/libmirprotobuf.so.3(+0x210d9)[0x7f7d212530d9]
/lib64/ld-linux-x86-64.so.2(+0x10c17)[0x7f7d2d126c17]
/lib/x86_64-linux-gnu/libc.so.6(+0x39ff8)[0x7f7d2aa73ff8]
/lib/x86_64-linux-gnu/libc.so.6(+0x3a045)[0x7f7d2aa74045]
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xf7)[0x7f7d2aa5a837]
unity8(_start+0x29)[0x407bd9]

Revision history for this message
dinamic (dinamic6661) wrote :

i see the same thing on 16.04 + overlay

Revision history for this message
dinamic (dinamic6661) wrote :

actually i'm not sure it's the same bug or if i'm doing something sane

i get buffer overflows when i try to run snaps from terminal app (deb)
"snap run ubuntu-terminal-app" for ex

Revision history for this message
Daniel van Vugt (vanvugt) wrote :

dinamic:
It looks like from comment #2 you are experiencing bug 1535297 instead. Please join the fun over in bug 1535297.

Daniel van Vugt (vanvugt)
Changed in mir:
milestone: 0.26.0 → none
Revision history for this message
Michał Sawicz (saviq) wrote :

Syncing task from Mir.

Changed in mir (Ubuntu):
importance: Undecided → High
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.