Shell crashes when closing apps with Qt 5.1.1
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
qtbase-opensource-src (Ubuntu) |
Fix Released
|
Critical
|
Unassigned | ||
unity8 (Ubuntu) |
Invalid
|
Critical
|
Unassigned |
Bug Description
Using unity8 from https:/
unity8 1:7.81.
libqt5core5:armhf 5.1.1+dfsg-
libqt5opengl5:armhf 5.1.1+dfsg-
Qt5.1.1 based build:
http://
Steps to reproduce:
1 - Boot the phone
2 - Open an app (e.g. browser)
3 - Get back to the shell
4 - Close the app
Stacktrace:
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x4c44d460 (LWP 1575)]
0x00000000 in ?? ()
(gdb) bt full
#0 0x00000000 in ?? ()
No symbol table info available.
#1 0x40ba007c in QMetaObject::cast (this=0x40664c24 <QSGDynamicText
m = <optimized out>
#2 0x40544460 in qobject_
No locals.
#3 QSGDefaultImage
doDirty = false
alpha = <optimized out>
#4 0x405348ce in QSGRenderer:
n = 0x4f6696f8
it = {i = {i = 0x4ed81830}}
items = {q_hash = {{d = 0x47641f70, e = 0x47641f70}}}
#5 0x405341ca in QSGRenderer:
bindTime = 0
renderTime = 0
#6 0x405342e8 in QSGRenderer:
b = warning: RTTI symbol not found for class 'QSGRenderer:
{<QSGBindable> = {_vptr.QSGBindable = 0x4065dad8 <vtable for QSGRenderer:
#7 0x4053ae56 in QSGContext:
No locals.
#8 0x4055e52e in QQuickWindowPri
fboId = <optimized out>
#9 0x4054bace in QSGRenderThread
i = 0
waitTimer = {t1 = 333, t2 = 574734734}
#10 0x4054c996 in QSGRenderThread
No locals.
#11 0x40a8c86c in QThreadPrivate:
__clframe = {__cancel_routine = 0x40a8bff1 <QThreadPrivate
thr = 0x228738
data = <optimized out>
objectName = {static null = {<No data fields>}, d = 0x40bfee94 <QArrayData:
#12 0x41a30e64 in start_thread (arg=0x4c44d460) at pthread_
pd = 0x4c44d460
unwind_buf = {cancel_jmp_buf = {{jmp_buf = {1279579768, 1279579232, 0, 1279577576, -1095887600, 1084803025, -1095887600, 2263032, 1279577576, 1101205059, 0 <repeats 16 times>, 536870931,
0 <repeats 37 times>}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}}
pagesize_m1 = <optimized out>
sp = <optimized out>
freesize = <optimized out>
#13 0x4115e758 in ?? () at ../ports/
No locals.
#14 0x4115e758 in ?? () at ../ports/
CVE References
tags: | added: qt5.1 |
Changed in unity8: | |
importance: | Undecided → Critical |
Changed in qtbase-opensource-src (Ubuntu): | |
importance: | Undecided → Critical |
Changed in unity8 (Ubuntu): | |
importance: | Undecided → Critical |
Changed in unity8: | |
importance: | Critical → Undecided |
status: | New → Incomplete |
no longer affects: | unity8 |
/*! :superClass( ) const
\fn QMetaObject *QMetaObject:
Returns the meta-object of the superclass, or 0 if there is no
such object.
\sa className()
*/
/*!
\internal
Returns \a obj if object \a obj inherits from this :cast(QObject *obj) const <<<<<-- ------- ------ crash (line 338)
return obj;
meta-object; otherwise returns 0.
*/
QObject *QMetaObject:
{
if (obj) {
const QMetaObject *m = obj->metaObject(); // <<<<<<<
do {
if (m == this)
} while ((m = m->d.superdata));
}
return 0;
}