Ubuntu
poppler package

evince crashs when opening a PDF: evince: CairoOutputDev.cc:923: void CairoOutputDev::drawImageMaskPrescaled(GfxState*, Object*, Stream*, int, int, GBool, GBool): Assertion `0 && "over run\n"' failed.

Bug #183318 reported by Alban Crequy
2
Affects Status Importance Assigned to Milestone
Poppler
Fix Released
Medium
poppler (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

evince crashs when I open a specific test.pdf file:

1 1
evince: CairoOutputDev.cc:923: void CairoOutputDev::drawImageMaskPrescaled(GfxState*, Object*, Stream*, int, int, GBool, GBool): Assertion `0 && "over run\n"' failed.

(gdb) bt
#0 0xffffe410 in __kernel_vsyscall ()
#1 0xb7104875 in raise () from /lib/tls/i686/cmov/libc.so.6
#2 0xb7106201 in abort () from /lib/tls/i686/cmov/libc.so.6
#3 0xb70fdb6e in __assert_fail () from /lib/tls/i686/cmov/libc.so.6
#4 0xb76ee1a8 in CairoOutputDev::drawImageMaskPrescaled () from /usr/lib/libpoppler-glib.so.2
#5 0xb76ee540 in CairoOutputDev::drawImageMask () from /usr/lib/libpoppler-glib.so.2
#6 0xb6b7cd10 in Gfx::doImage () from /usr/lib/libpoppler.so.2
#7 0xb6b7d9b1 in Gfx::opBeginImage () from /usr/lib/libpoppler.so.2
#8 0xb6b7b833 in Gfx::execOp () from /usr/lib/libpoppler.so.2
#9 0xb6b7b9fc in Gfx::go () from /usr/lib/libpoppler.so.2
#10 0xb6b7bfa7 in Gfx::display () from /usr/lib/libpoppler.so.2
#11 0xb6b7e7a5 in Gfx::doShowText () from /usr/lib/libpoppler.so.2
#12 0xb6b7ed5e in Gfx::opShowText () from /usr/lib/libpoppler.so.2
#13 0xb6b7b833 in Gfx::execOp () from /usr/lib/libpoppler.so.2
#14 0xb6b7b9fc in Gfx::go () from /usr/lib/libpoppler.so.2
#15 0xb6b7bfa7 in Gfx::display () from /usr/lib/libpoppler.so.2
#16 0xb6bc14c6 in Page::displaySlice () from /usr/lib/libpoppler.so.2
#17 0xb76e81af in poppler_page_render_to_pixbuf () from /usr/lib/libpoppler-glib.so.2
#18 0x080a02c3 in pdf_document_thumbnails_get_thumbnail (document_thumbnails=0x8306740, rc=0x8306600, border=1)
    at /build/buildd/evince-2.20.1/./backend/pdf/ev-poppler.cc:1215
#19 0x0809a2da in ev_document_thumbnails_get_thumbnail (document=0x8306740, rc=0x8306600, border=1)
    at /build/buildd/evince-2.20.1/./libdocument/ev-document-thumbnails.c:57
#20 0x0806333d in ev_job_thumbnail_run (job=0x8391d00) at /build/buildd/evince-2.20.1/./shell/ev-jobs.c:437
#21 0x080617c7 in handle_job (job=0x8391d00) at /build/buildd/evince-2.20.1/./shell/ev-job-queue.c:128
#22 0x08061e8c in ev_render_thread (data=0x0) at /build/buildd/evince-2.20.1/./shell/ev-job-queue.c:263
#23 0xb72df5af in ?? () from /usr/lib/libglib-2.0.so.0
#24 0x00000000 in ?? ()

./poppler/CairoOutputDev.cc:
            printf("%d %d\n", n, total);
            assert(0 && "over run\n");

From the printf, I know that n==1 and total==1.

Revision history for this message
Alban Crequy (muadda) wrote :

The attached PDF file crashes evince: 100% reproductible.

I use Ubuntu Gutsy, evince 2.20.1-0ubuntu1 and libpopple 0.6-0ubuntu2.1.

Revision history for this message
In , Sebastien Bacher (seb128) wrote :

The bug has been opened on https://bugs.launchpad.net/ubuntu/+source/poppler/+bug/183318

"evince crashs when I open a specific test.pdf file:

1 1
evince: CairoOutputDev.cc:923: void CairoOutputDev::drawImageMaskPrescaled(GfxState*, Object*, Stream*, int, int, GBool, GBool): Assertion `0 && "over run\n"' failed.

(gdb) bt
#0 0xffffe410 in __kernel_vsyscall ()
#1 0xb7104875 in raise () from /lib/tls/i686/cmov/libc.so.6
#2 0xb7106201 in abort () from /lib/tls/i686/cmov/libc.so.6
#3 0xb70fdb6e in __assert_fail () from /lib/tls/i686/cmov/libc.so.6
#4 0xb76ee1a8 in CairoOutputDev::drawImageMaskPrescaled () from /usr/lib/libpoppler-glib.so.2
#5 0xb76ee540 in CairoOutputDev::drawImageMask () from /usr/lib/libpoppler-glib.so.2
#6 0xb6b7cd10 in Gfx::doImage () from /usr/lib/libpoppler.so.2
#7 0xb6b7d9b1 in Gfx::opBeginImage () from /usr/lib/libpoppler.so.2
#8 0xb6b7b833 in Gfx::execOp () from /usr/lib/libpoppler.so.2
#9 0xb6b7b9fc in Gfx::go () from /usr/lib/libpoppler.so.2
#10 0xb6b7bfa7 in Gfx::display () from /usr/lib/libpoppler.so.2
#11 0xb6b7e7a5 in Gfx::doShowText () from /usr/lib/libpoppler.so.2
#12 0xb6b7ed5e in Gfx::opShowText () from /usr/lib/libpoppler.so.2
#13 0xb6b7b833 in Gfx::execOp () from /usr/lib/libpoppler.so.2
#14 0xb6b7b9fc in Gfx::go () from /usr/lib/libpoppler.so.2
#15 0xb6b7bfa7 in Gfx::display () from /usr/lib/libpoppler.so.2
#16 0xb6bc14c6 in Page::displaySlice () from /usr/lib/libpoppler.so.2
#17 0xb76e81af in poppler_page_render_to_pixbuf () from /usr/lib/libpoppler-glib.so.2
#18 0x080a02c3 in pdf_document_thumbnails_get_thumbnail (document_thumbnails=0x8306740, rc=0x8306600, border=1)
    at /build/buildd/evince-2.20.1/./backend/pdf/ev-poppler.cc:1215
#19 0x0809a2da in ev_document_thumbnails_get_thumbnail (document=0x8306740, rc=0x8306600, border=1)
    at /build/buildd/evince-2.20.1/./libdocument/ev-document-thumbnails.c:57
#20 0x0806333d in ev_job_thumbnail_run (job=0x8391d00) at /build/buildd/evince-2.20.1/./shell/ev-jobs.c:437
#21 0x080617c7 in handle_job (job=0x8391d00) at /build/buildd/evince-2.20.1/./shell/ev-job-queue.c:128
#22 0x08061e8c in ev_render_thread (data=0x0) at /build/buildd/evince-2.20.1/./shell/ev-job-queue.c:263
#23 0xb72df5af in ?? () from /usr/lib/libglib-2.0.so.0
#24 0x00000000 in ?? ()

./poppler/CairoOutputDev.cc:
            printf("%d %d\n", n, total);
            assert(0 && "over run\n");

From the printf, I know that n==1 and total==1.

http://launchpadlibrarian.net/11360097/test.pdf.bz2
The PDF file that crashs evince (148.7 KiB, application/octet-stream)

The attached PDF file crashes evince: 100% reproductible.

I use Ubuntu Gutsy, evince 2.20.1-0ubuntu1 and libpopple 0.6-0ubuntu2.1."

The current libpoppler version has the same issue

Revision history for this message
Sebastien Bacher (seb128) wrote :

Thanks for your bug report. This bug has been reported to the developers of the software. You can track it and make comments here: https://bugs.freedesktop.org/show_bug.cgi?id=14398

Changed in poppler:
importance: Undecided → Medium
status: New → Triaged
status: New → Unknown
Bug Watch Updater (bug-watch-updater)
Changed in poppler:
status: Unknown → Confirmed
Revision history for this message
In , Jeff Muizelaar (jeff-infidigm) wrote :

Should be fixed in git.

Bug Watch Updater (bug-watch-updater)
Changed in poppler:
status: Confirmed → Fix Released
Revision history for this message
Pedro Villavicencio (pedro) wrote :

fixed upstream, thanks for reporting.

Changed in poppler:
status: Triaged → Fix Committed
Revision history for this message
Pedro Villavicencio (pedro) wrote :

this works fine now in Intrepid, marking this as fix released, thanks you.

Changed in poppler:
status: Fix Committed → Fix Released
Bug Watch Updater (bug-watch-updater)
Changed in poppler:
importance: Unknown → Medium
Bug Watch Updater (bug-watch-updater)
Changed in poppler:
importance: Medium → Unknown
Bug Watch Updater (bug-watch-updater)
Changed in poppler:
importance: Unknown → Medium
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.