Bug#523320: marked as done (libnxml0: crashes with non well-formed xml)

To: Joseph Herlant <herlantj@gmail.com>
Subject: Bug#523320: marked as done (libnxml0: crashes with non well-formed xml)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 15 Mar 2014 17:33:29 +0000
Message-id: <[🔎] handler.523320.D523320.139490470827390.ackdone@bugs.debian.org>
References: <CAPQicOwmQS1bSaQHybkq7Mvr1wj81zVnU0NfNkQ3EwfE+aLWaA@mail.gmail.com> <20090409105102.10072.20147.reportbug@eddie.casa.mia>

Your message dated Sat, 15 Mar 2014 18:31:01 +0100
with message-id <CAPQicOwmQS1bSaQHybkq7Mvr1wj81zVnU0NfNkQ3EwfE+aLWaA@mail.gmail.com>
and subject line #523320: unreproducible
has caused the Debian Bug report #523320,
regarding libnxml0: crashes with non well-formed xml
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
523320: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=523320
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: libnxml0: crashes with non well-formed xml
From: Riccardo Stagni <unriccio@email.it>
Date: Thu, 09 Apr 2009 12:51:03 +0200
Message-id: <20090409105102.10072.20147.reportbug@eddie.casa.mia>

Package: libnxml0
Version: 0.18.3-2
Severity: normal

I had some crashes with newsbeuter. After some investigations I discovered
the cause: an unescaped ampersand. Galeon (the browser I use, gecko-based)
throws an XML parsing error, while newsbeuter crashed with segfault.
Could the library fail gracefully instead of dying miserably?

I attach the backtrace obtained with lib{nxml,mrss}0-dbg packages, and the
culprit xml.

ciao
Riccardo


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores)
Locale: LANG=it_IT@euro, LC_CTYPE=it_IT@euro (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash

Versions of packages libnxml0 depends on:
ii  libc6                         2.9-6      GNU C Library: Shared libraries
ii  libcurl3-gnutls               7.18.2-8.1 Multi-protocol file transfer libra

libnxml0 recommends no packages.

libnxml0 suggests no packages.

-- no debconf information

(gdb) bt
#0  0x00000012 in ?? ()
#1  0xb7f3c293 in __nxml_parse_get_tag (doc=0xa49c740, buffer=0xb673f038, 
    size=0xb673f034, data=0xb673d544, doctype=0xb673f03c) at nxml_parser.c:852
#2  0xb7f3cce8 in __nxml_parse_get_tag (doc=0xa49c740, buffer=0xb673f038, 
    size=0xb673f034, data=0xb673de14, doctype=0xb673f03c) at nxml_parser.c:1108
#3  0xb7f3cce8 in __nxml_parse_get_tag (doc=0xa49c740, buffer=0xb673f038, 
    size=0xb673f034, data=0xb673e6e4, doctype=0xb673f03c) at nxml_parser.c:1108
#4  0xb7f3cce8 in __nxml_parse_get_tag (doc=0xa49c740, buffer=0xb673f038, 
    size=0xb673f034, data=0xb673efb4, doctype=0xb673f03c) at nxml_parser.c:1108
#5  0xb7f3cce8 in __nxml_parse_get_tag (doc=0xa49c740, buffer=0xb673f038, 
    size=0xb673f034, data=0xb673f040, doctype=0xb673f03c) at nxml_parser.c:1108
#6  0xb7f3d417 in __nxml_parse_buffer (nxml=0xa49c740, 
    r_buffer=<value optimized out>, r_size=188634) at nxml_parser.c:1337
#7  0xb7f2fdef in mrss_parse_url_with_options_error_and_transfer_buffer (
    url=0xa5bdfb4 "http://blog.makezine.com/index.xml";, ret=0xb673f20c, 
    options=0xa46fff8, code=0xb673f21c, feed_content=0x0, feed_size=0x0)
    at mrss_parser.c:1265
#8  0xb7f2ff02 in mrss_parse_url_with_options_and_error (
    url=0xa5bdfb4 "http://blog.makezine.com/index.xml";, ret=0xb673f20c, 
    options=0xa46fff8, code=0xb673f21c) at mrss_parser.c:1213
#9  0x08089b32 in ?? ()
#10 0x0808af52 in ?? ()
#11 0x0808c735 in ?? ()
---Type <return> to continue, or q <return> to quit---
#12 0x0806d06a in ?? ()
#13 0x0806d42e in ?? ()
#14 0x0806d8fa in ?? ()
#15 0x0807b51b in ?? ()
#16 0x080c7543 in ?? ()
#17 0xb7f4b4e5 in start_thread () from /lib/i686/cmov/libpthread.so.0
#18 0xb7cd00de in clone () from /lib/i686/cmov/libc.so.6

Attachment: index.xml.gz
Description: GNU Zip compressed data

--- End Message ---

--- Begin Message ---

To: 523320-submitter@bugs.debian.org, 523320-done@bugs.debian.org

Subject: #523320: unreproducible

From: Joseph Herlant <herlantj@gmail.com>

Date: Sat, 15 Mar 2014 18:31:01 +0100

Message-id: <CAPQicOwmQS1bSaQHybkq7Mvr1wj81zVnU0NfNkQ3EwfE+aLWaA@mail.gmail.com>
Control: tags -1 + unreproducible

Hi,

Andrea wasn't able to reproduce the bug with the elements you gave in
2009. I'm still unable to reproduce it today.
I'm able to parse it, for example using the parse.c example.
Furthermore, newsbeuter is now using libxml2 instead of libnxml.

Without any additionnal informations in 5 years, I think I can close this bug.

Best,
Joseph
--- End Message ---

Reply to:

Prev by Date: Processing of libiodbc2_3.52.7-3.1_amd64.changes
Next by Date: Processed: #523320: unreproducible
Previous by thread: Processing of libiodbc2_3.52.7-3.1_amd64.changes
Next by thread: Processed: #523320: unreproducible
Index(es):
- Date
- Thread