Bug#876999: marked as done (libqt5webkit5: Segfault in JSC::JSRopeString::resolveRope (WebKit memcpy bug))

To: Dmitry Shachnev <mitya57@debian.org>
Subject: Bug#876999: marked as done (libqt5webkit5: Segfault in JSC::JSRopeString::resolveRope (WebKit memcpy bug))
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 26 Oct 2017 21:51:09 +0000
Message-id: <[🔎] handler.876999.D876999.150905457226035.ackdone@bugs.debian.org>
Reply-to: 876999@bugs.debian.org
References: <E1e7q1r-000I0Y-3Z@fasolo.debian.org> <150652351809.5935.9937092136588701558.reportbug@packie>

Your message dated Thu, 26 Oct 2017 21:49:31 +0000
with message-id <E1e7q1r-000I0Y-3Z@fasolo.debian.org>
and subject line Bug#876999: fixed in qtwebkit-opensource-src 5.212.0~alpha2-3
has caused the Debian Bug report #876999,
regarding libqt5webkit5: Segfault in JSC::JSRopeString::resolveRope (WebKit memcpy bug)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
876999: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876999
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: libqt5webkit5: Segfault in JSC::JSRopeString::resolveRope (WebKit memcpy bug)
From: Gregor Riepl <gregor.riepl@swisstxt.ch>
Date: Wed, 27 Sep 2017 16:45:18 +0200
Message-id: <150652351809.5935.9937092136588701558.reportbug@packie>

Package: libqt5webkit5
Version: 5.9.1+dfsg-5
Severity: important
Tags: patch upstream

Dear Maintainer,

When running a Python3 application that uses QtWebKit5, I'm getting the
following segfault:

Thread 1 "python3" received signal SIGSEGV, Segmentation fault.
0x00007fffefc5592f in JSC::JSRopeString::resolveRope(JSC::ExecState*) const ()
from /usr/lib/x86_64-linux-gnu/libQt5WebKit.so.5
(gdb) bt
#0  0x00007fffefc5592f in JSC::JSRopeString::resolveRope(JSC::ExecState*) const
() at /usr/lib/x86_64-linux-gnu/libQt5WebKit.so.5
#1  0x00007fffefc8a570 in  () at /usr/lib/x86_64-linux-gnu/libQt5WebKit.so.5
#2  0x00007fffefa37584 in  () at /usr/lib/x86_64-linux-gnu/libQt5WebKit.so.5
#3  0x00007fff8979c4d5 in  ()
#4  0x00007fffffffc708 in  ()
#5  0xffff00000000002d in  ()
#6  0x00007fff00000000 in  ()
#7  0x00007fff5162db50 in  ()
#8  0x00007fff00000000 in  ()
#9  0x00007fff56754028 in  ()
#10 0x8000000080000000 in  ()
#11 0x6adccedb23bda099 in  ()
#12 0x00007fffc926b580 in  ()
#13 0x00007fff896c9b00 in  ()
#14 0x00007fffc926b590 in  ()
#15 0x00007fff81bfcf98 in  ()
#16 0x0000000000000000 in  ()

This has already been analysed (as seen here:
https://github.com/annulen/webkit/issues/562 ) and seems to be an aliasing bug
in WebKit's string copy routine: https://bugs.webkit.org/show_bug.cgi?id=173407
The bug never caused problems before due to gcc hiding it.

Upstream has already fixed the bug, but libqt5webkit5 in Debian sid is still
affected.
Please update the package with the upstream fix.

Thank you.



-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (500, 'stable'), (100, 'unstable-debug'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libqt5webkit5 depends on:
ii  dpkg                                  1.18.24
ii  libc6                                 2.24-17
ii  libgl1-mesa-glx [libgl1]              13.0.6-1+b2
ii  libglib2.0-0                          2.54.0-1
ii  libgstreamer-plugins-base1.0-0        1.12.3-1
ii  libgstreamer1.0-0                     1.12.3-1
ii  libicu57                              57.1-6
ii  libjpeg62-turbo                       1:1.5.2-2
ii  libpng16-16                           1.6.32-2
ii  libqt5core5a [qtbase-abi-5-9-0]       5.9.1+dfsg-9
ii  libqt5gui5                            5.9.1+dfsg-9
ii  libqt5network5                        5.9.1+dfsg-9
ii  libqt5opengl5                         5.9.1+dfsg-9
ii  libqt5printsupport5                   5.9.1+dfsg-9
ii  libqt5qml5 [qtdeclarative-abi-5-9-1]  5.9.1-6
ii  libqt5quick5                          5.9.1-6
ii  libqt5sql5                            5.9.1+dfsg-9
ii  libqt5widgets5                        5.9.1+dfsg-9
ii  libsqlite3-0                          3.20.1-1
ii  libstdc++6                            7.2.0-5
ii  libwebp6                              0.6.0-3
ii  libx11-6                              2:1.6.4-3
ii  libxcomposite1                        1:0.4.4-2
ii  libxml2                               2.9.4+dfsg1-4
ii  libxrender1                           1:0.9.10-1
ii  libxslt1.1                            1.1.29-2.1
ii  zlib1g                                1:1.2.8.dfsg-5

libqt5webkit5 recommends no packages.

libqt5webkit5 suggests no packages.

-- no debconf information

--- End Message ---

--- Begin Message ---

To: 876999-close@bugs.debian.org
Subject: Bug#876999: fixed in qtwebkit-opensource-src 5.212.0~alpha2-3
From: Dmitry Shachnev <mitya57@debian.org>
Date: Thu, 26 Oct 2017 21:49:31 +0000
Message-id: <E1e7q1r-000I0Y-3Z@fasolo.debian.org>

Source: qtwebkit-opensource-src
Source-Version: 5.212.0~alpha2-3

We believe that the bug you reported is fixed in the latest version of
qtwebkit-opensource-src, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 876999@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Dmitry Shachnev <mitya57@debian.org> (supplier of updated qtwebkit-opensource-src package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 27 Oct 2017 00:26:10 +0300
Source: qtwebkit-opensource-src
Binary: libqt5webkit5-dev libqt5webkit5 qml-module-qtwebkit qtwebkit5-doc qtwebkit5-doc-html
Architecture: source
Version: 5.212.0~alpha2-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
Changed-By: Dmitry Shachnev <mitya57@debian.org>
Description:
 libqt5webkit5 - Web content engine library for Qt
 libqt5webkit5-dev - Web content engine library for Qt - development files
 qml-module-qtwebkit - Qt WebKit QML module
 qtwebkit5-doc - Qt 5 webkit documentation
 qtwebkit5-doc-html - Qt 5 webkit HTML documentation
Closes: 876999
Changes:
 qtwebkit-opensource-src (5.212.0~alpha2-3) unstable; urgency=medium
 .
   * Update symbols files from buildds’ logs.
   * Backport upstream patch to fix WTF::StringImpl::copyChars segfault
     (closes: #876999).
   * Bump Standards-Version to 4.1.1, no changes needed.
   * Update Homepage to point to GitHub.
   * Bump Qt build-dependencies to 5.9.2.
   * Upload to unstable.
Checksums-Sha1:
 9fb5f3c63bee13a6e924775e80b543955d458050 3400 qtwebkit-opensource-src_5.212.0~alpha2-3.dsc
 0b68c8c9df70ea6ae3a1e0f1d9d289ff5a18fd64 62596 qtwebkit-opensource-src_5.212.0~alpha2-3.debian.tar.xz
 696cf096f010e195fe71298a1d93cb299e2bc81b 14172 qtwebkit-opensource-src_5.212.0~alpha2-3_source.buildinfo
Checksums-Sha256:
 389acd95540766a02f2ad31e0157ef99396c42702c8f79a89213798a64410830 3400 qtwebkit-opensource-src_5.212.0~alpha2-3.dsc
 331f082fb958b180edfe3961c7590546a798fca6c7fda1c04129bf696ef7da1e 62596 qtwebkit-opensource-src_5.212.0~alpha2-3.debian.tar.xz
 ff2eb6d6e90b6fc3bcb2baaca81dc01d60da66b7963112b06d432e5a5eadb556 14172 qtwebkit-opensource-src_5.212.0~alpha2-3_source.buildinfo
Files:
 68dd3a3987448ee419ae28780db95bf5 3400 libs optional qtwebkit-opensource-src_5.212.0~alpha2-3.dsc
 8e45a3789f9edea192879ef41e0a2d17 62596 libs optional qtwebkit-opensource-src_5.212.0~alpha2-3.debian.tar.xz
 7793f1c26d89555e2dd6d77d208dad3b 14172 libs optional qtwebkit-opensource-src_5.212.0~alpha2-3_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=C68D
-----END PGP SIGNATURE-----

--- End Message ---

Reply to:

Prev by Date: Processing of qtsensors-opensource-src_5.9.2-2_source.changes
Next by Date: qtlocation-opensource-src_5.9.2+dfsg-2_source.changes ACCEPTED into unstable
Previous by thread: Processing of qtsensors-opensource-src_5.9.2-2_source.changes
Next by thread: qtlocation-opensource-src_5.9.2+dfsg-2_source.changes ACCEPTED into unstable
Index(es):
- Date
- Thread