Gimp Segmentation Fault triggered by Glib GParamSpec property name validation
GIMP version:
Note: bug reporters are expected to have verified the bug still exists either in the last stable version of GIMP or on updated development code (master branch).
Operating System: [Linux]
Package: [gimp-2.10.14-1.module_f32+6980+20383b7e.x86_64]
Description of the bug
Opening up gimp crashing the program while loading
Reproduction
Always
Reproduction steps:
- Opened up gimp and the program crashes
…
Expected result:
It starting up
Actual result:
The program crashed
Additional information
GNU Image Manipulation Program version 2.10.14
git-describe: GIMP_2_10_12-511-ga4f55d6c7e
C compiler:
Using built-in specs.
COLLECT_GCC=gcc
COLLECT_LTO_WRAPPER=/usr/libexec/gcc/x86_64-redhat-linux/9/lto-wrapper
OFFLOAD_TARGET_NAMES=nvptx-none
OFFLOAD_TARGET_DEFAULT=1
Target: x86_64-redhat-linux
Configured with: ../configure --enable-bootstrap --enable-languages=c,c++,fortran,objc,obj-c++,ada,go,d,lto --prefix=/usr --mandir=/usr/share/man --infodir=/usr/share/info --with-bugurl=http://bugzilla.redhat.com/bugzilla --enable-shared --enable-threads=posix --enable-checking=release --enable-multilib --with-system-zlib --enable-__cxa_atexit --disable-libunwind-exceptions --enable-gnu-unique-object --enable-linker-build-id --with-gcc-major-version-only --with-linker-hash-style=gnu --enable-plugin --enable-initfini-array --with-isl --enable-offload-targets=nvptx-none --without-cuda-driver --enable-gnu-indirect-function --enable-cet --with-tune=generic --with-arch_32=i686 --build=x86_64-redhat-linux
Thread model: posix
gcc version 9.2.1 20190827 (Red Hat 9.2.1-1) (GCC)
using babl version 0.1.72 (compiled against version 0.1.72)
using GEGL version 0.4.18 (compiled against version 0.4.18)
using GLib version 2.63.3 (compiled against version 2.63.0)
using GdkPixbuf version 2.40.0 (compiled against version 2.40.0)
using GTK+ version 2.24.32 (compiled against version 2.24.32)
using Pango version 1.44.7 (compiled against version 1.44.7)
using Fontconfig version 2.13.92 (compiled against version 2.13.92)
using Cairo version 1.16.0 (compiled against version 1.16.0)
fatal error: Segmentation fault
Stack trace:
# Stack traces obtained from PID 9540 - Thread 9540 #
[New LWP 9573]
[New LWP 9574]
[New LWP 9575]
[New LWP 9576]
[New LWP 9577]
[New LWP 9578]
[New LWP 9579]
[New LWP 9586]
[New LWP 9587]
[New LWP 9588]
[New LWP 9589]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib64/libthread_db.so.1".
0x00007ff3c074f90c in read () from /lib64/libpthread.so.0
Id Target Id Frame
* 1 Thread 0x7ff3bf9eadc0 (LWP 9540) "gimp-2.10" 0x00007ff3c074f90c in read () from /lib64/libpthread.so.0
2 Thread 0x7ff3b27df700 (LWP 9573) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
3 Thread 0x7ff3b1fde700 (LWP 9574) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
4 Thread 0x7ff3b17dd700 (LWP 9575) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
5 Thread 0x7ff3b0fdc700 (LWP 9576) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
6 Thread 0x7ff3abfff700 (LWP 9577) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
7 Thread 0x7ff3ab7fe700 (LWP 9578) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
8 Thread 0x7ff3aaffd700 (LWP 9579) "worker" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
9 Thread 0x7ff3aa7fc700 (LWP 9586) "gmain" 0x00007ff3c066991f in poll () from /lib64/libc.so.6
10 Thread 0x7ff3a9ffb700 (LWP 9587) "gdbus" 0x00007ff3c066991f in poll () from /lib64/libc.so.6
11 Thread 0x7ff3a8871700 (LWP 9588) "async" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
12 Thread 0x7ff389ced700 (LWP 9589) "pool-gimp-2.10" 0x00007ff3c066f02d in syscall () from /lib64/libc.so.6
Thread 12 (Thread 0x7ff389ced700 (LWP 9589)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966da6 in g_cond_wait_until () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c08ea521 in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
#3 0x00007ff3c08eab46 in g_async_queue_timeout_pop () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0943e79 in g_thread_pool_thread_proxy () at /lib64/libglib-2.0.so.0
#5 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#6 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#7 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 11 (Thread 0x7ff3a8871700 (LWP 9588)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x000056042d66edf4 in gimp_parallel_run_async_thread_func ()
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 10 (Thread 0x7ff3a9ffb700 (LWP 9587)):
#0 0x00007ff3c066991f in poll () at /lib64/libc.so.6
#1 0x00007ff3c0919e1e in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c091a1a3 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3 0x00007ff3c0b9fb7a in gdbus_shared_thread_func () at /lib64/libgio-2.0.so.0
#4 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#6 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 9 (Thread 0x7ff3aa7fc700 (LWP 9586)):
#0 0x00007ff3c066991f in poll () at /lib64/libc.so.6
#1 0x00007ff3c0919e1e in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0919f53 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
#3 0x00007ff3c0919fa1 in glib_worker_main () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#6 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 8 (Thread 0x7ff3aaffd700 (LWP 9579)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 7 (Thread 0x7ff3ab7fe700 (LWP 9578)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 6 (Thread 0x7ff3abfff700 (LWP 9577)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 5 (Thread 0x7ff3b0fdc700 (LWP 9576)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 4 (Thread 0x7ff3b17dd700 (LWP 9575)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 3 (Thread 0x7ff3b1fde700 (LWP 9574)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 2 (Thread 0x7ff3b27df700 (LWP 9573)):
#0 0x00007ff3c066f02d in syscall () at /lib64/libc.so.6
#1 0x00007ff3c0966c83 in g_cond_wait () at /lib64/libglib-2.0.so.0
#2 0x00007ff3c0e018fb in gegl_parallel_distribute_thread_func () at /lib64/libgegl-0.4.so.0
#3 0x00007ff3c0943682 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#4 0x00007ff3c0745482 in start_thread () at /lib64/libpthread.so.0
#5 0x00007ff3c0674533 in clone () at /lib64/libc.so.6
Thread 1 (Thread 0x7ff3bf9eadc0 (LWP 9540)):
#0 0x00007ff3c074f90c in read () at /lib64/libpthread.so.0
#1 0x00007ff3c12918b7 in gimp_stack_trace_print () at /lib64/libgimpbase-2.0.so.0
#2 0x000056042d388010 in gimp_eek ()
#3 0x000056042d38844e in ()
#4 0x000056042d388ae0 in gimp_sigfatal_handler ()
#5 0x00007ff3c0750b20 in <signal handler called> () at /lib64/libpthread.so.0
#6 0x000056042d720338 in gimp_param_spec_layer_id ()
#7 0x000056042d635007 in gimp_pdb_compat_param_spec ()
#8 0x000056042d641c77 in gimp_plug_in_handle_message ()
#9 0x000056042d6503d1 in gimp_plug_in_manager_call_query ()
#10 0x000056042d648286 in gimp_plug_in_manager_restore ()
#11 0x000056042d666591 in gimp_real_restore ()
#12 0x00007ff3c0a04872 in g_closure_invoke () at /lib64/libgobject-2.0.so.0
#13 0x00007ff3c0a18064 in signal_emit_unlocked_R () at /lib64/libgobject-2.0.so.0
#14 0x00007ff3c0a23ccd in g_signal_emit_valist () at /lib64/libgobject-2.0.so.0
#15 0x00007ff3c0a24103 in g_signal_emit () at /lib64/libgobject-2.0.so.0
#16 0x000056042d665ac6 in gimp_restore ()
#17 0x000056042d38792b in app_run ()
#18 0x000056042d3870be in main ()
[Inferior 1 (process 9540) detached]