[Bug 1103557] New: xfreerdp crashes due to double free'd memory
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557 Bug ID: 1103557 Summary: xfreerdp crashes due to double free'd memory Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: Other OS: Other Status: NEW Severity: Major Priority: P5 - None Component: Network Assignee: bnc-team-screening@forge.provo.novell.com Reporter: manfred.h@gmx.net QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- I use the following command to several Windows 7 systems I have to deal with: xfreerdp /u:USER /v:HOST /sound /bpp:32 +aero +clipboard +fonts +menu-anims +window-drag /gdi:hw /gfx:rfx /rfx /codec-cache:rfx /jpeg-quality:60 /network:auto /size:1366x768 After a while, the session crashes as follows: *** Error in `xfreerdp': double free or corruption (out): 0x00007f34a400c170 *** Aborted It happens most often while traversing through a directory using M$ explorer, but it happened in other situations, too. Reducing the command line to something like xfreerdp /u:USER /v:HOST /sound /bpp:32 /size:1366x768 doesn't change the situation. It should be noted, using the same commands on an openSUSE_Leap_42.3 host (with freerdp-2.0.0~git.1463131968.4e66df7-9.1.x86_64) doesn't show these issues. I'll try to compile the 42.3 version for 15.0 and report back, but this issue is blocking for me, as I have to remotely deal with lots of Windows 7 hosts/desktops. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c1
--- Comment #1 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c2
--- Comment #2 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c3
--- Comment #3 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c4
--- Comment #4 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c5
--- Comment #5 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c6
--- Comment #6 from Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c7
--- Comment #7 from Manfred Hollstein
Hi Manfred, could you attach the backstrace please?
Hi Felix, there is no backtrace unfortunately. However, I just un-installed the freerdp stuff from 15.0, then installed the version from 42.3 and everything works: # rpm -e freerdp libwinpr2 libfreerdp2 # rpm -Uvh --oldpackage /nobackup/vault/mirror/download.opensuse.org/update/leap/42.3/oss/x86_64/freerdp-2.0.0~git.1463131968.4e66df7-9.1.x86_64.rpm /nobackup/vault/mirror/download.opensuse.org/update/leap/42.3/oss/x86_64/libfreerdp2-2.0.0~git.1463131968.4e66df7-9.1.x86_64.rpm As you can see, I have a local mirror of all 42.3 updates here ;) -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c8
--- Comment #8 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c9
--- Comment #9 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c10
Felix Zhang
FWIW, I have just branched the freerdp package from openSUSE:Factory to my own repository at http://download.opensuse.org/repositories/home:/mhnovell:/Rebuilds:/ openSUSE_Leap_15.0/standard/, rebuilt the package and dup'ed them. I can no longer force a crash. Perhaps the rc3 package would be a good candidate as an update to Leap 15.0's rc2 package ;)
Manfred, sorry, I'm afraid updating the package is not the quick answer. As Leap shares packages with SLE. We have to update the SLE package first, which happens either until the next SLE Service Pack / Leap minor release, or through a serious procedure of internal ECO which impacts all SUSE customers. Back to the issue. Could you check coredumpctl if any cores were dumped upon the SIGABRT signal please?
# coredumpctl list If so please run # coredumpctl gdb <PID> and run # bt inside the opened gdb to get the backtrace. Thanks
-- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c11
Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c12
--- Comment #12 from Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c13
--- Comment #13 from Manfred Hollstein
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c14
--- Comment #14 from Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
Johannes Weberhofer
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c16
Matthias Eckermann
Manfred, sorry, I'm afraid updating the package is not the quick answer. As Leap shares packages with SLE. We have to update the SLE package first, which happens either until the next SLE Service Pack / Leap minor release, or through a serious procedure of internal ECO which impacts all SUSE customers.
It is true that major version upgrades in SUSE Linux Enterprise need a specific process, to guarantee for example backward compatibility, to keep dependencies as they are, and similar topics which could negatively impact customers. However, that process can be fast, if needed, for example to fix a bug, and more lightweight, if the upgrade step is below a version number, as it is in this case (-rc2 to -rc3), and backward compatibility are kept. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c17
Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
Frederic Crozat
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c32
Felix Zhang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557
http://bugzilla.opensuse.org/show_bug.cgi?id=1103557#c33
Manfred Hollstein
participants (1)
-
bugzilla_noreply@novell.com