Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 325281

Summary: games-emulation/gxmame buffer overflow (sys-devel/gcc-4.5 and sys-libs/glibc-2.11.2)
Product: Gentoo Linux Reporter: David Carlos Manuelda <StormByte>
Component: Current packagesAssignee: Gentoo Games <games>
Status: RESOLVED FIXED    
Severity: normal CC: hardened
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 259417    
Attachments: emerge --info output

Description David Carlos Manuelda 2010-06-24 00:38:06 UTC
I got a buffer overflow error in gxmame.

To reproduce:
open gxmame, go to options->default options.
Go to controller tab, and select a joystick.

When click on apply, I got a backtrace:

*** buffer overflow detected ***: gxmame terminated
======= Backtrace: =========
/lib/libc.so.6(__fortify_fail+0x37)[0x7f08037d6a17]
/lib/libc.so.6(+0xe4830)[0x7f08037d4830]
/lib/libc.so.6(+0xe3a27)[0x7f08037d3a27]
gxmame[0x43d711]
gxmame[0x42c325]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x166)[0x7f08043881e6]
/usr/lib/libgobject-2.0.so.0(+0x1b94c)[0x7f080439694c]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x8bd)[0x7f080439fefd]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x83)[0x7f08043a00c3]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x166)[0x7f08043881e6]
/usr/lib/libgobject-2.0.so.0(+0x1b94c)[0x7f080439694c]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x8bd)[0x7f080439fefd]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x83)[0x7f08043a00c3]
/usr/lib/libgtk-x11-2.0.so.0(+0x91035)[0x7f0805dd4035]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x166)[0x7f08043881e6]
/usr/lib/libgobject-2.0.so.0(+0x1afe7)[0x7f0804395fe7]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x8bd)[0x7f080439fefd]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x83)[0x7f08043a00c3]
/usr/lib/libgtk-x11-2.0.so.0(+0x8fdfd)[0x7f0805dd2dfd]
/usr/lib/libgtk-x11-2.0.so.0(+0x13a458)[0x7f0805e7d458]
/usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x166)[0x7f08043881e6]
/usr/lib/libgobject-2.0.so.0(+0x1b717)[0x7f0804396717]
/usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x693)[0x7f080439fcd3]
/usr/lib/libgobject-2.0.so.0(g_signal_emit+0x83)[0x7f08043a00c3]
/usr/lib/libgtk-x11-2.0.so.0(+0x24576f)[0x7f0805f8876f]
/usr/lib/libgtk-x11-2.0.so.0(gtk_propagate_event+0xc6)[0x7f0805e7b706]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main_do_event+0x21c)[0x7f0805e7b9fc]
/usr/lib/libgdk-x11-2.0.so.0(+0x5c28c)[0x7f0805aee28c]
/usr/lib/libglib-2.0.so.0(g_main_context_dispatch+0x22e)[0x7f0803ecac6e]
/usr/lib/libglib-2.0.so.0(+0x3d3c8)[0x7f0803ecb3c8]
/usr/lib/libglib-2.0.so.0(g_main_loop_run+0x182)[0x7f0803ecb922]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xa7)[0x7f0805e7aab7]
gxmame[0x40baea]
/lib/libc.so.6(__libc_start_main+0xfd)[0x7f080370eb6d]
gxmame[0x40b129]
======= Memory map: ========
00400000-00455000 r-xp 00000000 08:08 332728                             /usr/games/bin/gxmame
00654000-00655000 r--p 00054000 08:08 332728                             /usr/games/bin/gxmame
00655000-00657000 rw-p 00055000 08:08 332728                             /usr/games/bin/gxmame
00657000-00658000 rw-p 00000000 00:00 0 
00b5a000-02539000 rw-p 00000000 00:00 0                                  [heap]
7f07fcb33000-7f07fcb48000 r-xp 00000000 08:08 287211                     /lib64/libgcc_s.so.1
7f07fcb48000-7f07fcd47000 ---p 00015000 08:08 287211                     /lib64/libgcc_s.so.1
7f07fcd47000-7f07fcd48000 r--p 00014000 08:08 287211                     /lib64/libgcc_s.so.1
7f07fcd48000-7f07fcd49000 rw-p 00015000 08:08 287211                     /lib64/libgcc_s.so.1
7f07fcd72000-7f07fcdfe000 r--p 00000000 08:08 112076                     /usr/share/fonts/dejavu/DejaVuSans-Bold.ttf
7f07fcdfe000-7f07fce2f000 rw-p 00000000 00:00 0 
7f07fce2f000-7f07fce8f000 rw-s 00000000 00:04 16908298                   /SYSV00000000 (deleted)
7f07fce8f000-7f07fce92000 r--p 00000000 08:08 79700                      /usr/share/locale/es/LC_MESSAGES/atk10.mo
7f07fce92000-7f07fcef2000 rw-s 00000000 00:04 16875529                   /SYSV00000000 (deleted)
7f07fcef2000-7f07fcf8a000 r--p 00000000 08:08 112087                     /usr/share/fonts/dejavu/DejaVuSans.ttf
7f07fcf8a000-7f07fcf8c000 r-xp 00000000 08:08 161274                     /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so
7f07fcf8c000-7f07fd18b000 ---p 00002000 08:08 161274                     /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so
7f07fd18b000-7f07fd18c000 r--p 00001000 08:08 161274                     /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so
7f07fd18c000-7f07fd18d000 rw-p 00002000 08:08 161274                     /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so
7f07fd18d000-7f07fd196000 r--s 00000000 08:08 319628                     /var/cache/fontconfig/87f5e051180a7a75f16eb6fe7dbd3749-le64.cache-3
7f07fd196000-7f07fd1a8000 r--s 00000000 08:08 319596                     /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le64.cache-3
7f07fd1a8000-7f07fd1aa000 r--s 00000000 08:08 319598                     /var/cache/fontconfig/1a21276ee10c19eef148b044d48c5704-le64.cache-3
7f07fd1aa000-7f07fd1b3000 r--s 00000000 08:08 319627                     /var/cache/fontconfig/12b26b760a24f8b4feb03ad48a333a72-le64.cache-3
7f07fd1b3000-7f07fd1cc000 r--s 00000000 08:08 319715                     /var/cache/fontconfig/4b5cf4386f1cde02a336ba961b4ac82d-le64.cache-3
7f07fd1cc000-7f07fd1d2000 r--s 00000000 08:08 319718                     /var/cache/fontconfig/61c91b4f4892ffae4bc0efef540a1e5d-le64.cache-3
7f07fd1d2000-7f07fd1e1000 r--s 00000000 08:08 319717                     /var/cache/fontconfig/f73c51d6200a78c2054c26a5b2398976-le64.cache-3
7f07fd1e1000-7f07fd1e3000 r-xp 00000000 08:08 9832                       /usr/lib64/gconv/ISO8859-1.so
7f07fd1e3000-7f07fd3e2000 ---p 00002000 08:08 9832                       /usr/lib64/gconv/ISO8859-1.so
7f07fd3e2000-7f07fd3e3000 r--p 00001000 08:08 9832                       /usr/lib64/gconv/ISO8859-1.so
7f07fd3e3000-7f07fd3e4000 rw-p 00002000 08:08 9832                       /usr/lib64/gconv/ISO8859-1.so
7f07fd3e4000-7f07fd7fd000 r--p 00000000 08:08 13118                      /usr/share/icons/hicolor/icon-theme.cache
7f07fd7fd000-7f07fdc16000 r--p 00000000 08:08 13118                      /usr/share/icons/hicolor/icon-theme.cache
7f07fdc16000-7f07fdc34000 r--p 00000000 08:08 9487                       /usr/share/locale/es/LC_MESSAGES/libc.mo
7f07fdc34000-7f07fdc38000 r-xp 00000000 08:08 161306                     /usr/lib64/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
7f07fdc38000-7f07fde38000 ---p 00004000 08:08 161306                     /usr/lib64/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
7f07fde38000-7f07fde39000 r--p 00004000 08:08 161306                     /usr/lib64/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
7f07fde39000-7f07fde3a000 rw-p 00005000 08:08 161306                     /usr/lib64/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
7f07fde3a000-7f07fde46000 r-xp 00000000 08:08 10016                      /lib64/libnss_files-2.11.2.so
7f07fde46000-7f07fe045000 ---p 0000c000 08:08 10016                      /lib64/libnss_files-2.11.2.so
7f07fe045000-7f07fe046000 r--p 0000b000 08:08 10016                      /lib64/libnss_files-2.11.2.so


Reproducible: Always
Comment 1 SpanKY gentoo-dev 2010-06-25 19:49:23 UTC
you need to post `emerge --info` like the bug reporting page says
Comment 2 David Carlos Manuelda 2010-06-26 02:24:00 UTC
I'm terribly sorry, I'll attach it.
Comment 3 David Carlos Manuelda 2010-06-26 02:25:01 UTC
Created attachment 236579 [details]
emerge --info output
Comment 4 David Carlos Manuelda 2010-06-26 02:25:30 UTC
Sorry for double posting, but, should I report it upstream too?
Comment 5 SpanKY gentoo-dev 2010-06-26 21:20:36 UTC
i wouldnt yet until we debug it a bit to verify it is a bug in gxmame
Comment 6 Tupone Alfredo gentoo-dev 2010-12-01 10:07:36 UTC
I did a change that should fix it. Resync and test.
Thanks for report