Summary: | www-client/chromium: browsing mega.nz/register crash the browser tab with a SIGSEGV | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | David <david.guglielmi> |
Component: | Current packages | Assignee: | Chromium Project <chromium> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | |
Priority: | Normal | Keywords: | PATCH, PullRequest |
Version: | unspecified | ||
Hardware: | AMD64 | ||
OS: | Linux | ||
See Also: |
https://chromium-review.googlesource.com/c/chromium/src/+/4546610 https://github.com/gentoo/gentoo/pull/31344 |
||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
David
2023-05-22 21:34:46 UTC
No debug symbols with my current build of chromium, so I don't know how to really use the core dump file: Using host libthread_db library "/usr/lib64/libthread_db.so.1". Core was generated by `/usr/lib64/chromium-browser/chrome --type=renderer --crashpad-handler-pid=31176'. Program terminated with signal SIGSEGV, Segmentation fault. #0 0x0000560001c08550 in ?? () [Current thread is 1 (Thread 0x7f360d99d600 (LWP 1))] (gdb) bt #0 0x0000560001c08550 in () #1 0x0000560000e47c06 in () #2 0x0000323900214e00 in () #3 0x0000323900a93238 in () #4 0x0000323900778e58 in () #5 0x00005600067d3e80 in data_start () #6 0x000056000161b2f0 in () #7 0x0000323900a932b0 in () #8 0x00007ffcd46e77c0 in () #9 0x0000560000e480c8 in () #10 0x0000323900778e58 in () #11 0x00005600067d3e80 in data_start () #12 0x0000000000000000 in () (gdb) I reproduce the issue on two Gentoo systems, but not on a Debian host (same chromium upstream version). Confirmed in www-client/chromium-113.0.5672.126 - it's a NULL pointer deference in blink::RuntimeEnabledFeaturesBase::DocumentPictureInPictureAPIEnabled(), with the NULL pointer coming from blink::HTMLMediaElement::ShouldReusePlayer(). Already fixed yesterday by the upstream in https://chromium.googlesource.com/chromium/src.git/+/2af2d08972d14d5bdd91e0515eb5b15b4444aee9 With the above patch applied Chromium no longer crashes for me at the aforementioned site. (In reply to Maciej S. Szmigiero from comment #2) > Confirmed in www-client/chromium-113.0.5672.126 - it's a NULL pointer > deference in > blink::RuntimeEnabledFeaturesBase::DocumentPictureInPictureAPIEnabled(), > with the NULL pointer coming from > blink::HTMLMediaElement::ShouldReusePlayer(). > > Already fixed yesterday by the upstream in > https://chromium.googlesource.com/chromium/src.git/+/ > 2af2d08972d14d5bdd91e0515eb5b15b4444aee9 > > With the above patch applied Chromium no longer crashes for me at the > aforementioned site. Thank you, the issue is also fixed for me with the patch suggested by Maciej. The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f747a372822f32bb299dc401b548db527c9a20f1 commit f747a372822f32bb299dc401b548db527c9a20f1 Author: Matt Jolly <Matt.Jolly@footclan.ninja> AuthorDate: 2023-06-07 14:31:31 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2023-06-10 05:09:01 +0000 www-client/chromium: add 114.0.5735.110 Add myself as a maintainer Bug: https://bugs.gentoo.org/907999 Closes: https://bugs.gentoo.org/906911 Closes: https://bugs.gentoo.org/906962 Signed-off-by: Matt Jolly <Matt.Jolly@footclan.ninja> Closes: https://github.com/gentoo/gentoo/pull/31344 Signed-off-by: Sam James <sam@gentoo.org> www-client/chromium/Manifest | 2 + www-client/chromium/chromium-114.0.5735.110.ebuild | 1268 ++++++++++++++++++++ .../chromium/files/chromium-114-compiler.patch | 171 +++ www-client/chromium/files/chromium-114-gcc12.patch | 30 + .../chromium/files/chromium-114-sigsegv-dom.patch | 73 ++ www-client/chromium/metadata.xml | 8 + 6 files changed, 1552 insertions(+) |