FS#30969 - [icedtea-web-java7] Crashes firefox when loading java web applets

Attached to Project: Arch Linux
Opened by André Fettouhi (A.Fettouhi) - Wednesday, 01 August 2012, 21:26 GMT
Last edited by Andreas Radke (AndyRTR) - Saturday, 04 August 2012, 08:47 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To Andreas Radke (AndyRTR)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 5
Private No

Details

Description:
Today I updated icedtea-web-java7 to version 1.2.1 and since this update when I load a java applet firefox crashes instantly (no output).


Additional info:
* package version(s)
* config and/or log files etc.
icedtea-web-java7 1.2.1

Steps to reproduce:
1. install icedtea-web-java7
2. start firefox
3. go to https://www.mitiak.dk/login.aspx?
4. click on "Login med NemID"
5. crash
This task depends upon

Closed by  Andreas Radke (AndyRTR)
Saturday, 04 August 2012, 08:47 GMT
Reason for closing:  Fixed
Additional comments about closing:  reverted the broken patch as suggested by Deepak, a new release with proper fix should soon be released upstream.
Comment by André Fettouhi (A.Fettouhi) - Wednesday, 01 August 2012, 21:30 GMT
Forgot to add that it works fine with konqueror. Haven't tried any other browsers.
Comment by mpan (mpan) - Wednesday, 01 August 2012, 23:36 GMT
The same happens for `icedtea-web` (java6 version of this package). Since packages are maintenained by the same person and the bug seems to be the same, I'm not opening a new report.

Package: icedtea-web 1.2.1 (x86_64)
Other packages used: firefox 14.0.1-1, openjdk6 6.b24_1.11.3-1 (same happens with openjdk6 6.b24_1.11.2-1)

Backtrace:

*** buffer overflow detected ***: firefox terminated
======= Backtrace: =========
/lib/libc.so.6(__fortify_fail+0x37)[0x7f631781c6c7]
/lib/libc.so.6(+0xf77a0)[0x7f631781a7a0]
/usr/lib/jvm/java-6-openjdk/lib/IcedTeaPlugin.so(NP_Initialize+0x198)[0x7f62e52deb58]
/usr/lib/firefox/libxul.so(+0x108b89a)[0x7f63161c589a]
/usr/lib/firefox/libxul.so(+0x10778f2)[0x7f63161b18f2]
/usr/lib/firefox/libxul.so(+0x108327f)[0x7f63161bd27f]
/usr/lib/firefox/libxul.so(+0x1085639)[0x7f63161bf639]
/usr/lib/firefox/libxul.so(+0x1085ac5)[0x7f63161bfac5]
/usr/lib/firefox/libxul.so(+0x1085cf2)[0x7f63161bfcf2]
/usr/lib/firefox/libxul.so(+0x10864a1)[0x7f63161c04a1]
/usr/lib/firefox/libxul.so(+0xb08ee6)[0x7f6315c42ee6]
/usr/lib/firefox/libxul.so(+0xb09165)[0x7f6315c43165]
/usr/lib/firefox/libxul.so(+0xccd62c)[0x7f6315e0762c]
/usr/lib/firefox/libxul.so(+0xccd8a9)[0x7f6315e078a9]
/usr/lib/firefox/libxul.so(+0xccdb1c)[0x7f6315e07b1c]
/usr/lib/firefox/libxul.so(+0x6bea12)[0x7f63157f8a12]
/usr/lib/firefox/libxul.so(+0x6bff12)[0x7f63157f9f12]
/usr/lib/firefox/libxul.so(+0x6d2836)[0x7f631580c836]
/usr/lib/firefox/libxul.so(+0x6f5647)[0x7f631582f647]
/usr/lib/firefox/libxul.so(+0xd7015b)[0x7f6315eaa15b]
/usr/lib/firefox/libxul.so(+0x72cdf8)[0x7f6315866df8]
/usr/lib/firefox/libxul.so(+0x7226b9)[0x7f631585c6b9]
/usr/lib/firefox/libxul.so(+0x71fceb)[0x7f6315859ceb]
/usr/lib/firefox/libxul.so(+0x1258ae3)[0x7f6316392ae3]
/usr/lib/firefox/libxul.so(+0x111a955)[0x7f6316254955]
/usr/lib/firefox/libxul.so(+0xfe42ed)[0x7f631611e2ed]
/usr/lib/firefox/libxul.so(+0x84d64a)[0x7f631598764a]
/usr/lib/firefox/libxul.so(+0x850e8d)[0x7f631598ae8d]
/usr/lib/firefox/libxul.so(XRE_main+0x12d)[0x7f631598b120]
firefox[0x40250b]
/lib/libc.so.6(__libc_start_main+0xf5)[0x7f6317744725]
firefox[0x406041]

I'm not able to reproduce the crash for version compiled with debug symbols, hence I can't provide a nicer bt.
Comment by Andreas Radke (AndyRTR) - Thursday, 02 August 2012, 04:33 GMT Comment by Marti (intgr) - Thursday, 02 August 2012, 22:39 GMT
Are there any cases where this update does *not* crash Firefox?
If it's broken across the board then surely it should be rolled back?
Comment by Andreas Radke (AndyRTR) - Friday, 03 August 2012, 10:40 GMT
It works well with Xombrero. I won't roll back to an older version with security issues.

As long as nobody reports it upstream it won't get fixed.
Comment by Thomas Wouters (twouters) - Friday, 03 August 2012, 11:30 GMT Comment by pank (Pank) - Friday, 03 August 2012, 11:33 GMT
It also happens on my system with Aurora and Firefox.

I have opened a bug upstream [edit: icedtea that is]:
http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=1106
Comment by pank (Pank) - Friday, 03 August 2012, 11:46 GMT
Upstream [edit: icedtea that is ] says it an Arch-bug... [Edit2: But there's also a Gentoo guy experiencing it].
Comment by Andreas Radke (AndyRTR) - Friday, 03 August 2012, 12:57 GMT
Are you all x86_64 users?
Comment by Thomas Wouters (twouters) - Friday, 03 August 2012, 13:02 GMT
ack x86_64
Comment by pank (Pank) - Friday, 03 August 2012, 13:04 GMT

> Are you all x86_64 users?
I am.

Marcin Andrzejewski is.

Marti (intgr) is cf. the icedtea-web bug.

The Gentoo guy on the icedtea-web bugzilla is.

My system does not crash with Xombrero, though (probably due to webkit?)
Comment by Javier (jevv) - Friday, 03 August 2012, 16:18 GMT
Firefox crashes for me instantly as well on both x86_64 and i686.
Comment by Leandro Cipullo (rahremix) - Saturday, 04 August 2012, 01:22 GMT
Got the same bug with seamonkey, trying to access www.flyordie.com chess game.
Comment by mpan (mpan) - Saturday, 04 August 2012, 02:31 GMT
The patch Vlastimil Babka has posted on IcedTea bugzilla fixes the issue for me.

Loading...