194668 – Incoming messages from MSN bots crash Kopete

Bug 194668 - Incoming messages from MSN bots crash Kopete

Summary: Incoming messages from MSN bots crash Kopete

Status:	RESOLVED DUPLICATE of bug 179425

Alias:	None

Product:	kopete
Classification:	Applications
Component:	general (show other bugs)
Version:	unspecified
Platform:	Ubuntu Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Kopete Developers

URL:
Keywords:

Depends on:
Blocks:

Reported:	2009-05-30 17:15 UTC by Thomas
Modified:	2009-05-31 00:17 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas 2009-05-30 17:15:16 UTC

Version:            (using KDE 4.2.2)
OS:                Linux
Installed from:    Ubuntu Packages

Expected behavior: Incoming messages from MSN spam bots will appear in chat window.
Actual behavior: Incoming messages from MSN spam bots crash KDE, causing signal 6 (SIGABRT)
Plugins: No additional plugins loaded beyond Kubuntu 9.04 default.
How to reproduce: Receive 1 message from an MSN spam bot. Does not matter if window is previously open to spam bot (ex: due to compromised account) or not - 100% guarantee of crashing.

Attached is current bug report. Currently installing the debug packages, but I hope that this provides some useful information to someone out there. 

Application: Kopete (kopete), signal SIGABRT
[Current thread is 0 (LWP 3680)]

Thread 2 (Thread 0xaff7eb90 (LWP 3684)):
#0  0xb8084430 in __kernel_vsyscall ()
#1  0xb5dc30e5 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/tls/i686/cmov/libpthread.so.0
#2  0xb61992ed in pthread_cond_wait () from /lib/tls/i686/cmov/libc.so.6
#3  0xb6dc99b2 in QWaitCondition::wait () from /usr/lib/libQtCore.so.4
#4  0xb7681152 in ?? () from /usr/lib/libQtNetwork.so.4
#5  0xb6dc896e in ?? () from /usr/lib/libQtCore.so.4
#6  0xb5dbf4ff in start_thread () from /lib/tls/i686/cmov/libpthread.so.0
#7  0xb618a49e in clone () from /lib/tls/i686/cmov/libc.so.6

Thread 1 (Thread 0xb5722700 (LWP 3680)):
[KCrash Handler]
#6  0xb8084430 in __kernel_vsyscall ()
#7  0xb60d16d0 in raise () from /lib/tls/i686/cmov/libc.so.6
#8  0xb60d3098 in abort () from /lib/tls/i686/cmov/libc.so.6
#9  0xb62fb8f8 in __gnu_cxx::__verbose_terminate_handler () from /usr/lib/libstdc++.so.6
#10 0xb62f97d5 in ?? () from /usr/lib/libstdc++.so.6
#11 0xb62f9812 in std::terminate () from /usr/lib/libstdc++.so.6
#12 0xb62f994a in __cxa_throw () from /usr/lib/libstdc++.so.6
#13 0xb2fedc1b in MSN::Message::getFormatInfo () from /usr/lib/libmsn.so.0.1
#14 0xb2fef9b8 in MSN::Message::getFontName () from /usr/lib/libmsn.so.0.1
#15 0xb30b794b in ?? () from /usr/lib/kde4/kopete_wlm.so
#16 0xb2ff6737 in MSN::SwitchboardServerConnection::message_plain () from /usr/lib/libmsn.so.0.1
#17 0xb2ffc54b in MSN::SwitchboardServerConnection::handle_MSG () from /usr/lib/libmsn.so.0.1
#18 0xb2ff78ff in MSN::SwitchboardServerConnection::dispatchCommand () from /usr/lib/libmsn.so.0.1
#19 0xb2ff6ddd in MSN::SwitchboardServerConnection::handleIncomingData () from /usr/lib/libmsn.so.0.1
#20 0xb2ff2299 in MSN::Connection::dataArrivedOnSocket () from /usr/lib/libmsn.so.0.1
#21 0xb30b9cf1 in ?? () from /usr/lib/kde4/kopete_wlm.so
#22 0xb30b9e45 in ?? () from /usr/lib/kde4/kopete_wlm.so
#23 0xb6ed2ca8 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#24 0xb6ed3932 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#25 0xb6f0c7b7 in QIODevice::readyRead () from /usr/lib/libQtCore.so.4
#26 0xb76b6657 in ?? () from /usr/lib/libQtNetwork.so.4
#27 0xb76baf7e in QSslSocket::qt_metacall () from /usr/lib/libQtNetwork.so.4
#28 0xb30b9e1a in ?? () from /usr/lib/kde4/kopete_wlm.so
#29 0xb6ed2ca8 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#30 0xb6ed3932 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#31 0xb6f0c7b7 in QIODevice::readyRead () from /usr/lib/libQtCore.so.4
#32 0xb769f7f2 in ?? () from /usr/lib/libQtNetwork.so.4
#33 0xb768c77b in ?? () from /usr/lib/libQtNetwork.so.4
#34 0xb768dad6 in ?? () from /usr/lib/libQtNetwork.so.4
#35 0xb646fe9c in QApplicationPrivate::notify_helper () from /usr/lib/libQtGui.so.4
#36 0xb647819e in QApplication::notify () from /usr/lib/libQtGui.so.4
#37 0xb740c94d in KApplication::notify () from /usr/lib/libkdeui.so.5
#38 0xb6ebca3b in QCoreApplication::notifyInternal () from /usr/lib/libQtCore.so.4
#39 0xb6ee86ca in ?? () from /usr/lib/libQtCore.so.4
#40 0xb5c19b88 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#41 0xb5c1d0eb in ?? () from /usr/lib/libglib-2.0.so.0
#42 0xb5c1d268 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#43 0xb6ee8438 in QEventDispatcherGlib::processEvents () from /usr/lib/libQtCore.so.4
#44 0xb6511365 in ?? () from /usr/lib/libQtGui.so.4
#45 0xb6ebb06a in QEventLoop::processEvents () from /usr/lib/libQtCore.so.4
#46 0xb6ebb4aa in QEventLoop::exec () from /usr/lib/libQtCore.so.4
#47 0xb6ebd959 in QCoreApplication::exec () from /usr/lib/libQtCore.so.4
#48 0xb646fd17 in QApplication::exec () from /usr/lib/libQtGui.so.4
#49 0x0808c27f in _start ()

If more information is needed, just ask and point me in the right direction to getting the information.

Comment 1 Thomas 2009-05-30 17:39:20 UTC

Actual behavior should be "Incoming messages from MSN spam bots crash Kopete, causing signal 6 (SIGABRT)", not KDE

Comment 2 Dario Andres 2009-05-30 18:22:57 UTC

The backtrace looks like bug 179425. I wonder if the MSN bots have the same error as the emesene client which will lead to this crash.
What is your "libmsn" version? Is it updated?
Thanks

Comment 3 Thomas 2009-05-30 19:09:53 UTC

libmsn0.1 is 4.0~beta4-0ubu

$ sudo dpkg -l libmsn0.1
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Cfg-files/Unpacked/Failed-cfg/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad)
||/ Name           Version        Description
+++-==============-==============-============================================
ii  libmsn0.1      4.0~beta4-0ubu high-level C++ library for MSN Messenger [ru

Here is gdb output from the most recent crash: 

kopete(5998) KIO::DataProtocol::~DataProtocol:
terminate called after throwing an instance of 'std::runtime_error'
  what():  Incorrectly specified message format!
KCrash: Application 'kopete' crashing...
sock_file=/home/thomas/.kde/socket-Phoenix-Laptop/kdeinit4__0
(gdb) thread apply all backtrace
No registers.

Here is a more-complete output from the KDE Crash Handler

Application: Kopete (kopete), signal SIGABRT
[Current thread is 0 (LWP 7022)]

Thread 2 (Thread 0xafdffb90 (LWP 7026)):
#0  0xb80b8430 in __kernel_vsyscall ()
#1  0xb5df70e5 in pthread_cond_wait@@GLIBC_2.3.2 () from
/lib/tls/i686/cmov/libpthread.so.0
#2  0xb61cd2ed in pthread_cond_wait () from /lib/tls/i686/cmov/libc.so.6
#3  0xb6dfd9b2 in QWaitCondition::wait (this=0xa2e0da0, mutex=0xa2e0d9c,
time=4294967295) at thread/qwaitcondition_unix.cpp:87
#4  0xb76b5152 in QHostInfoAgent::run (this=0xa2e0d90) at
kernel/qhostinfo.cpp:260
#5  0xb6dfc96e in QThreadPrivate::start (arg=0xa2e0d90) at
thread/qthread_unix.cpp:189
#6  0xb5df34ff in start_thread () from /lib/tls/i686/cmov/libpthread.so.0
#7  0xb61be49e in clone () from /lib/tls/i686/cmov/libc.so.6

Thread 1 (Thread 0xb5756700 (LWP 7022)):
[KCrash Handler]
#6  0xb80b8430 in __kernel_vsyscall ()
#7  0xb61056d0 in raise () from /lib/tls/i686/cmov/libc.so.6
#8  0xb6107098 in abort () from /lib/tls/i686/cmov/libc.so.6
#9  0xb632f8f8 in __gnu_cxx::__verbose_terminate_handler () at
../../../../src/libstdc++-v3/libsupc++/vterminate.cc:98
#10 0xb632d7d5 in __cxxabiv1::__terminate (handler=0xb632f7a0
<__gnu_cxx::__verbose_terminate_handler()>) at
../../../../src/libstdc++-v3/libsupc++/eh_terminate.cc:43
#11 0xb632d812 in std::terminate () at
../../../../src/libstdc++-v3/libsupc++/eh_terminate.cc:53
#12 0xb632d94a in __cxa_throw (obj=0xb443de8, tinfo=0xb635837c, dest=0xb62cdd70
<~runtime_error>) at ../../../../src/libstdc++-v3/libsupc++/eh_throw.cc:76
#13 0xb3021c1b in MSN::Message::getFormatInfo () from /usr/lib/libmsn.so.0.1
#14 0xb30239b8 in MSN::Message::getFontName () from /usr/lib/libmsn.so.0.1
#15 0xb30eb94b in ?? () from /usr/lib/kde4/kopete_wlm.so
#16 0xb302a737 in MSN::SwitchboardServerConnection::message_plain () from
/usr/lib/libmsn.so.0.1
#17 0xb303054b in MSN::SwitchboardServerConnection::handle_MSG () from
/usr/lib/libmsn.so.0.1
#18 0xb302b8ff in MSN::SwitchboardServerConnection::dispatchCommand () from
/usr/lib/libmsn.so.0.1
#19 0xb302addd in MSN::SwitchboardServerConnection::handleIncomingData () from
/usr/lib/libmsn.so.0.1
#20 0xb3026299 in MSN::Connection::dataArrivedOnSocket () from
/usr/lib/libmsn.so.0.1
#21 0xb30edcf1 in ?? () from /usr/lib/kde4/kopete_wlm.so
#22 0xb30ede45 in ?? () from /usr/lib/kde4/kopete_wlm.so
#23 0xb6f06ca8 in QMetaObject::activate (sender=0x9ee1910, from_signal_index=4,
to_signal_index=4, argv=0x0) at kernel/qobject.cpp:3069
#24 0xb6f07932 in QMetaObject::activate (sender=0x9ee1910, m=0xb6fe3028,
local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3143
#25 0xb6f407b7 in QIODevice::readyRead (this=0x9ee1910) at
.moc/release-shared/moc_qiodevice.cpp:85
#26 0xb76ea657 in QSslSocketPrivate::_q_readyReadSlot (this=0x6) at
ssl/qsslsocket.cpp:2003
#27 0xb76eef7e in QSslSocket::qt_metacall (this=0x9ee1910,
_c=QMetaObject::InvokeMetaMethod, _id=15, _a=0xbfdd55b8) at
.moc/release-shared/moc_qsslsocket.cpp:114
#28 0xb30ede1a in ?? () from /usr/lib/kde4/kopete_wlm.so
#29 0xb6f06ca8 in QMetaObject::activate (sender=0xb3e5d90, from_signal_index=4,
to_signal_index=4, argv=0x0) at kernel/qobject.cpp:3069
#30 0xb6f07932 in QMetaObject::activate (sender=0xb3e5d90, m=0xb6fe3028,
local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3143
#31 0xb6f407b7 in QIODevice::readyRead (this=0xb3e5d90) at
.moc/release-shared/moc_qiodevice.cpp:85
#32 0xb76d37f2 in QAbstractSocketPrivate::canReadNotification (this=0xa3cb370)
at socket/qabstractsocket.cpp:602
#33 0xb76c077b in QAbstractSocketEngine::readNotification (this=0xa3b68d8) at
socket/qabstractsocketengine.cpp:154
#34 0xb76c1ad6 in QReadNotifier::event (this=0xa760be8, e=0xbfdd59b0) at
socket/qnativesocketengine.cpp:1036
#35 0xb64a3e9c in QApplicationPrivate::notify_helper (this=0x9c875e8,
receiver=0xa760be8, e=0xbfdd59b0) at kernel/qapplication.cpp:4084
#36 0xb64ac19e in QApplication::notify (this=0xbfdd5c1c, receiver=0xa760be8,
e=0xbfdd59b0) at kernel/qapplication.cpp:3631
#37 0xb744094d in KApplication::notify (this=0xbfdd5c1c, receiver=0xa760be8,
event=0xbfdd59b0) at
/build/buildd/kde4libs-4.2.2/kdeui/kernel/kapplication.cpp:307
#38 0xb6ef0a3b in QCoreApplication::notifyInternal (this=0xbfdd5c1c,
receiver=0xa760be8, event=0xbfdd59b0) at kernel/qcoreapplication.cpp:602
#39 0xb6f1c6ca in socketNotifierSourceDispatch (source=0x9c8c400) at
../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:213
#40 0xb5c4db88 in IA__g_main_context_dispatch (context=0x9c8af10) at
/build/buildd/glib2.0-2.20.1/glib/gmain.c:1814
#41 0xb5c510eb in g_main_context_iterate (context=0x9c8af10, block=1,
dispatch=1, self=0x9c86358) at /build/buildd/glib2.0-2.20.1/glib/gmain.c:2448
#42 0xb5c51268 in IA__g_main_context_iteration (context=0x9c8af10, may_block=1)
at /build/buildd/glib2.0-2.20.1/glib/gmain.c:2511
#43 0xb6f1c438 in QEventDispatcherGlib::processEvents (this=0x9c6e6e8, flags={i
= -1076012280}) at kernel/qeventdispatcher_glib.cpp:323
#44 0xb6545365 in QGuiEventDispatcherGlib::processEvents (this=0x9c6e6e8,
flags={i = -1076012232}) at kernel/qguieventdispatcher_glib.cpp:202
#45 0xb6eef06a in QEventLoop::processEvents (this=0xbfdd5bb0, flags={i =
-1076012168}) at kernel/qeventloop.cpp:149
#46 0xb6eef4aa in QEventLoop::exec (this=0xbfdd5bb0, flags={i = -1076012104})
at kernel/qeventloop.cpp:200
#47 0xb6ef1959 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:880
#48 0xb64a3d17 in QApplication::exec () at kernel/qapplication.cpp:3553
#49 0x0808c27f in _start ()

Comment 4 Roman Jarosz 2009-05-31 00:17:27 UTC

This should be fixed in libmsn beta5 so please tell Ubuntu maintainers to update they packages.

*** This bug has been marked as a duplicate of bug 179425 ***