Bug#935909: python3-pyqt5: Segmentation fault when switching between image and text with html tags using style sheets

To: Dmitry Shachnev <mitya57@debian.org>
Cc: 935909@bugs.debian.org
Subject: Bug#935909: python3-pyqt5: Segmentation fault when switching between image and text with html tags using style sheets
From: Danny Milosavljevic <danny.milo@gmail.com>
Date: Thu, 5 Sep 2019 14:42:24 +0000
Message-id: <[🔎] CADWzbZrEL4wK6s3QTepE9G6EhWu+G66hk55un-4ZN6Z3VL7oYA@mail.gmail.com>
Reply-to: Danny Milosavljevic <danny.milo@gmail.com>, 935909@bugs.debian.org
In-reply-to: <20190827185644.GA5467@mitya57.me>
References: <156692196701.1028.16447630978294101092.reportbug@localhost> <20190827185644.GA5467@mitya57.me> <156692196701.1028.16447630978294101092.reportbug@localhost>

Hi Dmitry,

>Also I can reproduce it with Qt 5.11.3 but not with 5.12.4 from experimental.
>Looking at upstream changes, I found [1] which most probably fixed this.
>So it will be fixed in Sid as soon as we upgrade to 5.12. Do you want a fix
in Buster as well?

Aha! Good find.

Given that the bug affects labels (which are very commonly used) and
causes memory corruption (which is a possible attack vector), it would
be good to fix in Buster as well.

I've read through your reference and it seems that the changeset just
reduces the scope where style changes are applied. If that happened
that would still be better than crashing (or doing random stuff
instead of crashing), even if it forgot to restyle some special cases.

2019-08-27 18:56 GMT, Dmitry Shachnev <mitya57@debian.org>:
> Control: reassign -1 libqt5widgets5 5.11.3+dfsg1-4
> Control: fixed -1 qtbase-opensource-src/5.12.4+dfsg-1
>
> Hi Danny!
>
> On Tue, Aug 27, 2019 at 04:06:07PM +0000, Danny Milosavljevic wrote:
>> there is a segmentation fault problem with python3-qt5 and/or qt5 when
>> switching between image and text with html tags.
>>
>> To reproduce,
>>
>> (1) Use Debian 10 live iso (or any Debian 10; it happened on a finished
>> installation as well)
>> (2) Invoke: sudo apt-get update
>> (3) Invoke: sudo apt-get install python3-pyqt5
>> (4) Invoke: cp
>> /usr/share/icons/Adwaita/48x48/status/network-wired-disconnected.png .
>> (or any other png)
>> (5) Save the text below as "a.py"
>> (6) Invoke: QT_QPA_PLATFORM=offscreen python3 a.py 1
>> (7) Wait for 5 seconds
>> (8) See the segmentation fault
>>
>> It's very very reproducible for me.
>
> I can reproduce it with the attached C++ source. So it is a bug in Qt, not
> in PyQt. Reassigning accordingly.
>
> Also I can reproduce it with Qt 5.11.3 but not with 5.12.4 from
> experimental.
> Looking at upstream changes, I found [1] which most probably fixed this.
>
> So it will be fixed in Sid as soon as we upgrade to 5.12. Do you want a fix
> in Buster as well?
>
> [1]: https://codereview.qt-project.org/c/qt/qtbase/+/242929
>
> --
> Dmitry Shachnev
>

Reply to:

Prev by Date: elisa-player_1.1+really0.4.0-1_amd64.changes ACCEPTED into unstable, unstable
Next by Date: Processed: [bts-link] source package src:akonadi
Previous by thread: elisa-player_1.1+really0.4.0-1_amd64.changes ACCEPTED into unstable, unstable
Next by thread: [bts-link] source package src:akonadi
Index(es):
- Date
- Thread