Bug 688642 - Ghostscript segfaults on x86_64 platform when processing some ps files
Summary: Ghostscript segfaults on x86_64 platform when processing some ps files
Status: RESOLVED DUPLICATE of bug 688252
Alias: None
Product: Ghostscript
Classification: Unclassified
Component: PS Interpreter (show other bugs)
Version: 8.15
Hardware: PC Linux
: P4 critical
Assignee: Stefan Kemper
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-04-10 06:04 UTC by Konstantin Belyanski
Modified: 2007-12-13 12:55 UTC (History)
0 users

See Also:
Customer:
Word Size: ---

Attachments
Small file which causes ghostscript segmentation fault on SuSE 9.3 / x86_64 bit (288.48 KB, application/postscript)
2006-04-10 06:10 UTC, Konstantin Belyanski 		Details
File which causes gs segmentation fault on Linux / x86_64 platform (547.54 KB, application/postscript)
2006-04-10 06:14 UTC, Konstantin Belyanski 		Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Konstantin Belyanski 2006-04-10 06:04:48 UTC 
Short Description
-----------------

CUPS test page beeing processed with cms color correction tables,
resolution 150 dpi and above and device=bitcmyk causes segmentation fault
on x86_64 Linux.

Commands caused segmentation fault:

cat full_file.ps | gs -sOutputFile=- -sDEVICE=bitcmyk -r600x600 > res.bin
cat small_file.ps | gs -sOutputFile=- -sDEVICE=bitcmyk -r1200x600 > res.bin

I can not find a method to attach files to this bug report. I can send the
files by E-Mail or upload them to the FTP server. The files are
full_file.ps and small_file.ps.

I also reported this bug to ESP Ghostscript as STR #1540. The files may also be
obtained there.

Detailed Description
-----------------
Bug was noticed on the following x86_64 Linux distributions:
- SuSE Linux 9.3 (ESP Ghostscript 8.15.0)
- SuSE Linux 10.0 (ESP Ghostscript 8.15.0)
- Mandriva Linux Limited Edition 2005 (ESP Ghostscript 8.15.1)
- Mandriva Linux 2006.0 (ESP Ghostscript 8.15.1)
- Fedora Core release 3 (GNU Ghostscript 7.07)
- Fedora Core release 4 (GNU Ghostscript 7.07)
- Fedora Core release 5 (ESP Ghostscript 8.15.1)
- Ubuntu 5.10 (ESP Ghostscript 7.07.1)

The file full_file.ps is the standard CUPS test page with embedded
color correction tables, these tables cause ghostscript to segfault.

The file small_file.ps is attempt to reduce full_file.ps to minimal
size. This file causes segfault on SuSE 9.3 / x86_64 distribution.

Futher investigation on Mandriva 2005 LE with ESP Ghostscript 8.15.1 compiled
from source showed the segfault occured somewhere near set_color_ht_le_4
function located in src/gxcht.c file. The py parameter passed to this function
sometimes have negative value. Simple check like the following

if(py < 0) py = 0;

prevents Ghostscript from the segmentation fault. But this is a workaround,
not the solution.

I should also note that this problem was never seen on 32-bit Linux (i386)
distributions.
Comment 1 Konstantin Belyanski 2006-04-10 06:10:52 UTC 
Created attachment 2146 [details]
Small file which causes ghostscript segmentation fault on SuSE 9.3 / x86_64 bit
Comment 2 Konstantin Belyanski 2006-04-10 06:14:09 UTC 
Created attachment 2147 [details]
File which causes gs segmentation fault on Linux / x86_64 platform

Command caused segmentation fault:

cat full_file.ps | gs -sOutputFile=- -sDEVICE=bitcmyk -r600x600 > res.bin
Comment 3 Dan Coby 2006-04-10 11:36:19 UTC 
Would you please test with newer versions.  Please test with both 8.53 and 
current svn head (from svn.ghostscript.com).
Comment 4 Konstantin Belyanski 2006-04-11 03:05:12 UTC 

*** This bug has been marked as a duplicate of 688252 ***
Comment 5 Dan Coby 2006-04-11 10:07:44 UTC 
I assume that since you marked this report as a duplicate of 688252 (which has 
already been closec), that newer versions of Ghostscript work on your machine.

Thank you for testing with the newer versions.