Heap corruption
Trying to open a directory with the Qt4 user interface, glibc detected a heap corruption. VLC dumped core (thread 1 is the one):
Thread 6 (Thread 27895):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0xb75be1ac in *__GI___poll (fds=0xb763fff4, nfds=1, timeout=-1)
at ../sysdeps/unix/sysv/linux/poll.c:87
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb6e070f0 in ?? () from /usr/lib/libxcb.so.1
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0xb6e09761 in xcb_wait_for_reply () from /usr/lib/libxcb.so.1
[#3](https://code.videolan.org/videolan/vlc/-/issues/3) 0xb683d7a6 in _XReply () from /usr/lib/libX11.so.6
[#4](https://code.videolan.org/videolan/vlc/-/issues/4) 0xb682b0ad in XQueryPointer () from /usr/lib/libX11.so.6
[#5](https://code.videolan.org/videolan/vlc/-/issues/5) 0xb57a3f60 in QCursor::pos () at kernel/qcursor_x11.cpp:155
[#6](https://code.videolan.org/videolan/vlc/-/issues/6) 0xb5ca26a7 in QAbstractItemView::verticalScrollbarValueChanged (
this=0x9c10470, value=22) at itemviews/qabstractitemview.cpp:2624
[#7](https://code.videolan.org/videolan/vlc/-/issues/7) 0xb5ca9125 in QAbstractItemView::qt_metacall (this=0x9c10470,
_c=QMetaObject::InvokeMetaMethod, _id=26, _a=0xb6f30528)
at .moc/release-shared/moc_qabstractitemview.cpp:244
[#8](https://code.videolan.org/videolan/vlc/-/issues/8) 0xb5cf755a in QTreeView::qt_metacall (this=0x9c10470,
_c=QMetaObject::InvokeMetaMethod, _id=57, _a=0xb6f30528)
at .moc/release-shared/moc_qtreeview.cpp:119
[#9](https://code.videolan.org/videolan/vlc/-/issues/9) 0xb6d5a243 in PlTreeView::qt_metacall(QMetaObject::Call, int, void**) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#10](https://code.videolan.org/videolan/vlc/-/issues/10) 0xb6a8780a in QMetaObject::metacall (object=0x9c10470,
cl=QMetaObject::ReadProperty, idx=57, argv=0xb6f30528)
at kernel/qmetaobject.cpp:237
[#11](https://code.videolan.org/videolan/vlc/-/issues/11) 0xb6a961db in QMetaObject::activate (sender=0x9a57938, m=0xb6040734,
local_signal_index=0, argv=0xb6f30528) at kernel/qobject.cpp:3295
[#12](https://code.videolan.org/videolan/vlc/-/issues/12) 0xb5e316d3 in QAbstractSlider::valueChanged (this=0x9a57938, _t1=22)
at .moc/release-shared/moc_qabstractslider.cpp:182
[#13](https://code.videolan.org/videolan/vlc/-/issues/13) 0xb5b116c7 in QAbstractSlider::setValue (this=0x9a57938, value=22)
at widgets/qabstractslider.cpp:539
[#14](https://code.videolan.org/videolan/vlc/-/issues/14) 0xb5b1209c in QAbstractSlider::setRange (this=0x9a57938, min=0, max=22)
at widgets/qabstractslider.cpp:248
[#15](https://code.videolan.org/videolan/vlc/-/issues/15) 0xb5ce86e0 in QTreeViewPrivate::updateScrollBars (this=0x9a9d0d0)
at itemviews/qtreeview.cpp:3493
[#16](https://code.videolan.org/videolan/vlc/-/issues/16) 0xb5ce99fb in QTreeViewPrivate::rowsRemoved (this=0x9a9d0d0, parent=...,
start=31, end=31, after=false) at itemviews/qtreeview.cpp:3788
[#17](https://code.videolan.org/videolan/vlc/-/issues/17) 0xb5ce9c9b in QTreeView::rowsAboutToBeRemoved (this=0x9c10470, parent=...,
start=31, end=31) at itemviews/qtreeview.cpp:2546
[#18](https://code.videolan.org/videolan/vlc/-/issues/18) 0xb5ca92e6 in QAbstractItemView::qt_metacall (this=0x9c10470,
_c=QMetaObject::InvokeMetaMethod, _id=18, _a=0xb6f308a0)
at .moc/release-shared/moc_qabstractitemview.cpp:236
[#19](https://code.videolan.org/videolan/vlc/-/issues/19) 0xb5cf755a in QTreeView::qt_metacall (this=0x9c10470,
_c=QMetaObject::InvokeMetaMethod, _id=49, _a=0xb6f308a0)
at .moc/release-shared/moc_qtreeview.cpp:119
[#20](https://code.videolan.org/videolan/vlc/-/issues/20) 0xb6d5a243 in PlTreeView::qt_metacall(QMetaObject::Call, int, void**) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#21](https://code.videolan.org/videolan/vlc/-/issues/21) 0xb6a8780a in QMetaObject::metacall (object=0x9c10470,
cl=QMetaObject::ReadProperty, idx=49, argv=0xb6f308a0)
at kernel/qmetaobject.cpp:237
[#22](https://code.videolan.org/videolan/vlc/-/issues/22) 0xb6a961db in QMetaObject::activate (sender=0x9bf0368, m=0xb6b96318,
local_signal_index=6, argv=0xb6f308a0) at kernel/qobject.cpp:3295
[#23](https://code.videolan.org/videolan/vlc/-/issues/23) 0xb6ae796f in QAbstractItemModel::rowsAboutToBeRemoved (this=0x9bf0368,
_t1=..., _t2=31, _t3=31)
at .moc/release-shared/moc_qabstractitemmodel.cpp:188
[#24](https://code.videolan.org/videolan/vlc/-/issues/24) 0xb6a79c35 in QAbstractItemModel::beginRemoveRows (this=0x9bf0368,
parent=..., first=31, last=31) at kernel/qabstractitemmodel.cpp:2450
[#25](https://code.videolan.org/videolan/vlc/-/issues/25) 0xb6d156da in PLModel::removeItem(PLItem*) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#26](https://code.videolan.org/videolan/vlc/-/issues/26) 0xb6d157dd in PLModel::removeItem(int) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#27](https://code.videolan.org/videolan/vlc/-/issues/27) 0xb6d15817 in PLModel::processItemRemoval(int) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#28](https://code.videolan.org/videolan/vlc/-/issues/28) 0xb6d5ad95 in PLModel::qt_metacall(QMetaObject::Call, int, void**) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#29](https://code.videolan.org/videolan/vlc/-/issues/29) 0xb6a8780a in QMetaObject::metacall (object=0x9bf0368,
cl=QMetaObject::ReadProperty, idx=38, argv=0xb6f30aa8)
at kernel/qmetaobject.cpp:237
[#30](https://code.videolan.org/videolan/vlc/-/issues/30) 0xb6a961db in QMetaObject::activate (sender=0x9ac3b68, m=0xb6deb0d4,
local_signal_index=4, argv=0xb6f30aa8) at kernel/qobject.cpp:3295
[#31](https://code.videolan.org/videolan/vlc/-/issues/31) 0xb6d494a4 in MainInputManager::playlistItemRemoved(int) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#32](https://code.videolan.org/videolan/vlc/-/issues/32) 0xb6c24aaf in MainInputManager::customEvent(QEvent*) ()
from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#33](https://code.videolan.org/videolan/vlc/-/issues/33) 0xb6a92e8c in QObject::event (this=0x9ac3b68, e=0xffffffff)
at kernel/qobject.cpp:1279
[#34](https://code.videolan.org/videolan/vlc/-/issues/34) 0xb57065cc in QApplicationPrivate::notify_helper (this=0x9a54188,
receiver=0x9ac3b68, e=0x9cd65b0) at kernel/qapplication.cpp:4302
[#35](https://code.videolan.org/videolan/vlc/-/issues/35) 0xb570d15e in QApplication::notify (this=0xb6f3133c, receiver=0x9ac3b68,
e=0x9cd65b0) at kernel/qapplication.cpp:3706
[#36](https://code.videolan.org/videolan/vlc/-/issues/36) 0xb6a8252b in QCoreApplication::notifyInternal (this=0xb6f3133c,
receiver=0x9ac3b68, event=0x9cd65b0) at kernel/qcoreapplication.cpp:726
[#37](https://code.videolan.org/videolan/vlc/-/issues/37) 0xb6a85f8c in QCoreApplication::sendEvent (receiver=0x0, event_type=0,
data=0x9a54260)
at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
event_type=0) at kernel/qcoreapplication.cpp:1260
[#40](https://code.videolan.org/videolan/vlc/-/issues/40) 0xb6aae59f in QCoreApplication::sendPostedEvents (s=0x9a56928)
at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:220
[#41](https://code.videolan.org/videolan/vlc/-/issues/41) postEventSourceDispatch (s=0x9a56928)
at kernel/qeventdispatcher_glib.cpp:276
[#42](https://code.videolan.org/videolan/vlc/-/issues/42) 0xb67262f5 in g_main_context_dispatch () from /lib/libglib-2.0.so.0
[#43](https://code.videolan.org/videolan/vlc/-/issues/43) 0xb6729fd8 in ?? () from /lib/libglib-2.0.so.0
[#44](https://code.videolan.org/videolan/vlc/-/issues/44) 0xb672a1b8 in g_main_context_iteration () from /lib/libglib-2.0.so.0
[#45](https://code.videolan.org/videolan/vlc/-/issues/45) 0xb6aae095 in QEventDispatcherGlib::processEvents (this=0x9a54558,
flags=...) at kernel/qeventdispatcher_glib.cpp:412
[#46](https://code.videolan.org/videolan/vlc/-/issues/46) 0xb57c4f45 in QGuiEventDispatcherGlib::processEvents (this=0x9a54558,
flags=...) at kernel/qguieventdispatcher_glib.cpp:204
[#47](https://code.videolan.org/videolan/vlc/-/issues/47) 0xb6a80b49 in QEventLoop::processEvents (this=0xb6f31234, flags=DWARF-2 expression error: DW_OP_reg operations must be used either alone or in conjuction with DW_OP_piece.
)
at kernel/qeventloop.cpp:149
[#48](https://code.videolan.org/videolan/vlc/-/issues/48) 0xb6a80f9a in QEventLoop::exec (this=0xb6f31234, flags=...)
at kernel/qeventloop.cpp:201
[#49](https://code.videolan.org/videolan/vlc/-/issues/49) 0xb6a861cf in QCoreApplication::exec () at kernel/qcoreapplication.cpp:1003
[#50](https://code.videolan.org/videolan/vlc/-/issues/50) 0xb5706667 in QApplication::exec () at kernel/qapplication.cpp:3581
[#51](https://code.videolan.org/videolan/vlc/-/issues/51) 0xb6c05c9d in ?? () from /usr/lib/vlc/plugins/gui/libqt4_plugin.so
[#52](https://code.videolan.org/videolan/vlc/-/issues/52) 0xb764d7b0 in start_thread (arg=0xb6f31b70) at pthread_create.c:300
[#53](https://code.videolan.org/videolan/vlc/-/issues/53) 0xb75cb81e in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:130
Thread 5 (Thread 27890):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0xb7651d5a in __pthread_cond_wait (cond=0xb774c980, mutex=0xb774c958)
at pthread_cond_wait.c:153
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb7719143 in vlc_cond_wait () from /usr/lib/libvlccore.so.4
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0xb774c958 in ?? () from /usr/lib/libvlccore.so.4
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Thread 4 (Thread 27894):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0xb7655b58 in do_sigwait (set=0xb6eb1100, sig=<value optimized out>)
at ../nptl/sysdeps/unix/sysv/linux/../../../../../sysdeps/unix/sysv/linux/sigwait.c:63
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb7655bf0 in __sigwait (set=0xb6eaf2fc, sig=0xb6eaf37c)
at ../nptl/sysdeps/unix/sysv/linux/../../../../../sysdeps/unix/sysv/linux/sigwait.c:100
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0xb6eb0c92 in ?? () from /usr/lib/vlc/plugins/control/libsignals_plugin.so
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Thread 3 (Thread 27892):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0xb7651d5a in __pthread_cond_wait (cond=0x9a472d0, mutex=0x9a472b8)
at pthread_cond_wait.c:153
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb7719143 in vlc_cond_wait () from /usr/lib/libvlccore.so.4
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0x09a472b8 in ?? ()
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Thread 2 (Thread 20030):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) __lll_lock_wait_private ()
at ../nptl/sysdeps/unix/sysv/linux/i386/i486/lowlevellock.S:97
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb7571249 in _L_lock_9721 () from /lib/libc.so.6
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0xb756fa16 in *__GI___libc_free (mem=0x9a36130) at malloc.c:3737
[#3](https://code.videolan.org/videolan/vlc/-/issues/3) 0xb629c701 in operator delete(void*) () from /usr/lib/libstdc++.so.6
[#4](https://code.videolan.org/videolan/vlc/-/issues/4) 0xb6292bbd in std::basic_string<wchar_t, std::char_traits<wchar_t>, std::allocator<wchar_t> >::_Rep::_M_destroy(std::allocator<wchar_t> const&) ()
from /usr/lib/libstdc++.so.6
[#5](https://code.videolan.org/videolan/vlc/-/issues/5) 0xb6324e4a in TagLib::String::~String() () from /usr/lib/libtag.so.1
[#6](https://code.videolan.org/videolan/vlc/-/issues/6) 0xb6349eb8 in ?? () from /usr/lib/libtag.so.1
[#7](https://code.videolan.org/videolan/vlc/-/issues/7) 0xb63b56fb in ?? ()
from /usr/lib/vlc/plugins/meta_engine/libtaglib_plugin.so
[#8](https://code.videolan.org/videolan/vlc/-/issues/8) 0xb76fb83b in module_need () from /usr/lib/libvlccore.so.4
[#9](https://code.videolan.org/videolan/vlc/-/issues/9) 0x00000003 in ?? ()
[#10](https://code.videolan.org/videolan/vlc/-/issues/10) 0xb772efd1 in ?? () from /usr/lib/libvlccore.so.4
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Thread 1 (Thread 20029):
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0xb752a537 in *__GI_raise (sig=6)
at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0xb752d922 in *__GI_abort () at abort.c:92
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0xb7560f7d in __libc_message (do_abort=2,
fmt=0xb7623758 "*** glibc detected *** %s: %s: 0x%s ***\n")
at ../sysdeps/unix/sysv/linux/libc_fatal.c:189
[#3](https://code.videolan.org/videolan/vlc/-/issues/3) 0xb756b08a in malloc_printerr (action=<value optimized out>,
str=0x6 <Address 0x6 out of bounds>, ptr=0x9a36130) at malloc.c:6267
[#4](https://code.videolan.org/videolan/vlc/-/issues/4) 0xb756c8d8 in _int_free (av=<value optimized out>, p=<value optimized out>)
at malloc.c:4795
[#5](https://code.videolan.org/videolan/vlc/-/issues/5) 0xb756fa1d in *__GI___libc_free (mem=0x9a36130) at malloc.c:3739
[#6](https://code.videolan.org/videolan/vlc/-/issues/6) 0xb629c701 in operator delete(void*) () from /usr/lib/libstdc++.so.6
[#7](https://code.videolan.org/videolan/vlc/-/issues/7) 0xb6292bbd in std::basic_string<wchar_t, std::char_traits<wchar_t>, std::allocator<wchar_t> >::_Rep::_M_destroy(std::allocator<wchar_t> const&) ()
from /usr/lib/libstdc++.so.6
[#8](https://code.videolan.org/videolan/vlc/-/issues/8) 0xb6324e4a in TagLib::String::~String() () from /usr/lib/libtag.so.1
[#9](https://code.videolan.org/videolan/vlc/-/issues/9) 0xb63b54e8 in ?? ()
from /usr/lib/vlc/plugins/meta_engine/libtaglib_plugin.so
[#10](https://code.videolan.org/videolan/vlc/-/issues/10) 0xb76fb83b in module_need () from /usr/lib/libvlccore.so.4
[#11](https://code.videolan.org/videolan/vlc/-/issues/11) 0x00000003 in ?? ()
[#12](https://code.videolan.org/videolan/vlc/-/issues/12) 0xb772efd1 in ?? () from /usr/lib/libvlccore.so.4
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Unfortunately, this is recovered from a core dump, so no chance of running this through valgrind.
Possibly linked to ticket #3701 (closed) (valgrind trace on the RPMfusion tracker: https://bugzilla.rpmfusion.org/show_bug.cgi?id=1212)
Edited by Rémi Denis-Courmont