Created attachment 72470 [details] typescript of master with backtrace In a local build from master commit 58c76a6, pulled around 2013-01-03 04:45 UTC, configured as --enable-dbgutil --enable-crashdump --disable-build-mozilla --without-system-postgresql --without-myspell-dicts --without-help --with-extra-buildid built and running on ubuntu-natty (11.04) 32-bit with ubuntu classic desktop (no effects), I did ... Steps: ( 1) Run soffice.bin. Program displays Start Center. ( 2) Click <Drawing>. Program displays Draw document "Untitled 1" ( 3) Click "Rectangle" icon in toolbar at bottom of the window and move the mouse cursor over the right pane. Program changes mouse cursor to crosshair. ( 4) Drag the mouse cursor from (in centimeters) (x=1, y=1) to about (x=4, y=3). Program displays rectangle with blue background and "handles". ( 5) Move the mouse cursor over the blue rectangle and double-click. ( 6) Move the mouse cursor off the blue rectangle. Program displays character cursor (a.k.a. caret) at the middle of the blue rectangle ( 7) Type (without the quotes) "xxx". Program displays the x's in the middle of the blue rectangle. ( 8) Right-click in the blue rectangle. Program displays pop-up menu. ( 9) In the pop-up menu, click <Text>. Program displays dialog "Text" and tab "Text". (10) Click on tab "Text Animation". Program displays tab "Text Animation". (11) Click <OK>. Program closes dialog and displays "Untitled 1". (12) Right-click in the blue rectangle. Program displays pop-up menu. (13) In the pop-up menu, click <Text>. Program displays dialog "Text" and tab "Text Animation". (14) Click tab "Text". Program displays tab "Text". (15) Click <OK>. Program closes dialog and displays "Untitled 1". (16) Click the document-close "X" at the upper right of the window. Program displays dialog "Save Document". (17) Click <Close without saving>. Expected program action: close window "Untitled 1" and display Start Center. Actual program action: segfault. (If this reminds you of bug 56195 "UI: Missing buttons in Format Text dialog", that is because I was looking at that bug when this first happened to me.) The words, especially comment 10, describing bug 58815 "[CRASH] new document, add slide/page, close without saving crashes Impress, Draw" have something in common with this report. However, the backtraces are quite different. Poking around in the bibisect 40 repository, I found commit ea3a78c which does not segfault and commit 20bcb05 which does segfault. Coming soon: valgrind runs from these two versions. Terry.
Created attachment 72471 [details] valgrind from version ea3a78c which does not segfault
Created attachment 72472 [details] valgrind from version 20bcb05 which does segfault, but not when it is running under valgrind.
Terrence: seems same bt (at least for the last lines) than fdo#55974 (see https://bugs.freedesktop.org/attachment.cgi?id=72099)
The backtrace attached to bug 55974 is indeed very similar for the first 18 or so frames. Both shows boost::checked_delete in the top frame or the next one. I have left this report open because it came up in a different component, in case somebody (like I did yesterday) searches for bugs in component Draw. Still, it might be right to mark this bug a DUP of 55974. What do you think, Julien? (Meanwhile, I should just learn to include status RESOLVED DUPLICATE when I am searching for open bug reports.) Terry.
Thank you for reporting this problem. Please state as duplicate when it is a duplicate. *** This bug has been marked as a duplicate of bug 55974 ***