Closed Bug 1837246 Opened 2 years ago Closed 2 years ago

Crash in [@ dghmpg64.dll]

Categories

(External Software Affecting Firefox :: Other, defect, P2)

Product:
External Software Affecting Firefox
Component:
Other
Version:
Firefox 115
Platform:
Unspecified
Windows 10
Type:
defect

Tracking

(firefox115+ fixed, firefox116 fixed)

Status:
RESOLVED FIXED
Milestone:
116 Branch
Tracking Flags:
Tracking Status
firefox115 + fixed
firefox116 --- fixed

People

(Reporter: dmeehan, Assigned: gstoll)

References

Details

(Keywords: crash, topcrash, topcrash-startup)

Crash Data

Attachments

(4 files)

Bug 1837246 - block Kingsoft DLL (dghmpg64.dll) to avoid crashes r=gsvelto
48 bytes, text/x-phabricator-request
Details | Review
Bug 1837246 - block Kingsoft DLL (dghmpg64.dll) to avoid crashes
48 bytes, text/x-phabricator-request
Details | Review
Bug 1837246: Block Kingsoft DLL (dghmpg64.dll) in all versions to avoid crashes r=gsvelto
48 bytes, text/x-phabricator-request
Details | Review
Bug 1837246: Block Kingsoft DLL (dghmpg64.dll) in all versions to avoid crashes r=gsvelto
48 bytes, text/x-phabricator-request
Details | Review

Crash report: https://crash-stats.mozilla.org/report/index/e952eeca-98f5-414d-b40b-785d80230607

Reason: EXCEPTION_ACCESS_VIOLATION_READ

Top 5 frames of crashing thread:

0  dghmpg64.dll  dghmpg64.dll@0x45a68  
1  dghmpg64.dll  dghmpg64.dll@0x5ce4c  
2  dghmpg64.dll  dghmpg64.dll@0x8e3a8  
3  dghmpg64.dll  dghmpg64.dll@0x5e8eb  
4  dghmpg64.dll  dghmpg64.dll@0xe339f

The bug is linked to a topcrash signature, which matches the following criterion:

  • Top 20 desktop browser crashes on beta (startup)

For more information, please visit BugBot documentation.

Keywords: topcrash, topcrash-startup

The bug is marked as tracked for firefox115 (beta). However, the bug still isn't assigned.

:gcp, could you please find an assignee for this tracked bug? If you disagree with the tracking decision, please talk with the release managers.

For more information, please visit BugBot documentation.

Flags: needinfo?(gpascutto)
Assignee: nobody → gstoll
Flags: needinfo?(gstoll)
Flags: needinfo?(gpascutto)

Windows DLLBlocklist request form

  1. How were we aware of the problem?
    Topcrasher

  2. What is a suspicious product causing the problem?
    Kingsoft Security software

  3. Is the product downloadable? If so, do we have a local repro?
    The product is downloadable, but I haven't seen this module get injected into Firefox locally.

  4. Which OS versions does the problem occur on?
    Windows 7, 10, 11

  5. Which process types does the problem occur on?
    Only the browser process

  6. What is the maximum version of the module in the crash reports?
    2023.5.31.1367

  7. Is the issue fixed by a newer version of the product?
    According to telemetry, 2023.5.31.1367 is the newest version of the module we've seen.

  8. Do we have data about the module in the third-party-module ping?
    Yes

  9. Do we know how the module is loaded?
    Seems to be loaded through CoInitializeEx(), which means that it should be safe to block.

  10. Describe your conclusion.
    We should block dghmpg64.dll versions 2023.5.31.1367 and earlier in the browser process only.

Severity: -- → S2
Priority: -- → P2
Status: NEW → ASSIGNED
Pushed by gstoll@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/8fe3872bfe82 block Kingsoft DLL (dghmpg64.dll) to avoid crashes r=gsvelto

https://hg.mozilla.org/mozilla-central/rev/8fe3872bfe82

Status: ASSIGNED → RESOLVED
Closed: 2 years ago
status-firefox116: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 116 Branch

The patch landed in nightly and beta is affected.
:gstoll, is this bug important enough to require an uplift?

  • If yes, please nominate the patch for beta approval.
  • If no, please set status-firefox115 to wontfix.

For more information, please visit BugBot documentation.

Flags: needinfo?(gstoll)

Uplift Approval Request

  • Needs manual QE test: no
  • Risk associated with taking this patch: low
  • Fix verified in Nightly: yes
  • User impact if declined: users won't get a fix for a topcrasher
  • Steps to reproduce for manual QE testing: n/a
  • Code covered by automated testing: no
  • Explanation of risk level: just adding a blocklist entry
  • String changes made/needed: no
  • Is Android affected?: no
Flags: needinfo?(gstoll)

A patch has been attached on this bug, which was already closed. Filing a separate bug will ensure better tracking. If this was not by mistake and further action is needed, please alert the appropriate party. (Or: if the patch doesn't change behavior -- e.g. landing a test case, or fixing a typo -- then feel free to disregard this message)

Pushed by gstoll@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/b713d0deed35 Block Kingsoft DLL (dghmpg64.dll) in all versions to avoid crashes r=gsvelto

Similar to bug 1837242, this is also crashing again because a newer version was released. I'm going to block them both in all versions.

Uplift Approval Request

  • Fix verified in Nightly: yes
  • Explanation of risk level: just extended a blocklist entry to block all versions
  • Is Android affected?: no
  • Risk associated with taking this patch: low
  • User impact if declined: users won't get a fix for a topcrasher
  • Code covered by automated testing: no
  • String changes made/needed: no
  • Steps to reproduce for manual QE testing: n/a
  • Needs manual QE test: no

Contacted a public address for Kingsoft in the hopes they'll be able to take a look at this.

As mentioned in the related bug https://bugzilla.mozilla.org/show_bug.cgi?id=1837242#c23
Users are hitting this in 115

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: