Details
-
Bug
-
Resolution: Fixed
-
P1: Critical
-
6.2.0, dev
-
Manjaro Linux
clang 15.0.7
-
500e99e97 (dev), df6474955 (dev), c77e7a94d (6.6), 5f9f306be (6.6), 3126d16d3 (6.6.0), 26a970e69 (6.6.0), b252df45f (6.5), 20f925553 (6.5), 5fb694a67 (tqtc/lts-6.2), fc2647198 (tqtc/lts-6.2), e7936b064 (dev)
Description
- Have a build of Qt including qtsvg.
No sanitizers needed. - Build the attached project:
qt-cmake /tmp/report/ && cmake --build .
It's the same project that was used in
QTBUG-111850. The fix for that one does not fix this issue. - Run the resulting binary passing the attached input file as parameter:
./report /tmp/report/58213.svg
This is completely occupying a full CPU core for 13 (developer build) or even 20 seconds (release build with ASAN).
Google's oss-fuzz found this as issue 58213. They will publish the details 90 days from now, the latest. You can find a backtrace in their detailed report.
Attachments
For Gerrit Dashboard: QTBUG-113042 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
503382,5 | Only draw toplevel <svg> elements | dev | qt/qtsvg | Status: MERGED | +2 | 0 |
503714,7 | Refuse to load SVGs with circular references | dev | qt/qtsvg | Status: MERGED | +2 | 0 |
504239,2 | Refuse to load SVGs with circular references | 6.6 | qt/qtsvg | Status: MERGED | +2 | 0 |
504240,2 | Only draw toplevel <svg> elements | 6.6 | qt/qtsvg | Status: MERGED | +2 | 0 |
504425,2 | Refuse to load SVGs with circular references | 6.6.0 | qt/qtsvg | Status: MERGED | +2 | 0 |
504426,2 | Refuse to load SVGs with circular references | 6.5 | qt/qtsvg | Status: MERGED | +2 | 0 |
504427,2 | Only draw toplevel <svg> elements | 6.5 | qt/qtsvg | Status: MERGED | +2 | 0 |
504428,2 | Only draw toplevel <svg> elements | 6.6.0 | qt/qtsvg | Status: MERGED | +2 | 0 |
504816,2 | Only draw toplevel <svg> elements | tqtc/lts-6.2 | qt/tqtc-qtsvg | Status: MERGED | +2 | 0 |
504817,2 | Refuse to load SVGs with circular references | tqtc/lts-6.2 | qt/tqtc-qtsvg | Status: MERGED | +2 | 0 |
526212,3 | fuzzing: Add svg file which caused fuzzers to time out | dev | qt/qtqa | Status: MERGED | +2 | 0 |