Crash in qt webkit on http://lenta.ru/

Hi! Qt 5.2 webkit crashes on http://lenta.ru/

The error reproduces in the example browser (qtwebkit-examples/examples/webkitwidgets/browser) and in Otter browser (https://github.com/Emdek/otter).

It seems it's related to font rendering in some way...

Stack trace:
#0 0xf4c366d0 in main_arena () from /lib/i386-linux-gnu/i686/cmov/libc.so.6
#1 0xf53d1050 in _hb_qt_get_font_table (tag=1399417958, user_data=0x84668c0) at text/qharfbuzzng.cpp:632
#2 0xf36c9245 in reference_table (tag=1399417958, this=0x85c8288) at ../../src/hb-face-private.hh:73
#3 _hb_graphite2_shaper_face_data_create (face=0x85c8288) at ../../src/hb-graphite2.cc:100
#4 0xf36a0f8c in hb_graphite2_shaper_face_data_ensure (face=0x85c8288) at ../../src/hb-shaper-list.hh:35
#5 hb_shape_plan_plan (shaper_list=0x0, num_user_features=1, user_features=0xffff9f2c, shape_plan=0x865f4c8) at ../../src/hb-shaper-list.hh:35
#6 hb_shape_plan_create (face=face@entry=0x85c8288, props=props@entry=0x84fabf4, user_features=user_features@entry=0xffff9f2c,
num_user_features=num_user_features@entry=1, shaper_list=shaper_list@entry=0x0) at ../../src/hb-shape-plan.cc:132
#7 0xf36a1a43 in hb_shape_plan_create_cached (face=0x85c8288, props=0x84fabf4, user_features=0xffff9f2c, num_user_features=1, shaper_list=0x0)
at ../../src/hb-shape-plan.cc:426
#8 0xf36a0aa0 in hb_shape_full (font=0x86612d0, buffer=0x84fabb0, features=0xffff9f2c, num_features=1, shaper_list=0x0) at ../../src/hb-shape.cc:304
#9 0xf5320c23 in QTextEngine::shapeTextWithHarfbuzzNG (this=0x870c718, si=..., string=0xe2b60960, itemLength=3, fontEngine=0x864ad58, itemBoundaries=...,
kerningEnabled=kerningEnabled@entry=true) at text/qtextengine.cpp:1130
#10 0xf5324a3b in QTextEngine::shapeText (this=this@entry=0x870c718, item=item@entry=0) at text/qtextengine.cpp:993
#11 0xf5325436 in QTextEngine::shape (this=0x870c718, item=0) at text/qtextengine.cpp:1402
#12 0xf53396b6 in QTextLine::layout_helper (this=this@entry=0xffffa2a8, maxGlyphs=maxGlyphs@entry=2147483647) at text/qtextlayout.cpp:1752
#13 0xf533a936 in QTextLine::setLineWidth (this=this@entry=0xffffa2a8, width=<optimized out>, width@entry=8388607) at text/qtextlayout.cpp:1536
#14 0xf63dbb2a in WebCore::setupLayout (layout=layout@entry=0xffffa29c, style=...) at platform/graphics/qt/FontQt.cpp:68
#15 0xf63dd1cf in WebCore::Font::floatWidthForComplexText (this=0xe48db3d0, run=...) at platform/graphics/qt/FontQt.cpp:202
#16 0xf63bc325 in WebCore::Font::width (this=0xe48db3d0, run=..., fallbackFonts=0xffffa71c, glyphOverflow=glyphOverflow@entry=0xffffa468) at platform/graphics/Font.cpp:311
#17 0xf70ca89f in textWidth (layout=<optimized out>, fallbackFonts=..., collapseWhiteSpace=<optimized out>, isFixedPitch=<optimized out>, xPos=<optimized out>, font=...,
len=<optimized out>, from=<optimized out>, text=0xea642e3c) at rendering/RenderBlockLineLayout.cpp:2649
#18 WebCore::RenderBlock::LineBreaker::nextSegmentBreak (this=this@entry=0xffffa6a0, resolver=..., lineInfo=..., renderTextInfo=...,
lastFloatFromPreviousLine=lastFloatFromPreviousLine@entry=0x0, consecutiveHyphenatedLines=consecutiveHyphenatedLines@entry=0, wordMeasurements=...)
at rendering/RenderBlockLineLayout.cpp:3257
#19 0xf70cb693 in WebCore::RenderBlock::LineBreaker::nextLineBreak (this=this@entry=0xffffa6a0, resolver=..., lineInfo=..., renderTextInfo=...,
lastFloatFromPreviousLine=0x0, consecutiveHyphenatedLines=0, wordMeasurements=...) at rendering/RenderBlockLineLayout.cpp:2815
#20 0xf70cd9dd in WebCore::RenderBlock::layoutRunsAndFloatsInRange (this=0xea642d64, layoutState=..., resolver=..., cleanLineStart=..., cleanLineBidiStatus=...,
consecutiveHyphenatedLines=0) at rendering/RenderBlockLineLayout.cpp:1845
#21 0xf70cf769 in WebCore::RenderBlock::layoutRunsAndFloats (this=0xea642d64, layoutState=..., hasInlineChild=hasInlineChild@entry=true)
at rendering/RenderBlockLineLayout.cpp:1614
#22 0xf70cfe46 in WebCore::RenderBlock::layoutInlineChildren (this=this@entry=0xea642d64, relayoutChildren=relayoutChildren@entry=false, repaintLogicalTop=...,
repaintLogicalBottom=...) at rendering/RenderBlockLineLayout.cpp:2189
#23 0xf70d08a9 in WebCore::RenderBlock::layoutBlock (this=0xea642d64, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1653
#24 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea642d64) at rendering/RenderBlock.cpp:1428
#25 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xea642c50, child=child@entry=0xea642d64, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#26 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xea642c50, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#27 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xea642c50, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#28 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea642c50) at rendering/RenderBlock.cpp:1428
#29 0xf70cfe28 in layoutIfNeeded (this=<optimized out>) at rendering/RenderObject.h:704
#30 WebCore::RenderBlock::layoutInlineChildren (this=this@entry=0xea642be4, relayoutChildren=relayoutChildren@entry=false, repaintLogicalTop=..., repaintLogicalBottom=...)
at rendering/RenderBlockLineLayout.cpp:2187
#31 0xf70d08a9 in WebCore::RenderBlock::layoutBlock (this=0xea642be4, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1653
#32 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea642be4) at rendering/RenderBlock.cpp:1428
#33 0xf70746c3 in layoutIfNeeded (this=0xea642be4) at rendering/RenderObject.h:704
#34 WebCore::RenderBlock::insertFloatingObject (this=this@entry=0xea642630, o=o@entry=0xea642be4) at rendering/RenderBlock.cpp:4054
#35 0xf70c3854 in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xea642630, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2595
#36 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xea642630, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#37 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea642630) at rendering/RenderBlock.cpp:1428
#38 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xea6425c4, child=child@entry=0xea642630, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#39 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xea6425c4, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#40 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xea6425c4, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#41 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea6425c4) at rendering/RenderBlock.cpp:1428
#42 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xea642484, child=child@entry=0xea6425c4, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#43 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xea642484, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#44 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xea642484, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#45 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xea642484) at rendering/RenderBlock.cpp:1428
#46 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xe4d54374, child=child@entry=0xea642484, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#47 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xe4d54374, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#48 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xe4d54374, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#49 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xe4d54374) at rendering/RenderBlock.cpp:1428
#50 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xe4d54308, child=child@entry=0xe4d54374, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#51 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xe4d54308, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#52 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xe4d54308, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#53 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xe4d54308) at rendering/RenderBlock.cpp:1428
#54 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xe4d541c8, child=child@entry=0xe4d54308, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#55 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xe4d541c8, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#56 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xe4d541c8, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#57 0xf6fb07c7 in WebCore::RenderBlock::layout (this=0xe4d541c8) at rendering/RenderBlock.cpp:1428
#58 0xf708e712 in WebCore::RenderBlock::layoutBlockChild (this=this@entry=0xe4d54010, child=child@entry=0xe4d541c8, marginInfo=..., previousFloatLogicalBottom=...,
maxFloatLogicalBottom=...) at rendering/RenderBlock.cpp:2666
#59 0xf70c38bc in WebCore::RenderBlock::layoutBlockChildren (this=this@entry=0xe4d54010, relayoutChildren=relayoutChildren@entry=false, maxFloatLogicalBottom=...)
at rendering/RenderBlock.cpp:2601
#60 0xf70d0b6b in WebCore::RenderBlock::layoutBlock (this=0xe4d54010, relayoutChildren=<optimized out>, pageLogicalHeight=...) at rendering/RenderBlock.cpp:1655
#61 0xf6fb07c7 in WebCore::RenderBlock::layout (this=this@entry=0xe4d54010) at rendering/RenderBlock.cpp:1428
#62 0xf6ff39bc in WebCore::RenderView::layoutContent (this=0xe4d54010, state=...) at rendering/RenderView.cpp:142
#63 0xf7045bf5 in WebCore::RenderView::layout (this=0xe4d54010) at rendering/RenderView.cpp:305
#64 0xf6372c23 in WebCore::FrameView::layout (this=0xf0315c80, allowSubtree=true) at page/FrameView.cpp:1326
#65 0xf63673f5 in WebCore::Timer<WebCore::FrameView>::fired (this=0xf0315d64) at platform/Timer.h:114
#66 0xf6454d22 in WebCore::ThreadTimers::sharedTimerFiredInternal (this=0xf02e4100) at platform/ThreadTimers.cpp:129
#67 0xf6454d9c in WebCore::ThreadTimers::sharedTimerFired () at platform/ThreadTimers.cpp:105
#68 0xf653a2be in WebCore::SharedTimerQt::timerEvent (this=0x826d898, ev=0xffffcc50) at platform/qt/SharedTimerQt.cpp:113
#69 0xf4fa09ce in QObject::event (this=0x826d898, e=0xffffcc50) at kernel/qobject.cpp:1122
#70 0xf5835cd6 in QApplicationPrivate::notify_helper (this=this@entry=0x8159aa0, receiver=receiver@entry=0x826d898, e=e@entry=0xffffcc50) at kernel/qapplication.cpp:3467
#71 0xf583b6a1 in QApplication::notify (this=0xffffced8, receiver=0x826d898, e=0xffffcc50) at kernel/qapplication.cpp:3217
#72 0xf4f75adc in QCoreApplication::notifyInternal (this=0xffffced8, receiver=0x826d898, event=event@entry=0xffffcc50) at kernel/qcoreapplication.cpp:878
#73 0xf4fc8175 in sendEvent (event=0xffffcc50, receiver=<optimized out>) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:232
#74 QTimerInfoList::activateTimers (this=this@entry=0x81899bc) at kernel/qtimerinfo_unix.cpp:643
#75 0xf4fc86a8 in timerSourceDispatch (source=source@entry=0x8189988) at kernel/qeventdispatcher_glib.cpp:185
#76 0xf41d39de in g_main_dispatch (context=0xf1002200, context@entry=0x8158928) at /build/glib2.0-ZWjuWh/glib2.0-2.38.2/./glib/gmain.c:3066
#77 g_main_context_dispatch (context=context@entry=0xf1002200) at /build/glib2.0-ZWjuWh/glib2.0-2.38.2/./glib/gmain.c:3642
#78 0xf41d3d88 in g_main_context_iterate (context=context@entry=0xf1002200, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>)
at /build/glib2.0-ZWjuWh/glib2.0-2.38.2/./glib/gmain.c:3713
#79 0xf41d3e48 in g_main_context_iteration (context=0xf1002200, may_block=1) at /build/glib2.0-ZWjuWh/glib2.0-2.38.2/./glib/gmain.c:3774
#80 0xf4fc89fd in QEventDispatcherGlib::processEvents (this=this@entry=0x818ef48, flags=flags@entry=...) at kernel/qeventdispatcher_glib.cpp:426
#81 0xf1bf81b6 in QPAEventDispatcherGlib::processEvents (this=0x818ef48, flags=...) at eventdispatchers/qeventdispatcher_glib.cpp:123
#82 0xf4f741f8 in QEventLoop::processEvents (this=this@entry=0xffffce5c, flags=flags@entry=...) at kernel/qeventloop.cpp:136
#83 0xf4f7461c in QEventLoop::exec (this=this@entry=0xffffce5c, flags=flags@entry=...) at kernel/qeventloop.cpp:212
#84 0xf4f7b466 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:1131
#85 0xf5269d04 in QGuiApplication::exec () at kernel/qguiapplication.cpp:1332
#86 0xf58344e4 in QApplication::exec () at kernel/qapplication.cpp:2692
#87 0x08069b01 in main (argc=1, argv=0xffffcfa4) at main.cpp:51