-
Bug
-
Resolution: Won't Do
-
P1: Critical
-
None
-
5.4.1
-
None
When visiting this page (e.g. with the demo browser), I get a segfault with this backtrace:
#0 0x00007ffff3bf429a in __strcmp_sse2_unaligned () from /usr/lib/libc.so.6 #1 0x00007ffff7513e76 in WTF::Collator::createCollator (this=this@entry=0x7fffffffc1e0) at wtf/unicode/icu/CollatorICU.cpp:117 #2 0x00007ffff7513feb in WTF::Collator::collate (this=0x7fffffffc1e0, lhs=0x7fff723960d0, lhsLength=5, rhs=0x7fff78309b10, rhsLength=9) at wtf/unicode/icu/CollatorICU.cpp:96 #3 0x00007ffff64435ee in WebCore::xsltUnicodeSortFunction (ctxt=0x5555561609f0, sorts=<optimized out>, nbsorts=1) at xml/XSLTUnicodeSort.cpp:201 #4 0x00007ffff24d48d6 in xsltForEach () from /usr/lib/libxslt.so.1 #5 0x00007ffff24d3123 in ?? () from /usr/lib/libxslt.so.1 #6 0x00007ffff24d45bb in xsltForEach () from /usr/lib/libxslt.so.1 #7 0x00007ffff24d3123 in ?? () from /usr/lib/libxslt.so.1 #8 0x00007ffff24d45bb in xsltForEach () from /usr/lib/libxslt.so.1 #9 0x00007ffff24d3123 in ?? () from /usr/lib/libxslt.so.1 #10 0x00007ffff24d5d32 in ?? () from /usr/lib/libxslt.so.1 #11 0x00007ffff24d6364 in xsltProcessOneNode () from /usr/lib/libxslt.so.1 #12 0x00007ffff24d7051 in xsltApplyTemplates () from /usr/lib/libxslt.so.1 #13 0x00007ffff24d3123 in ?? () from /usr/lib/libxslt.so.1 #14 0x00007ffff24d5d32 in ?? () from /usr/lib/libxslt.so.1 #15 0x00007ffff24d6364 in xsltProcessOneNode () from /usr/lib/libxslt.so.1 #16 0x00007ffff24d94ff in ?? () from /usr/lib/libxslt.so.1 #17 0x00007ffff6441113 in WebCore::XSLTProcessor::transformToString (this=0x7fff58d691b0, sourceNode=0x5555561609f0, mimeType=..., resultString=..., resultEncoding=...) at xml/XSLTProcessorLibxslt.cpp:351 #18 0x00007ffff700e9f7 in WebCore::Document::applyXSLTransform (this=0x555555fbccf0, pi=0x7fffffffcda0) at dom/Document.cpp:4245 #19 0x00007ffff6021815 in WebCore::DocumentStyleSheetCollection::collectActiveStyleSheets (this=this@entry=0x7fff5aaaa5b0, sheets=...) at dom/DocumentStyleSheetCollection.cpp:290 #20 0x00007ffff602326a in WebCore::DocumentStyleSheetCollection::updateActiveStyleSheets (this=0x7fff5aaaa5b0, updateFlag=updateFlag@entry=WebCore::DocumentStyleSheetCollection::FullUpdate) at dom/DocumentStyleSheetCollection.cpp:467 #21 0x00007ffff7024e50 in WebCore::Document::styleResolverChanged (this=0x555555fbccf0, updateFlag=WebCore::RecalcStyleImmediately) at dom/Document.cpp:3161 #22 0x00007ffff638ed91 in WebCore::XMLDocumentParser::doEnd (this=this@entry=0x7fff5a1a5a00) at xml/parser/XMLDocumentParserLibxml2.cpp:1377 #23 0x00007ffff7046a79 in WebCore::XMLDocumentParser::end (this=0x7fff5a1a5a00) at xml/parser/XMLDocumentParser.cpp:194 #24 0x00007ffff60ff7ca in WebCore::DocumentWriter::end (this=this@entry=0x7fff58830070) at loader/DocumentWriter.cpp:248 #25 0x00007ffff60f5f65 in WebCore::DocumentLoader::finishedLoading (this=0x7fff58830000, finishTime=<optimized out>) at loader/DocumentLoader.cpp:407 #26 0x00007ffff60e0e33 in WebCore::CachedResource::checkNotify (this=0x7fff59f5c380) at loader/cache/CachedResource.cpp:369 #27 0x00007ffff60df0ae in WebCore::CachedRawResource::finishLoading (this=0x7fff59f5c380, data=0x7fff5abec120) at loader/cache/CachedRawResource.cpp:94 #28 0x00007ffff613731c in WebCore::SubresourceLoader::didFinishLoading (this=0x7fff5a166c00, finishTime=<optimized out>) at loader/SubresourceLoader.cpp:282 #29 0x00007ffff6356e81 in WebCore::QNetworkReplyHandler::finish (this=0x555555c9d7a0) at platform/network/qt/QNetworkReplyHandler.cpp:522 #30 0x00007ffff6353fd2 in WebCore::QNetworkReplyHandlerCallQueue::flush (this=0x555555c9d7d8) at platform/network/qt/QNetworkReplyHandler.cpp:256 #31 0x00007ffff63569e2 in flush (this=<optimized out>) at platform/network/qt/QNetworkReplyHandler.cpp:217 #32 WebCore::QNetworkReplyHandlerCallQueue::push (this=<optimized out>, method=<optimized out>) at platform/network/qt/QNetworkReplyHandler.cpp:216 #33 0x00007ffff6356a3b in WebCore::QNetworkReplyWrapper::didReceiveFinished (this=0x7ffff6357410 <WebCore::QNetworkReplyWrapper::qt_static_metacall(QObject*, QMetaObject::Call, int, void**)>) at platform/network/qt/QNetworkReplyHandler.cpp:415 #34 0x00007ffff49f0309 in QMetaObject::activate (sender=<error reading variable: Cannot access memory at address 0xffffffffffffff39>, signalOffset=<optimized out>, local_signal_index=<optimized out>, argv=<error reading variable: Cannot access memory at address 0xffffffffffffff51>) at kernel/qobject.cpp:3716 Backtrace stopped: previous frame inner to this frame (corrupt stack?)