Bug 150662 - [testcase] Konqueror Crash on visit: http://www.ibr.cs.tu-bs.de/
Summary: [testcase] Konqueror Crash on visit: http://www.ibr.cs.tu-bs.de/
Status: RESOLVED FIXED
Alias: None
Product: konqueror
Classification: Applications
Component: khtml (show other bugs)
Version: 3.5
Platform: unspecified Linux
: NOR crash
Target Milestone: ---
Assignee: Konqueror Developers
URL:
Keywords:
: 159344 164484 169624 171863 186384 (view as bug list)
Depends on:
Blocks:
 
Reported: 2007-10-10 11:53 UTC by Florian Dittmer
Modified: 2009-03-06 20:32 UTC (History)
11 users (show)

See Also:
Latest Commit:
Version Fixed In:


Attachments
First part of a test case (CSS style sheet) (41 bytes, text/css)
2008-08-29 00:40 UTC, Frank Reininghaus
Details
Second part of the test case - HTML page (840 bytes, text/html)
2008-08-29 00:44 UTC, Frank Reininghaus
Details
kde 3.5 patch (809 bytes, patch)
2008-12-05 18:06 UTC, Andrea Iacovitti
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Florian Dittmer 2007-10-10 11:53:37 UTC
Version:           3.5.7 (using KDE 3.5.7, Gentoo)
Compiler:          Target: i686-pc-linux-gnu
OS:                Linux (i686) release 2.6.22-gentoo-r5

My Konqueror crashes every time I visit the Webpage http://www.ibr.cs.tu-bs.de/

I dont have debugging enabled so all I get is:

[Thread debugging using libthread_db enabled]
[New Thread -1235343696 (LWP 12058)]
[KCrash handler]
#6  0x00000026 in ?? ()
#7  0xb6029009 in ?? () from /usr/kde/3.5/lib/libkhtml.so.4
#8  0x08376430 in ?? ()
#9  0xb670d160 in ?? () from /lib/libc.so.6
#10 0xbfa445e8 in ?? ()
#11 0xb604351f in QPtrList<khtml::CSSOrderedRule>::deleteItem ()
   from /usr/kde/3.5/lib/libkhtml.so.4
Backtrace stopped: frame did not save the PC
Comment 1 Tommi Tervo 2007-10-10 12:27:18 UTC
==24563== Invalid read of size 4
==24563==    at 0x76A7D80: khtml::CSSOrderedRule::~CSSOrderedRule() (shared.h:61)
==24563==    by 0x76D6C0E: QPtrList<khtml::CSSOrderedRule>::deleteItem(void*) (qptrlist.h:150)
==24563==    by 0x547A0DD: QGList::clear() (in /usr/lib/libqt-mt.so.3.3.7)
==24563==    by 0x76A757C: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (qptrlist.h:93)
==24563==    by 0x76AE09D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:282)
==24563==    by 0x75E0A35: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2208)
==24563==    by 0x75E146C: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2202)
==24563==    by 0x75E18B1: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2052)
==24563==    by 0x75E1F8B: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:1978)
==24563==    by 0x75FCB22: DOM::HTMLLinkElementImpl::finished() (html_headimpl.cpp:257)
==24563==    by 0x7600837: DOM::HTMLLinkElementImpl::setStyleSheet(DOM::DOMString const&, DOM::DOMString const&, DOM::DOMString const&) (html_headimpl.cpp:248)
==24563==    by 0x76D9BBF: khtml::CachedCSSStyleSheet::ref(khtml::CachedObjectClient*) (loader.cpp:246)
==24563==    by 0x760D2D9: DOM::HTMLLinkElementImpl::process() (html_headimpl.cpp:207)
Comment 2 Florian Dittmer 2007-10-23 11:26:24 UTC
same problem with KDE 3.5.8 
Comment 3 Oliver Putz 2008-01-23 00:20:13 UTC
I can reproduce this bug with a current KDE4 SVN build. The funny thing is: If I run konqueror in valgrind, it does not crash... I'll attach a gdb backtrace and a valgrind output.

GDB:
Starting program: /usr/kde/svn/bin/konqueror 
[Thread debugging using libthread_db enabled]
[New Thread 0xb637fa10 (LWP 4247)]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb637fa10 (LWP 4247)]
0x082c2618 in ?? ()
#0  0x082c2618 in ?? ()
#1  0xb48759c7 in khtml::TreeShared<DOM::StyleBaseImpl>::deref (this=0x82c25d0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/misc/shared.h:65
#2  0xb4996134 in ~CSSOrderedRule (this=0x825b500)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/css/cssstyleselector.cpp:1803
#3  0xb49a8406 in qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator> (begin=@0xbfbfc218, end=@0xbfbfc214)
    at /usr/include/qt4/QtCore/qalgorithms.h:343
#4  0xb49a8496 in qDeleteAll<khtml::CSSStyleSelectorList> (c=@0x82b94a0) at /usr/include/qt4/QtCore/qalgorithms.h:351
#5  0xb499f9e3 in ~CSSStyleSelectorList (this=0x82b94a0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/css/cssstyleselector.cpp:1814
#6  0xb49a569e in ~CSSStyleSelector (this=0x8349100)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/css/cssstyleselector.cpp:318
#7  0xb486a746 in DOM::DocumentImpl::rebuildStyleSelector (this=0x8477eb8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_docimpl.cpp:2251
#8  0xb486f943 in DOM::DocumentImpl::recalcStyleSelector (this=0x8477eb8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_docimpl.cpp:2245
#9  0xb486fa6b in DOM::DocumentImpl::updateStyleSelector (this=0x8477eb8, shallow=80)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_docimpl.cpp:2097
#10 0xb486fde9 in DOM::DocumentImpl::styleSheetLoaded (this=0x82c25d0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_docimpl.cpp:2023
#11 0xb48b2495 in DOM::HTMLLinkElementImpl::finished (this=0x82b4b98)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/html/html_headimpl.cpp:258
#12 0xb48b304a in DOM::HTMLLinkElementImpl::setStyleSheet (this=0x82b4b98, url=@0x811f200, sheetStr=@0x811f234, 
    charset=@0xbfbfc4e4) at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/html/html_headimpl.cpp:249
#13 0xb49b5d18 in khtml::CachedCSSStyleSheet::ref (this=0x811f1f8, c=0x82b4b98)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/misc/loader.cpp:253
#14 0xb48b464e in DOM::HTMLLinkElementImpl::process (this=0x82b4b98)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/html/html_headimpl.cpp:208
#15 0xb48b4a68 in DOM::HTMLLinkElementImpl::parseAttribute (this=0x82b4b98, attr=0xbfbfc6d0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/html/html_headimpl.cpp:133
#16 0xb488d6c7 in DOM::ElementImpl::parseAttribute (this=0x82b4b9c, attrId=72, value=0x854bcd8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_elementimpl.h:203
#17 0xb488a1bc in DOM::AttrImpl::setValue (this=0x85a2f30, v=@0xbfbfc780, exceptioncode=@0xbfbfc77c)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_elementimpl.cpp:182
#18 0xb488a355 in DOM::AttrImpl::setNodeValue (this=0x85a2f30, v=@0xbfbfc780, exceptioncode=@0xbfbfc77c)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_elementimpl.cpp:191
#19 0xb49d4f9c in KJS::DOMNode::putValueProperty (this=0xb2e03660, exec=0xbfbfcc48, token=1, value=0xb2e037a0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/ecma/kjs_dom.cpp:420
#20 0xb49dc874 in KJS::lookupPut<KJS::DOMNode> (exec=0xbfbfcc48, propertyName=@0x8267e2c, value=0xb2e037a0, attr=0, 
    table=0xb4b8e7e0, thisObj=0xb2e03660) at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/lookup.h:249
#21 0xb49dc8d8 in KJS::lookupPut<KJS::DOMNode, KJS::DOMObject> (exec=0xbfbfcc48, propertyName=@0x8267e2c, value=0xb2e037a0, 
    attr=0, table=0xb4b8e7e0, thisObj=0xb2e03660)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/lookup.h:265
#22 0xb49d5673 in KJS::DOMNode::put (this=0xb2e03660, exec=0xbfbfcc48, propertyName=@0x8267e2c, value=0xb2e037a0, attr=0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/ecma/kjs_dom.cpp:410
#23 0xb49dc9fd in KJS::lookupPut<KJS::DOMAttr, KJS::DOMNode> (exec=0xbfbfcc48, propertyName=@0x8267e2c, value=0xb2e037a0, 
    attr=0, table=0xb4b8e800, thisObj=0xb2e03660)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/lookup.h:266
#24 0xb49d5713 in KJS::DOMAttr::put (this=0xb2e03660, exec=0xbfbfcc48, propertyName=@0x8267e2c, value=0xb2e037a0, attr=0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/ecma/kjs_dom.cpp:847
#25 0xb4c5cfdf in KJS::AssignDotNode::evaluate (this=0x8267e20, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:1830
#26 0xb4c547aa in KJS::ExprStatementNode::execute (this=0x8267e40, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2168
#27 0xb4c53d9e in KJS::SourceElementsNode::execute (this=0x8319f70, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2979
#28 0xb4c506cb in KJS::BlockNode::execute (this=0x8267e78, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#29 0xb4c59058 in KJS::ForNode::execute (this=0x8267e90, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2322
#30 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x82640e8, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#31 0xb4c506cb in KJS::BlockNode::execute (this=0x8264108, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#32 0xb4c5997a in KJS::IfNode::execute (this=0x8264120, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2200
#33 0xb4c53d9e in KJS::SourceElementsNode::execute (this=0x8274088, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2979
#34 0xb4c506cb in KJS::BlockNode::execute (this=0x83001d8, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#35 0xb4c91d31 in KJS::DeclaredFunctionImp::execute (this=0xb2e00ba0, exec=0xbfbfcc48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:373
#36 0xb4c933af in KJS::FunctionImp::callAsFunction (this=0xb2e00ba0, exec=0xbfbfd018, thisObj=0xb2e10000, args=@0xbfbfcd10)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:161
#37 0xb4c9a8bb in KJS::JSObject::call (this=0xb2e00ba0, exec=0xbfbfd018, thisObj=0xb2e10000, args=@0xbfbfcd10)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/object.cpp:99
#38 0xb4c57090 in KJS::FunctionCallReferenceNode::evaluate (this=0x8312118, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:1038
#39 0xb4c547aa in KJS::ExprStatementNode::execute (this=0x8312130, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2168
#40 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8312148, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#41 0xb4c506cb in KJS::BlockNode::execute (this=0x8312168, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#42 0xb4c59058 in KJS::ForNode::execute (this=0x8312180, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2322
#43 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8300160, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#44 0xb4c506cb in KJS::BlockNode::execute (this=0x8300180, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#45 0xb4c5997a in KJS::IfNode::execute (this=0x8300198, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2200
#46 0xb4c53d9e in KJS::SourceElementsNode::execute (this=0x8274088, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2979
#47 0xb4c506cb in KJS::BlockNode::execute (this=0x83001d8, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#48 0xb4c91d31 in KJS::DeclaredFunctionImp::execute (this=0xb2e00ba0, exec=0xbfbfd018)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:373
#49 0xb4c933af in KJS::FunctionImp::callAsFunction (this=0xb2e00ba0, exec=0xbfbfd3e8, thisObj=0xb2e10000, args=@0xbfbfd0e0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:161
#50 0xb4c9a8bb in KJS::JSObject::call (this=0xb2e00ba0, exec=0xbfbfd3e8, thisObj=0xb2e10000, args=@0xbfbfd0e0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/object.cpp:99
#51 0xb4c57090 in KJS::FunctionCallReferenceNode::evaluate (this=0x8312118, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:1038
#52 0xb4c547aa in KJS::ExprStatementNode::execute (this=0x8312130, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2168
#53 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8312148, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#54 0xb4c506cb in KJS::BlockNode::execute (this=0x8312168, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#55 0xb4c59058 in KJS::ForNode::execute (this=0x8312180, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2322
#56 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8300160, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#57 0xb4c506cb in KJS::BlockNode::execute (this=0x8300180, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#58 0xb4c5997a in KJS::IfNode::execute (this=0x8300198, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2200
#59 0xb4c53d9e in KJS::SourceElementsNode::execute (this=0x8274088, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2979
#60 0xb4c506cb in KJS::BlockNode::execute (this=0x83001d8, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#61 0xb4c91d31 in KJS::DeclaredFunctionImp::execute (this=0xb2e00ba0, exec=0xbfbfd3e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:373
#62 0xb4c933af in KJS::FunctionImp::callAsFunction (this=0xb2e00ba0, exec=0xbfbfd7b8, thisObj=0xb2e10000, args=@0xbfbfd4b0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:161
#63 0xb4c9a8bb in KJS::JSObject::call (this=0xb2e00ba0, exec=0xbfbfd7b8, thisObj=0xb2e10000, args=@0xbfbfd4b0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/object.cpp:99
#64 0xb4c57090 in KJS::FunctionCallReferenceNode::evaluate (this=0x8312118, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:1038
#65 0xb4c547aa in KJS::ExprStatementNode::execute (this=0x8312130, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2168
#66 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8312148, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#67 0xb4c506cb in KJS::BlockNode::execute (this=0x8312168, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#68 0xb4c59058 in KJS::ForNode::execute (this=0x8312180, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2322
#69 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8300160, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#70 0xb4c506cb in KJS::BlockNode::execute (this=0x8300180, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#71 0xb4c5997a in KJS::IfNode::execute (this=0x8300198, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2200
#72 0xb4c53d9e in KJS::SourceElementsNode::execute (this=0x8274088, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2979
#73 0xb4c506cb in KJS::BlockNode::execute (this=0x83001d8, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#74 0xb4c91d31 in KJS::DeclaredFunctionImp::execute (this=0xb2e00ba0, exec=0xbfbfd7b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:373
#75 0xb4c933af in KJS::FunctionImp::callAsFunction (this=0xb2e00ba0, exec=0xbfbfd9f8, thisObj=0xb2e10000, args=@0xbfbfd880)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:161
#76 0xb4c9a8bb in KJS::JSObject::call (this=0xb2e00ba0, exec=0xbfbfd9f8, thisObj=0xb2e10000, args=@0xbfbfd880)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/object.cpp:99
#77 0xb4c57090 in KJS::FunctionCallReferenceNode::evaluate (this=0x82433c8, exec=0xbfbfd9f8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:1038
#78 0xb4c547aa in KJS::ExprStatementNode::execute (this=0x8305d18, exec=0xbfbfd9f8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2168
#79 0xb4c53c8c in KJS::SourceElementsNode::execute (this=0x8240ba0, exec=0xbfbfd9f8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2973
#80 0xb4c506cb in KJS::BlockNode::execute (this=0x8240900, exec=0xbfbfd9f8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/nodes.cpp:2145
#81 0xb4c91d31 in KJS::DeclaredFunctionImp::execute (this=0xb2e00b60, exec=0xbfbfd9f8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:373
#82 0xb4c933af in KJS::FunctionImp::callAsFunction (this=0xb2e00b60, exec=0x8355624, thisObj=0xb2e10000, args=@0xbfbfdab8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/function.cpp:161
#83 0xb4c9a8bb in KJS::JSObject::call (this=0xb2e00b60, exec=0x8355624, thisObj=0xb2e10000, args=@0xbfbfdab8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kjs/object.cpp:99
#84 0xb4a2e67f in KJS::JSEventListener::handleEvent (this=0x823eb40, evt=@0xbfbfdaf4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/ecma/kjs_events.cpp:100
#85 0xb48691ae in DOM::DocumentImpl::defaultEventHandler (this=0x8477eb8, evt=0x825fd48)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_docimpl.cpp:2583
#86 0xb48840c2 in DOM::NodeImpl::dispatchWindowEvent (this=0x8477ec4, _id=17, canBubbleArg=false, cancelableArg=false)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/xml/dom_nodeimpl.cpp:535
#87 0xb48bdbd8 in DOM::HTMLDocumentImpl::close (this=0x8477eb8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/html/html_documentimpl.cpp:262
#88 0xb482154d in KHTMLPart::checkEmitLoadEvent (this=0x81f4910)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/khtml_part.cpp:2336
#89 0xb4821854 in KHTMLPart::checkCompleted (this=0x81f4910)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/khtml_part.cpp:2257
#90 0xb4823e38 in KHTMLPart::slotLoaderRequestDone (this=0x81f4910, dl=0x827d188, obj=0x823b1e0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/khtml_part.cpp:2111
#91 0xb482e157 in KHTMLPart::qt_metacall (this=0x81f4910, _c=QMetaObject::InvokeMetaMethod, _id=83, _a=0xbfbfe1c8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/khtml/khtml_part.moc:313
#92 0xb72931f4 in QMetaObject::activate (sender=0x82227e8, from_signal_index=5, to_signal_index=5, 
    argv=<value optimized out>) at kernel/qobject.cpp:3081
#93 0xb7293d94 in QMetaObject::activate (sender=0x82227e8, m=0xb4ba9d34, local_signal_index=1, argv=0xbfbfe1c8)
    at kernel/qobject.cpp:3140
#94 0xb49b459a in khtml::Loader::requestDone (this=0x82227e8, _t1=0x827d188, _t2=0x823b1e0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/khtml/loader.moc:146
#95 0xb49b7cf2 in khtml::Loader::slotFinished (this=0x82227e8, job=0x82d8da0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/khtml/misc/loader.cpp:1300
#96 0xb49b7fc1 in khtml::Loader::qt_metacall (this=0x82227e8, _c=QMetaObject::InvokeMetaMethod, _id=3, _a=0xbfbfe75c)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/khtml/loader.moc:126
#97 0xb72931f4 in QMetaObject::activate (sender=0x82d8da0, from_signal_index=7, to_signal_index=7, 
    argv=<value optimized out>) at kernel/qobject.cpp:3081
#98 0xb7293d94 in QMetaObject::activate (sender=0x82d8da0, m=0xb7b933a8, local_signal_index=3, argv=0xbfbfe75c)
    at kernel/qobject.cpp:3140
#99 0xb7a91d44 in KJob::result (this=0x82d8da0, _t1=0x82d8da0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kdecore/kjob.moc:185
#100 0xb7a92282 in KJob::emitResult (this=0x82d8da0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdecore/jobs/kjob.cpp:290
#101 0xb7c4a568 in KIO::SimpleJob::slotFinished (this=0x82d8da0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/job.cpp:491
#102 0xb7c4a91a in KIO::TransferJob::slotFinished (this=0x82d8da0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/job.cpp:961
#103 0xb7c514b3 in KIO::TransferJob::qt_metacall (this=0x82d8da0, _c=QMetaObject::InvokeMetaMethod, _id=47, _a=0xbfbfede4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/jobclasses.moc:335
#104 0xb72931f4 in QMetaObject::activate (sender=0x82de130, from_signal_index=8, to_signal_index=8, 
    argv=<value optimized out>) at kernel/qobject.cpp:3081
#105 0xb7293d94 in QMetaObject::activate (sender=0x82de130, m=0xb7dbb024, local_signal_index=4, argv=0x0)
    at kernel/qobject.cpp:3140
#106 0xb7cf2736 in KIO::SlaveInterface::finished (this=0x82de130)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/slaveinterface.moc:160
#107 0xb7cf42fa in KIO::SlaveInterface::dispatch (this=0x82de130, _cmd=104, rawdata=@0xbfbfefc4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slaveinterface.cpp:176
#108 0xb7cf4f56 in KIO::SlaveInterface::dispatch (this=0x82de130)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slaveinterface.cpp:90
#109 0xb7ce7627 in KIO::Slave::gotInput (this=0x82de130)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slave.cpp:318
#110 0xb7ce8b7d in KIO::Slave::qt_metacall (this=0x82de130, _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbfbff4e4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/slave.moc:74
#111 0xb72931f4 in QMetaObject::activate (sender=0x829fd68, from_signal_index=4, to_signal_index=4, 
    argv=<value optimized out>) at kernel/qobject.cpp:3081
#112 0xb7293d94 in QMetaObject::activate (sender=0x829fd68, m=0xb7db7f20, local_signal_index=0, argv=0x0)
    at kernel/qobject.cpp:3140
#113 0xb7c22953 in KIO::Connection::readyRead (this=0x829fd68)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/connection.moc:83
#114 0xb7c237d6 in KIO::ConnectionPrivate::dequeue (this=0x823cc40)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/connection.cpp:82
#115 0xb7c24585 in KIO::Connection::qt_metacall (this=0x829fd68, _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x84eec70)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/connection.moc:71
#116 0xb728e2f9 in QMetaCallEvent::placeMetaCall (this=0x85a4798, object=0x829fd68) at kernel/qobject.cpp:536
#117 0xb7291017 in QObject::event (this=0x829fd68, e=0x83ffcc8) at kernel/qobject.cpp:1122
#118 0xb6920e8a in QApplicationPrivate::notify_helper (this=0x80587c8, receiver=0x829fd68, e=0x85a4798)
    at kernel/qapplication.cpp:3556
#119 0xb692277a in QApplication::notify (this=0xbfbffe28, receiver=0x829fd68, e=0x85a4798) at kernel/qapplication.cpp:3115
#120 0xb785dfb3 in KApplication::notify (this=0xbfbffe28, receiver=0x829fd68, event=0x85a4798)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kapplication.cpp:314
#121 0xb727fd7b in QCoreApplication::notifyInternal (this=0xbfbffe28, receiver=0x829fd68, event=0x85a4798)
    at kernel/qcoreapplication.cpp:530
#122 0xb728121a in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x804ce50)
    at kernel/qcoreapplication.h:200
#123 0xb728156d in QCoreApplication::sendPostedEvents (receiver=0x0, event_type=0) at kernel/qcoreapplication.cpp:1001
#124 0xb69aaaee in QEventDispatcherX11::processEvents (this=0x8057f48, flags=@0xbfbffbe4)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:205
#125 0xb727f191 in QEventLoop::processEvents (this=0xbfbffc50, flags=@0xbfbffc18) at kernel/qeventloop.cpp:140
#126 0xb727f29a in QEventLoop::exec (this=0xbfbffc50, flags=@0xbfbffc58) at kernel/qeventloop.cpp:186
#127 0xb7281626 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:759
#128 0xb6920487 in QApplication::exec () at kernel/qapplication.cpp:3053
#129 0xb7ef239f in kdemain (argc=1, argv=0xbfc00124)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/apps/konqueror/src/konqmain.cpp:218
#130 0x080487e2 in main (argc=138386688, argv=0x82c25d0)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase_build/apps/konqueror/src/konqueror_dummy.cpp:3
#131 0xb658dfdc in __libc_start_main (main=0x80487c0 <main>, argc=1, ubp_av=0xbfc00124, init=0x8048810 <__libc_csu_init>, 
    fini=0x8048800 <__libc_csu_fini>, rtld_fini=0xb7f15100 <_dl_fini>, stack_end=0xbfc0011c) at libc-start.c:229
#132 0x08048731 in _start ()

Valgrind:
==5103== Memcheck, a memory error detector.
==5103== Copyright (C) 2002-2007, and GNU GPL'd, by Julian Seward et al.
==5103== Using LibVEX rev 1732, a library for dynamic binary translation.
==5103== Copyright (C) 2004-2007, and GNU GPL'd, by OpenWorks LLP.
==5103== Using valgrind-3.2.3, a dynamic binary instrumentation framework.
==5103== Copyright (C) 2000-2007, and GNU GPL'd, by Julian Seward et al.
==5103== For more details, rerun with: -v
==5103== 
==5103== My PID = 5103, parent PID = 4231.  Prog and args are:
==5103==    konqueror
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400A9B5: _dl_relocate_object (do-rel.h:65)
==5103==    by 0x400454C: dl_main (rtld.c:2214)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400A9BD: _dl_relocate_object (do-rel.h:68)
==5103==    by 0x400454C: dl_main (rtld.c:2214)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400B053: _dl_relocate_object (do-rel.h:104)
==5103==    by 0x400454C: dl_main (rtld.c:2214)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400AAF3: _dl_relocate_object (do-rel.h:117)
==5103==    by 0x400454C: dl_main (rtld.c:2214)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400A9B5: _dl_relocate_object (do-rel.h:65)
==5103==    by 0x4004169: dl_main (rtld.c:2284)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400A9BD: _dl_relocate_object (do-rel.h:68)
==5103==    by 0x4004169: dl_main (rtld.c:2284)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x400AAF3: _dl_relocate_object (do-rel.h:117)
==5103==    by 0x4004169: dl_main (rtld.c:2284)
==5103==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==5103==    by 0x400124E: _dl_start (rtld.c:327)
==5103==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==5103== 
==5103== Source and destination overlap in mempcpy(0x6106890, 0x6106890, 21)
==5103==    at 0x4021E3A: (within /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x4022781: mempcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x58E51D2: _IO_default_xsputn (genops.c:463)
==5103==    by 0x58C021E: vfprintf (vfprintf.c:1568)
==5103==    by 0x58D9CBA: vsprintf (iovsprintf.c:43)
==5103==    by 0x58C5ADD: sprintf (sprintf.c:34)
==5103==    by 0x4970942: parse_fontdata (omGeneric.c:618)
==5103==    by 0x4970AE2: parse_vw (omGeneric.c:1095)
==5103==    by 0x4971301: create_oc (omGeneric.c:1233)
==5103==    by 0x4930C0A: XCreateOC (OCWrap.c:53)
==5103==    by 0x49270A9: XCreateFontSet (FSWrap.c:185)
==5103==    by 0x551969D: getFontSet(QFont const&) (qximinputcontext_x11.cpp:319)
==5103== 
==5103== Syscall param write(buf) points to uninitialised byte(s)
==5103==    at 0x4DBAFAB: (within /lib/libpthread-2.6.1.so)
==5103==    by 0x4946767: _X11TransWrite (Xtrans.c:900)
==5103==    by 0x4940066: _XFlushInt (XlibInt.c:675)
==5103==    by 0x494015E: _XReply (XlibInt.c:1708)
==5103==    by 0x4929D8E: _XGetWindowAttributes (GetWAttrs.c:116)
==5103==    by 0x4929EA3: XGetWindowAttributes (GetWAttrs.c:151)
==5103==    by 0x4968B13: _XimDefaultColormap (imRm.c:627)
==5103==    by 0x49680AE: _XimSetICDefaults (imRm.c:2713)
==5103==    by 0x496806E: _XimSetICDefaults (imRm.c:2693)
==5103==    by 0x495FA84: _XimLocalCreateIC (imLcIc.c:187)
==5103==    by 0x494CBB2: XCreateIC (ICWrap.c:253)
==5103==    by 0x55197E9: QXIMInputContext::createICData(QWidget*) (qximinputcontext_x11.cpp:712)
==5103==  Address 0x5D96A0B is 7,483 bytes inside a block of size 16,384 alloc'd
==5103==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x4931578: XOpenDisplay (OpenDis.c:289)
==5103==    by 0x5010318: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1530)
==5103==    by 0x4FB16B8: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:709)
==5103==    by 0x4FB2253: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:667)
==5103==    by 0x47135EE: KApplication::KApplication(bool) (kapplication.cpp:349)
==5103==    by 0x404966C: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==5103==    by 0x40CDCCC: kdemain (konqmain.cpp:67)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x4B68293: (within /lib/libz.so.1.2.3)
==5103== 
==5103== Conditional jump or move depends on uninitialised value(s)
==5103==    at 0x4B68212: (within /lib/libz.so.1.2.3)
==5103== 
==5103== Syscall param write(buf) points to uninitialised byte(s)
==5103==    at 0x4DBAFAB: (within /lib/libpthread-2.6.1.so)
==5103==    by 0x4946767: _X11TransWrite (Xtrans.c:900)
==5103==    by 0x4940066: _XFlushInt (XlibInt.c:675)
==5103==    by 0x4940B64: _XEventsQueued (XlibInt.c:743)
==5103==    by 0x4932ADB: XEventsQueued (Pending.c:44)
==5103==    by 0x5032D3B: QEventDispatcherX11::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_x11.cpp:72)
==5103==    by 0x4CFA190: QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:140)
==5103==    by 0x4CFA299: QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:186)
==5103==    by 0x4CFC625: QCoreApplication::exec() (qcoreapplication.cpp:759)
==5103==    by 0x4FA8486: QApplication::exec() (qapplication.cpp:3053)
==5103==    by 0x40CE39E: kdemain (konqmain.cpp:218)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103==  Address 0x5D94DD8 is 264 bytes inside a block of size 16,384 alloc'd
==5103==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x4931578: XOpenDisplay (OpenDis.c:289)
==5103==    by 0x5010318: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1530)
==5103==    by 0x4FB16B8: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:709)
==5103==    by 0x4FB2253: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:667)
==5103==    by 0x47135EE: KApplication::KApplication(bool) (kapplication.cpp:349)
==5103==    by 0x404966C: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==5103==    by 0x40CDCCC: kdemain (konqmain.cpp:67)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103== 
==5103== Syscall param write(buf) points to uninitialised byte(s)
==5103==    at 0x4DBAFAB: (within /lib/libpthread-2.6.1.so)
==5103==    by 0x4946767: _X11TransWrite (Xtrans.c:900)
==5103==    by 0x4940066: _XFlushInt (XlibInt.c:675)
==5103==    by 0x49348E0: PutSubImage (PutImage.c:860)
==5103==    by 0x49357A3: XPutImage (PutImage.c:1029)
==5103==    by 0x512663B: QX11PaintEngine::drawImage(QRectF const&, QImage const&, QRectF const&, QFlags<Qt::ImageConversionFlag>) (qpaintengine_x11.cpp:1584)
==5103==    by 0x509B96B: QPainter::drawImage(QRectF const&, QImage const&, QRectF const&, QFlags<Qt::ImageConversionFlag>) (qpainter.cpp:4441)
==5103==    by 0x9030DA5: QPainter::drawImage(QPoint const&, QImage const&) (qpainter.h:787)
==5103==    by 0x91CB6C0: khtmlImLoad::ImagePlane::updatePixmap(khtmlImLoad::PixmapTile*, QImage const&, unsigned, unsigned, unsigned, unsigned, unsigned char*) (imageplane.cpp:118)
==5103==    by 0x91CBBEB: khtmlImLoad::RawImagePlane::ensureUpToDate(unsigned, unsigned, khtmlImLoad::PixmapTile*) (rawimageplane.cpp:41)
==5103==    by 0x91CCB12: khtmlImLoad::PixmapPlane::paint(int, int, QPainter*, int, int, int, int) (pixmapplane.cpp:102)
==5103==    by 0x91CD14E: khtmlImLoad::ImagePainter::paint(int, int, QPainter*, int, int, int, int) (imagepainter.cpp:126)
==5103==  Address 0x5D977E1 is 11,025 bytes inside a block of size 16,384 alloc'd
==5103==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x4931578: XOpenDisplay (OpenDis.c:289)
==5103==    by 0x5010318: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1530)
==5103==    by 0x4FB16B8: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:709)
==5103==    by 0x4FB2253: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:667)
==5103==    by 0x47135EE: KApplication::KApplication(bool) (kapplication.cpp:349)
==5103==    by 0x404966C: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==5103==    by 0x40CDCCC: kdemain (konqmain.cpp:67)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103== 
==5103== Invalid read of size 4
==5103==    at 0x8FB49A9: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:63)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==    by 0x8FAEDE8: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:2023)
==5103==    by 0x8FF1494: DOM::HTMLLinkElementImpl::finished() (html_headimpl.cpp:258)
==5103==    by 0x8FF2049: DOM::HTMLLinkElementImpl::setStyleSheet(DOM::DOMString const&, DOM::DOMString const&, DOM::DOMString const&) (html_headimpl.cpp:249)
==5103==  Address 0x5F1AFEC is 4 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Invalid read of size 4
==5103==    at 0x8FB49B8: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:64)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==    by 0x8FAEDE8: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:2023)
==5103==    by 0x8FF1494: DOM::HTMLLinkElementImpl::finished() (html_headimpl.cpp:258)
==5103==    by 0x8FF2049: DOM::HTMLLinkElementImpl::setStyleSheet(DOM::DOMString const&, DOM::DOMString const&, DOM::DOMString const&) (html_headimpl.cpp:249)
==5103==  Address 0x5F1AFF0 is 8 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Invalid read of size 4
==5103==    at 0x8FB49BF: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==    by 0x8FAEDE8: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:2023)
==5103==    by 0x8FF1494: DOM::HTMLLinkElementImpl::finished() (html_headimpl.cpp:258)
==5103==    by 0x8FF2049: DOM::HTMLLinkElementImpl::setStyleSheet(DOM::DOMString const&, DOM::DOMString const&, DOM::DOMString const&) (html_headimpl.cpp:249)
==5103==  Address 0x5F1AFE8 is 0 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Invalid read of size 4
==5103==    at 0x90BD4DD: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==    by 0x8FAEDE8: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:2023)
==5103==    by 0x8FF1494: DOM::HTMLLinkElementImpl::finished() (html_headimpl.cpp:258)
==5103==  Address 0x5F1AFE8 is 0 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Invalid write of size 4
==5103==    at 0x90BD92E: khtml::TreeShared<DOM::StyleBaseImpl>::~TreeShared() (shared.h:57)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==    by 0x8FAEDE8: DOM::DocumentImpl::styleSheetLoaded() (dom_docimpl.cpp:2023)
==5103==  Address 0x5F1AFE8 is 0 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Invalid free() / delete / delete[]
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BD937: khtml::TreeShared<DOM::StyleBaseImpl>::~TreeShared() (shared.h:57)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103==  Address 0x5F1AFE8 is 0 bytes inside a block of size 28 free'd
==5103==    at 0x4020D3E: operator delete(void*) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x90BF6BF: DOM::CSSStyleRuleImpl::~CSSStyleRuleImpl() (css_ruleimpl.cpp:325)
==5103==    by 0x90BD4E4: khtml::TreeShared<DOM::StyleBaseImpl>::removedLastRef() (shared.h:59)
==5103==    by 0x8FB49C6: khtml::TreeShared<DOM::StyleBaseImpl>::deref() (shared.h:65)
==5103==    by 0x90D5133: khtml::CSSOrderedRule::~CSSOrderedRule() (cssstyleselector.cpp:1803)
==5103==    by 0x90E7405: void qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator>(QList<khtml::CSSOrderedRule*>::const_iterator, QList<khtml::CSSOrderedRule*>::const_iterator) (qalgorithms.h:343)
==5103==    by 0x90E7495: void qDeleteAll<khtml::CSSStyleSelectorList>(khtml::CSSStyleSelectorList const&) (qalgorithms.h:351)
==5103==    by 0x90DE9E2: khtml::CSSStyleSelectorList::~CSSStyleSelectorList() (cssstyleselector.cpp:1814)
==5103==    by 0x90E469D: khtml::CSSStyleSelector::~CSSStyleSelector() (cssstyleselector.cpp:318)
==5103==    by 0x8FA9745: DOM::DocumentImpl::rebuildStyleSelector() (dom_docimpl.cpp:2251)
==5103==    by 0x8FAE942: DOM::DocumentImpl::recalcStyleSelector() (dom_docimpl.cpp:2245)
==5103==    by 0x8FAEA6A: DOM::DocumentImpl::updateStyleSelector(bool) (dom_docimpl.cpp:2097)
==5103== 
==5103== Syscall param write(buf) points to uninitialised byte(s)
==5103==    at 0x4DBAFAB: (within /lib/libpthread-2.6.1.so)
==5103==    by 0x4946767: _X11TransWrite (Xtrans.c:900)
==5103==    by 0x4940066: _XFlushInt (XlibInt.c:675)
==5103==    by 0x4925202: XFlush (Flush.c:41)
==5103==    by 0x50241A3: QWidgetPrivate::hide_sys() (qwidget_x11.cpp:1831)
==5103==    by 0x4FF596F: QWidgetPrivate::hide_helper() (qwidget.cpp:5475)
==5103==    by 0x4FF9D82: QWidget::setVisible(bool) (qwidget.cpp:5641)
==5103==    by 0x4FF166D: QWidget::~QWidget() (qwidget.h:449)
==5103==    by 0x501E914: QDesktopWidget::~QDesktopWidget() (qdesktopwidget_x11.cpp:182)
==5103==    by 0x4FA952A: QApplication::~QApplication() (qapplication.cpp:904)
==5103==    by 0x471158C: KApplication::~KApplication() (kapplication.cpp:914)
==5103==    by 0x40CE402: kdemain (konqapplication.h:29)
==5103==  Address 0x5D96363 is 5,779 bytes inside a block of size 16,384 alloc'd
==5103==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x4931578: XOpenDisplay (OpenDis.c:289)
==5103==    by 0x5010318: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1530)
==5103==    by 0x4FB16B8: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:709)
==5103==    by 0x4FB2253: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:667)
==5103==    by 0x47135EE: KApplication::KApplication(bool) (kapplication.cpp:349)
==5103==    by 0x404966C: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==5103==    by 0x40CDCCC: kdemain (konqmain.cpp:67)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103== 
==5103== Syscall param write(buf) points to uninitialised byte(s)
==5103==    at 0x4DBAFAB: (within /lib/libpthread-2.6.1.so)
==5103==    by 0x48F84FF: _IceTransWrite (Xtrans.c:900)
==5103==    by 0x48FD04B: _IceWrite (misc.c:369)
==5103==    by 0x48FD106: IceFlush (misc.c:82)
==5103==    by 0x48EC0FE: SmcCloseConnection (sm_client.c:316)
==5103==    by 0x4FFF4A5: QSessionManager::~QSessionManager() (qapplication_x11.cpp:5101)
==5103==    by 0x4FA98A0: QApplication::~QApplication() (qapplication.cpp:969)
==5103==    by 0x471158C: KApplication::~KApplication() (kapplication.cpp:914)
==5103==    by 0x40CE402: kdemain (konqapplication.h:29)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103==  Address 0x5D011B4 is 12 bytes inside a block of size 1,024 alloc'd
==5103==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==5103==    by 0x48F6A94: IceOpenConnection (connect.c:211)
==5103==    by 0x48EC2DD: SmcOpenConnection (sm_client.c:135)
==5103==    by 0x5004874: QSessionManager::QSessionManager(QApplication*, QString&, QString&) (qapplication_x11.cpp:5084)
==5103==    by 0x4FB1625: QApplicationPrivate::initialize() (qapplication.cpp:816)
==5103==    by 0x4FB16C0: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:710)
==5103==    by 0x4FB2253: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:667)
==5103==    by 0x47135EE: KApplication::KApplication(bool) (kapplication.cpp:349)
==5103==    by 0x404966C: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==5103==    by 0x40CDCCC: kdemain (konqmain.cpp:67)
==5103==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==5103== 
==5103== ERROR SUMMARY: 106 errors from 21 contexts (suppressed: 26 from 3)
==5103== malloc/free: in use at exit: 461,965 bytes in 4,222 blocks.
==5103== malloc/free: 1,546,357 allocs, 1,542,144 frees, 223,303,535 bytes allocated.
==5103== For counts of detected errors, rerun with: -v
==5103== searching for pointers to 4,222 not-freed blocks.
==5103== checked 1,094,280 bytes.
==5103== 
==5103== LEAK SUMMARY:
==5103==    definitely lost: 213,516 bytes in 721 blocks.
==5103==      possibly lost: 2,520 bytes in 92 blocks.
==5103==    still reachable: 245,929 bytes in 3,409 blocks.
==5103==         suppressed: 0 bytes in 0 blocks.
==5103== Rerun with --leak-check=full to see details of leaked memory.
Comment 4 Linus Östberg 2008-04-21 10:21:55 UTC
Bug still present in 3.5.9 and trunk (r798735).

Backtrace for trunk:
Application: Konqueror (konqueror), signal SIGSEGV
Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread -1240877376 (LWP 7396)]
[KCrash handler]
#5  0x088751a3 in ?? ()
#6  0xb425e39d in khtml::TreeShared<DOM::StyleBaseImpl>::deref (this=0x89f2d58)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/misc/shared.h:65
#7  0xb43ba88e in ~CSSOrderedRule (this=0x8afac30)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/css/cssstyleselector.cpp:1850
#8  0xb43d19a5 in qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator> (
    begin=@0xbfd8cb40, end=@0xbfd8cb3c)
    at /home/kde-devel/kde/src/qt-copy/include/QtCore/../../src/corelib/tools/qalgorithms.h:352
#9  0xb43d1a2c in qDeleteAll<khtml::CSSStyleSelectorList> (c=@0x8a34648)
    at /home/kde-devel/kde/src/qt-copy/include/QtCore/../../src/corelib/tools/qalgorithms.h:360
#10 0xb43bb9be in ~CSSStyleSelectorList (this=0x8a34648)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/css/cssstyleselector.cpp:1861
#11 0xb43ce1e6 in ~CSSStyleSelector (this=0x8370bf0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/css/cssstyleselector.cpp:335
#12 0xb424f593 in DOM::DocumentImpl::rebuildStyleSelector (this=0x8aa4008)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:2310
#13 0xb4256b93 in DOM::DocumentImpl::recalcStyleSelector (this=0x8aa4008)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:2304
#14 0xb4256c3e in DOM::DocumentImpl::updateStyleSelector (this=0x8aa4008, 
    shallow=false)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:2151
#15 0xb425701a in DOM::DocumentImpl::styleSheetLoaded (this=0x8aa4008)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:2072
#16 0xb42ab6ba in DOM::HTMLLinkElementImpl::finished (this=0x8405710)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_headimpl.cpp:272
#17 0xb42ad853 in DOM::HTMLLinkElementImpl::setStyleSheet (this=0x8405710, 
    url=@0x89b7500, sheetStr=@0x89b753c, charset=@0xbfd8ce68, 
    mimetype=@0xbfd8ce60)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_headimpl.cpp:263
#18 0xb43e943f in khtml::CachedCSSStyleSheet::ref (this=0x89b74f8, c=0x8405710)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/misc/loader.cpp:268
#19 0xb42ae1ef in DOM::HTMLLinkElementImpl::process (this=0x8405710)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_headimpl.cpp:216
#20 0xb42ae5f5 in DOM::HTMLLinkElementImpl::parseAttribute (this=0x8405710, 
    attr=0xbfd8d050)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_headimpl.cpp:126
#21 0xb4278acb in DOM::ElementImpl::parseAttribute (this=0x8405714, attrId=72, 
    value=0x83922a8)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.h:205
#22 0xb4276881 in DOM::AttrImpl::childrenChanged (this=0x885b320)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:185
#23 0xb426cb3b in DOM::NodeImpl::dispatchSubtreeModifiedEvent (this=0x885b320)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_nodeimpl.cpp:653
#24 0xb426cfd9 in DOM::NodeBaseImpl::appendChild (this=0x885b320, 
    newChild=0x885b618, exceptioncode=@0xbfd8d198)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_nodeimpl.cpp:1479
#25 0xb4275e5e in DOM::AttrImpl::setValue (this=0x885b320, v=@0xbfd8d260, 
    exceptioncode=@0xbfd8d25c)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:215
#26 0xb4275fea in DOM::AttrImpl::setNodeValue (this=0x885b320, v=@0xbfd8d260, 
    exceptioncode=@0xbfd8d25c)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:222
#27 0xb440e55b in KJS::DOMNode::putValueProperty (this=0xb0d3d400, 
    exec=0xbfd8dd9c, token=1, value=0xb0d3d2c0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_dom.cpp:420
#28 0xb441738d in KJS::lookupPut<KJS::DOMNode> (exec=0xbfd8dd9c, 
    propertyName=@0x83942a4, value=0xb0d3d2c0, attr=0, table=0xb4614f90, 
    thisObj=0xb0d3d400) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/lookup.h:249
#29 0xb44173de in KJS::lookupPut<KJS::DOMNode, KJS::DOMObject> (
    exec=0xbfd8dd9c, propertyName=@0x83942a4, value=0xb0d3d2c0, attr=0, 
    table=0xb4614f90, thisObj=0xb0d3d400)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/lookup.h:265
#30 0xb440f3d7 in KJS::DOMNode::put (this=0xb0d3d400, exec=0xbfd8dd9c, 
    propertyName=@0x83942a4, value=0xb0d3d2c0, attr=0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_dom.cpp:410
#31 0xb44174f4 in KJS::lookupPut<KJS::DOMAttr, KJS::DOMNode> (exec=0xbfd8dd9c, 
    propertyName=@0x83942a4, value=0xb0d3d2c0, attr=0, table=0xb4614fb0, 
    thisObj=0xb0d3d400) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/lookup.h:266
#32 0xb440f719 in KJS::DOMAttr::put (this=0xb0d3d400, exec=0xbfd8dd9c, 
    propertyName=@0x83942a4, value=0xb0d3d2c0, attr=0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_dom.cpp:847
#33 0xb404b153 in KJS::AssignDotNode::evaluate (this=0x8394298, 
    exec=0xbfd8dd9c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:1830
#34 0xb4039b7d in KJS::ExprStatementNode::execute (this=0x8ad0108, 
    exec=0xbfd8dd9c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2168
#35 0xb4039038 in KJS::SourceElementsNode::execute (this=0x8405080, 
    exec=0xbfd8dd9c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2979
#36 0xb403597d in KJS::BlockNode::execute (this=0x8b036a8, exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#37 0xb403e3e4 in KJS::ForNode::execute (this=0x8b0ae08, exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2322
#38 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8312b78, 
    exec=0xbfd8dd9c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#39 0xb403597d in KJS::BlockNode::execute (this=0x8855110, exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#40 0xb403ef61 in KJS::IfNode::execute (this=0x8395fd8, exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2193
#41 0xb4039038 in KJS::SourceElementsNode::execute (this=0x867d158, 
    exec=0xbfd8dd9c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2979
#42 0xb403597d in KJS::BlockNode::execute (this=0x8b340d8, exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#43 0xb408ae5d in KJS::DeclaredFunctionImp::execute (this=0xb0d3f6a0, 
    exec=0xbfd8dd9c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:373
#44 0xb408c6dd in KJS::FunctionImp::callAsFunction (this=0xb0d3f6a0, 
    exec=0xbfd8e18c, thisObj=0xb0d40040, args=@0xbfd8de78)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:161
#45 0xb4094f42 in KJS::JSObject::call (this=0xb0d3f6a0, exec=0xbfd8e18c, 
    thisObj=0xb0d40040, args=@0xbfd8de78)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/object.cpp:99
#46 0xb403d38e in KJS::FunctionCallReferenceNode::evaluate (this=0x8afac48, 
    exec=0xbfd8e18c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:1038
#47 0xb4039b7d in KJS::ExprStatementNode::execute (this=0x8695358, 
    exec=0xbfd8e18c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2168
#48 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f00, 
    exec=0xbfd8e18c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#49 0xb403597d in KJS::BlockNode::execute (this=0x8688038, exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#50 0xb403e3e4 in KJS::ForNode::execute (this=0x8681138, exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2322
#51 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f20, 
    exec=0xbfd8e18c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#52 0xb403597d in KJS::BlockNode::execute (this=0x82c84a0, exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#53 0xb403ef61 in KJS::IfNode::execute (this=0x8aecff0, exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2193
#54 0xb4039038 in KJS::SourceElementsNode::execute (this=0x867d158, 
    exec=0xbfd8e18c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2979
#55 0xb403597d in KJS::BlockNode::execute (this=0x8b340d8, exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#56 0xb408ae5d in KJS::DeclaredFunctionImp::execute (this=0xb0d3f6a0, 
    exec=0xbfd8e18c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:373
#57 0xb408c6dd in KJS::FunctionImp::callAsFunction (this=0xb0d3f6a0, 
    exec=0xbfd8e57c, thisObj=0xb0d40040, args=@0xbfd8e268)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:161
#58 0xb4094f42 in KJS::JSObject::call (this=0xb0d3f6a0, exec=0xbfd8e57c, 
    thisObj=0xb0d40040, args=@0xbfd8e268)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/object.cpp:99
#59 0xb403d38e in KJS::FunctionCallReferenceNode::evaluate (this=0x8afac48, 
    exec=0xbfd8e57c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:1038
#60 0xb4039b7d in KJS::ExprStatementNode::execute (this=0x8695358, 
    exec=0xbfd8e57c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2168
#61 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f00, 
    exec=0xbfd8e57c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#62 0xb403597d in KJS::BlockNode::execute (this=0x8688038, exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#63 0xb403e3e4 in KJS::ForNode::execute (this=0x8681138, exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2322
#64 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f20, 
    exec=0xbfd8e57c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#65 0xb403597d in KJS::BlockNode::execute (this=0x82c84a0, exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#66 0xb403ef61 in KJS::IfNode::execute (this=0x8aecff0, exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2193
#67 0xb4039038 in KJS::SourceElementsNode::execute (this=0x867d158, 
    exec=0xbfd8e57c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2979
#68 0xb403597d in KJS::BlockNode::execute (this=0x8b340d8, exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#69 0xb408ae5d in KJS::DeclaredFunctionImp::execute (this=0xb0d3f6a0, 
    exec=0xbfd8e57c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:373
#70 0xb408c6dd in KJS::FunctionImp::callAsFunction (this=0xb0d3f6a0, 
    exec=0xbfd8e96c, thisObj=0xb0d40040, args=@0xbfd8e658)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:161
#71 0xb4094f42 in KJS::JSObject::call (this=0xb0d3f6a0, exec=0xbfd8e96c, 
    thisObj=0xb0d40040, args=@0xbfd8e658)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/object.cpp:99
#72 0xb403d38e in KJS::FunctionCallReferenceNode::evaluate (this=0x8afac48, 
    exec=0xbfd8e96c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:1038
#73 0xb4039b7d in KJS::ExprStatementNode::execute (this=0x8695358, 
    exec=0xbfd8e96c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2168
#74 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f00, 
    exec=0xbfd8e96c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#75 0xb403597d in KJS::BlockNode::execute (this=0x8688038, exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#76 0xb403e3e4 in KJS::ForNode::execute (this=0x8681138, exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2322
#77 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8910f20, 
    exec=0xbfd8e96c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#78 0xb403597d in KJS::BlockNode::execute (this=0x82c84a0, exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#79 0xb403ef61 in KJS::IfNode::execute (this=0x8aecff0, exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2193
#80 0xb4039038 in KJS::SourceElementsNode::execute (this=0x867d158, 
    exec=0xbfd8e96c) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2979
#81 0xb403597d in KJS::BlockNode::execute (this=0x8b340d8, exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#82 0xb408ae5d in KJS::DeclaredFunctionImp::execute (this=0xb0d3f6a0, 
    exec=0xbfd8e96c)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:373
#83 0xb408c6dd in KJS::FunctionImp::callAsFunction (this=0xb0d3f6a0, 
    exec=0xbfd8ebbc, thisObj=0xb0d40040, args=@0xbfd8ea48)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:161
#84 0xb4094f42 in KJS::JSObject::call (this=0xb0d3f6a0, exec=0xbfd8ebbc, 
    thisObj=0xb0d40040, args=@0xbfd8ea48)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/object.cpp:99
#85 0xb403d38e in KJS::FunctionCallReferenceNode::evaluate (this=0x85a3f70, 
    exec=0xbfd8ebbc) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:1038
#86 0xb4039b7d in KJS::ExprStatementNode::execute (this=0x868cfe8, 
    exec=0xbfd8ebbc) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2168
#87 0xb4038f10 in KJS::SourceElementsNode::execute (this=0x8a211a0, 
    exec=0xbfd8ebbc) at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2973
#88 0xb403597d in KJS::BlockNode::execute (this=0x835a860, exec=0xbfd8ebbc)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/nodes.cpp:2145
#89 0xb408ae5d in KJS::DeclaredFunctionImp::execute (this=0xb0d3f6e0, 
    exec=0xbfd8ebbc)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:373
#90 0xb408c6dd in KJS::FunctionImp::callAsFunction (this=0xb0d3f6e0, 
    exec=0x8ae3114, thisObj=0xb0d40040, args=@0xbfd8ec90)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/function.cpp:161
#91 0xb4094f42 in KJS::JSObject::call (this=0xb0d3f6e0, exec=0x8ae3114, 
    thisObj=0xb0d40040, args=@0xbfd8ec90)
    at /home/kde-devel/kde/src/KDE/kdelibs/kjs/object.cpp:99
#92 0xb447afe3 in KJS::JSEventListener::handleEvent (this=0x847b680, 
    evt=@0xbfd8ece8)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_events.cpp:106
#93 0xb424db70 in DOM::DocumentImpl::defaultEventHandler (this=0x8aa4008, 
    evt=0x85580a0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:2651
#94 0xb426dfbd in DOM::NodeImpl::dispatchWindowEvent (this=0x8aa4014, _id=17, 
    canBubbleArg=false, cancelableArg=false)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_nodeimpl.cpp:534
#95 0xb42b92d3 in DOM::HTMLDocumentImpl::close (this=0x8aa4008)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_documentimpl.cpp:262
#96 0xb41f71e0 in KHTMLPart::checkEmitLoadEvent (this=0x888e308)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:2312
#97 0xb41f757f in KHTMLPart::checkCompleted (this=0x888e308)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:2233
#98 0xb41fa55d in KHTMLPart::slotLoaderRequestDone (this=0x888e308, 
    dl=0x88f49e8, obj=0x8347e30)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:2087
#99 0xb4207db4 in KHTMLPart::qt_metacall (this=0x888e308, 
    _c=QMetaObject::InvokeMetaMethod, _id=69, _a=0xbfd8f008)
    at /home/kde-devel/kde/build/KDE/kdelibs/khtml/khtml_part.moc:314
#100 0xb71902a1 in QMetaObject::activate (sender=0x8310070, 
    from_signal_index=<value optimized out>, to_signal_index=5, 
    argv=<value optimized out>) at kernel/qobject.cpp:3004
#101 0xb7190932 in QMetaObject::activate (sender=0x8310070, m=0xb4630a38, 
    local_signal_index=1, argv=0xbfd8f008) at kernel/qobject.cpp:3074
#102 0xb43e75cb in khtml::Loader::requestDone (this=0x8310070, _t1=0x88f49e8, 
    _t2=0x8347e30)
    at /home/kde-devel/kde/build/KDE/kdelibs/khtml/loader.moc:150
#103 0xb43eb8f1 in khtml::Loader::slotFinished (this=0x8310070, job=0x89f5250)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/misc/loader.cpp:1396
#104 0xb43ebc37 in khtml::Loader::qt_metacall (this=0x8310070, 
    _c=QMetaObject::InvokeMetaMethod, _id=3, _a=0xbfd8f15c)
    at /home/kde-devel/kde/build/KDE/kdelibs/khtml/loader.moc:129
#105 0xb71902a1 in QMetaObject::activate (sender=0x89f5250, 
    from_signal_index=<value optimized out>, to_signal_index=7, 
    argv=<value optimized out>) at kernel/qobject.cpp:3004
#106 0xb7190932 in QMetaObject::activate (sender=0x89f5250, m=0xb7b811e8, 
    local_signal_index=3, argv=0xbfd8f15c) at kernel/qobject.cpp:3074
#107 0xb7a6cd16 in KJob::result (this=0x89f5250, _t1=0x89f5250)
    at /home/kde-devel/kde/build/KDE/kdelibs/kdecore/kjob.moc:186
#108 0xb7a6d296 in KJob::emitResult (this=0x89f5250)
    at /home/kde-devel/kde/src/KDE/kdelibs/kdecore/jobs/kjob.cpp:290
#109 0xb7c38d8b in KIO::SimpleJob::slotFinished (this=0x89f5250)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/job.cpp:491
#110 0xb7c39164 in KIO::TransferJob::slotFinished (this=0x89f5250)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/job.cpp:961
#111 0xb7c400d5 in KIO::TransferJob::qt_metacall (this=0x89f5250, 
    _c=QMetaObject::InvokeMetaMethod, _id=7, _a=0xbfd8f358)
    at /home/kde-devel/kde/build/KDE/kdelibs/kio/jobclasses.moc:336
#112 0xb71902a1 in QMetaObject::activate (sender=0x86822d0, 
    from_signal_index=<value optimized out>, to_signal_index=8, 
    argv=<value optimized out>) at kernel/qobject.cpp:3004
#113 0xb7190932 in QMetaObject::activate (sender=0x86822d0, m=0xb7dad424, 
    local_signal_index=4, argv=0x0) at kernel/qobject.cpp:3074
#114 0xb7ce3e85 in KIO::SlaveInterface::finished (this=0x86822d0)
    at /home/kde-devel/kde/build/KDE/kdelibs/kio/slaveinterface.moc:160
#115 0xb7ce5bc1 in KIO::SlaveInterface::dispatch (this=0x86822d0, _cmd=104, 
    rawdata=@0xbfd8f4d4)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/slaveinterface.cpp:175
#116 0xb7ce664b in KIO::SlaveInterface::dispatch (this=0x86822d0)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/slaveinterface.cpp:90
#117 0xb7cd8f76 in KIO::Slave::gotInput (this=0x86822d0)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/slave.cpp:319
#118 0xb7cda38a in KIO::Slave::qt_metacall (this=0x86822d0, 
    _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbfd8f5c8)
    at /home/kde-devel/kde/build/KDE/kdelibs/kio/slave.moc:75
#119 0xb71902a1 in QMetaObject::activate (sender=0x833d0f0, 
    from_signal_index=<value optimized out>, to_signal_index=4, 
    argv=<value optimized out>) at kernel/qobject.cpp:3004
#120 0xb7190932 in QMetaObject::activate (sender=0x833d0f0, m=0xb7daa2a0, 
    local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3074
#121 0xb7c0ead7 in KIO::Connection::readyRead (this=0x833d0f0)
    at /home/kde-devel/kde/build/KDE/kdelibs/kio/connection.moc:83
#122 0xb7c0facb in KIO::ConnectionPrivate::dequeue (this=0x8682098)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/connection.cpp:82
#123 0xb7c109f9 in KIO::Connection::qt_metacall (this=0x833d0f0, 
    _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x873bf48)
    at /home/kde-devel/kde/build/KDE/kdelibs/kio/connection.moc:71
#124 0xb7189bab in QMetaCallEvent::placeMetaCall (this=0x8793700, 
    object=0x833d0f0) at kernel/qobject.cpp:535
#125 0xb718ad31 in QObject::event (this=0x833d0f0, e=0x8793700)
    at kernel/qobject.cpp:1140
#126 0xb67a1ecf in QApplicationPrivate::notify_helper (this=0x805d210, 
    receiver=0x833d0f0, e=0x8793700) at kernel/qapplication.cpp:3735
#127 0xb67a6b49 in QApplication::notify (this=0xbfd8fe4c, receiver=0x833d0f0, 
    e=0x8793700) at kernel/qapplication.cpp:3329
#128 0xb7816001 in KApplication::notify (this=0xbfd8fe4c, receiver=0x833d0f0, 
    event=0x8793700)
    at /home/kde-devel/kde/src/KDE/kdelibs/kdeui/kernel/kapplication.cpp:311
#129 0xb717b489 in QCoreApplication::notifyInternal (this=0xbfd8fe4c, 
    receiver=0x833d0f0, event=0x8793700) at kernel/qcoreapplication.cpp:586
#130 0xb717c71e in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, 
    event_type=0, data=0x804b0e0)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#131 0xb717c9cd in QCoreApplication::sendPostedEvents (receiver=0x0, 
    event_type=0) at kernel/qcoreapplication.cpp:1084
#132 0xb71a5e9f in postEventSourceDispatch (s=0x805f4e0)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:220
#133 0xb624411c in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#134 0xb624755f in ?? () from /usr/lib/libglib-2.0.so.0
#135 0x0805f458 in ?? ()
#136 0x00000000 in ?? ()
#0  0xffffe410 in __kernel_vsyscall ()
Comment 5 Christophe Marin 2008-06-19 23:59:52 UTC
*** Bug 164484 has been marked as a duplicate of this bug. ***
Comment 6 Elias Probst 2008-06-27 01:42:04 UTC
Still happens in trunk (r824808). The page is visible for the wink of an eye, then Konqueror crashes:

Application: Konqueror (konqueror), signal SIGSEGV
Using host libthread_db library "/lib/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread 0xb60e86d0 (LWP 8667)]
[KCrash handler]
#6  0x0810bebb in ?? ()
#7  0x0008431a in ?? ()
#8  0xb421bd47 in khtml::TreeShared<DOM::StyleBaseImpl>::deref (
    this=0x85f9148)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/misc/shared.h:65
#9  0xb433adce in ~CSSOrderedRule (this=0x8074378)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/css/cssstyleselector.cpp:1866
#10 0xb434d07c in qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator> (
    begin=@0xbfebf468, end=@0xbfebf464)
    at /usr/include/qt4/QtCore/qalgorithms.h:352
#11 0xb434d0ef in qDeleteAll<khtml::CSSStyleSelectorList> (c=@0x84d8a28)
    at /usr/include/qt4/QtCore/qalgorithms.h:360
#12 0xb433bbe7 in ~CSSStyleSelectorList (this=0x84d8a28)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/css/cssstyleselector.cpp:1877
#13 0xb434a490 in ~CSSStyleSelector (this=0x8546648)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/css/cssstyleselector.cpp:338
#14 0xb4210c23 in DOM::DocumentImpl::rebuildStyleSelector (this=0x84f46f0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_docimpl.cpp:2348
#15 0xb421220d in DOM::DocumentImpl::recalcStyleSelector (this=0x84f46f0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_docimpl.cpp:2342
#16 0xb421232a in DOM::DocumentImpl::updateStyleSelector (this=0x84f46f0, 
    shallow=208)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_docimpl.cpp:2189
#17 0xb4212648 in DOM::DocumentImpl::styleSheetLoaded (this=0x85f9148)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_docimpl.cpp:2110
#18 0xb42644e1 in DOM::HTMLLinkElementImpl::finished (this=0x855efc8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/html/html_headimpl.cpp:272
#19 0xb4265d61 in DOM::HTMLLinkElementImpl::setStyleSheet (this=0x855efc8, 
    url=@0x8569f60, sheetStr=@0x8569f9c, charset=@0xbfebf704, 
    mimetype=@0xbfebf6fc)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/html/html_headimpl.cpp:263
#20 0xb435dbd9 in khtml::CachedCSSStyleSheet::ref (this=0x8569f58, 
    c=0x855efc8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/misc/loader.cpp:267
#21 0xb42664db in DOM::HTMLLinkElementImpl::process (this=0x855efc8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/html/html_headimpl.cpp:216
#22 0xb42668ec in DOM::HTMLLinkElementImpl::parseAttribute (this=0x855efc8, 
    attr=0xbfebf904)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/html/html_headimpl.cpp:134
#23 0xb42326ee in DOM::ElementImpl::parseAttribute (this=0x855efcc, 
    attrId=79, value=0x855f2b0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_elementimpl.h:209
#24 0xb4230a71 in DOM::AttrImpl::childrenChanged (this=0x866ea90)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_elementimpl.cpp:186
#25 0xb4228117 in DOM::NodeImpl::dispatchSubtreeModifiedEvent (this=0x866ea90)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_nodeimpl.cpp:681
#26 0xb4228474 in DOM::NodeBaseImpl::appendChild (this=0x866ea90, 
    newChild=0x866cc48, exceptioncode=@0xbfebfa28)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_nodeimpl.cpp:1643
#27 0xb42302ac in DOM::AttrImpl::setValue (this=0x866ea90, v=@0xbfebfa98, 
    exceptioncode=@0xbfebfa94)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_elementimpl.cpp:216
#28 0xb42303f7 in DOM::AttrImpl::setNodeValue (this=0x866ea90, v=@0xbfebfa98, 
    exceptioncode=@0xbfebfa94)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_elementimpl.cpp:223
#29 0xb439162e in KJS::DOMNode::putValueProperty (this=0xb27a32e0, 
    exec=0xbfebfe80, token=-1075053904, value=0xb27a33e0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/ecma/kjs_dom.cpp:425
#30 0xb43980f4 in KJS::lookupPut<KJS::DOMNode> (exec=0xbfebfe80, 
    propertyName=@0x861f8e4, value=0xb27a33e0, attr=0, table=0xb4556690, 
    thisObj=0xb27a32e0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/lookup.h:249
#31 0xb4398148 in KJS::lookupPut<KJS::DOMNode, KJS::DOMObject> (
    exec=0xbfebfe80, propertyName=@0x861f8e4, value=0xb27a33e0, attr=0, 
    table=0xb4556690, thisObj=0xb27a32e0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/lookup.h:265
#32 0xb4391c47 in KJS::DOMNode::put (this=0xb27a32e0, exec=0xbfebfe80, 
    propertyName=@0x861f8e4, value=0xb27a33e0, attr=0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/ecma/kjs_dom.cpp:415
#33 0xb4398250 in KJS::lookupPut<KJS::DOMAttr, KJS::DOMNode> (
    exec=0xbfebfe80, propertyName=@0x861f8e4, value=0xb27a33e0, attr=0, 
    table=0xb45566b0, thisObj=0xb27a32e0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/lookup.h:266
#34 0xb4391cdb in KJS::DOMAttr::put (this=0xb27a32e0, exec=0xbfebfe80, 
    propertyName=@0x861f8e4, value=0xb27a33e0, attr=0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/ecma/kjs_dom.cpp:852
#35 0xb46b3a74 in KJS::Machine::runBlock (exec=0xbfebfe80, 
    codeBlock=@0x865b96c, parentExec=0xbfec0260) at codes.def:667
#36 0xb4697aab in KJS::FunctionImp::callAsFunction (this=0xb27a0bc0, 
    exec=0xbfec0260, thisObj=0xb27b0000, args=@0xbfec0168)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/function.cpp:143
#37 0xb469b6a4 in KJS::JSObject::call (this=0xb27a0bc0, exec=0xbfec0260, 
    thisObj=0xb27b0000, args=@0xbfec0168)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/object.cpp:99
#38 0xb46b874e in KJS::Machine::runBlock (exec=0xbfec0260, 
    codeBlock=@0x865b96c, parentExec=0xbfec0640) at codes.def:1206
#39 0xb4697aab in KJS::FunctionImp::callAsFunction (this=0xb27a0bc0, 
    exec=0xbfec0640, thisObj=0xb27b0000, args=@0xbfec0548)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/function.cpp:143
#40 0xb469b6a4 in KJS::JSObject::call (this=0xb27a0bc0, exec=0xbfec0640, 
    thisObj=0xb27b0000, args=@0xbfec0548)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/object.cpp:99
#41 0xb46b874e in KJS::Machine::runBlock (exec=0xbfec0640, 
    codeBlock=@0x865b96c, parentExec=0xbfec0a20) at codes.def:1206
#42 0xb4697aab in KJS::FunctionImp::callAsFunction (this=0xb27a0bc0, 
    exec=0xbfec0a20, thisObj=0xb27b0000, args=@0xbfec0928)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/function.cpp:143
#43 0xb469b6a4 in KJS::JSObject::call (this=0xb27a0bc0, exec=0xbfec0a20, 
    thisObj=0xb27b0000, args=@0xbfec0928)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/object.cpp:99
#44 0xb46b874e in KJS::Machine::runBlock (exec=0xbfec0a20, 
    codeBlock=@0x865b96c, parentExec=0xbfec0e00) at codes.def:1206
#45 0xb4697aab in KJS::FunctionImp::callAsFunction (this=0xb27a0bc0, 
    exec=0xbfec0e00, thisObj=0xb27b0000, args=@0xbfec0d08)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/function.cpp:143
#46 0xb469b6a4 in KJS::JSObject::call (this=0xb27a0bc0, exec=0xbfec0e00, 
    thisObj=0xb27b0000, args=@0xbfec0d08)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/object.cpp:99
#47 0xb46b874e in KJS::Machine::runBlock (exec=0xbfec0e00, 
    codeBlock=@0x8661a34, parentExec=0x8669388) at codes.def:1206
#48 0xb4697aab in KJS::FunctionImp::callAsFunction (this=0xb27a0b80, 
    exec=0x8669388, thisObj=0xb27b0000, args=@0xbfec0f48)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/function.cpp:143
#49 0xb469b6a4 in KJS::JSObject::call (this=0xb27a0b80, exec=0x8669388, 
    thisObj=0xb27b0000, args=@0xbfec0f48)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kjs/object.cpp:99
#50 0xb43e003c in KJS::JSEventListener::handleEvent (this=0x85bdc50, 
    evt=@0xbfec0f80)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/ecma/kjs_events.cpp:106
#51 0xb420f7ed in DOM::DocumentImpl::defaultEventHandler (this=0x84f46f0, 
    evt=0x84c23c0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_docimpl.cpp:2689
#52 0xb422913b in DOM::NodeImpl::dispatchWindowEvent (this=0x84f46fc, _id=16, 
    canBubbleArg=252, cancelableArg=240)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/xml/dom_nodeimpl.cpp:565
#53 0xb426def0 in DOM::HTMLDocumentImpl::close (this=0x84f46f0)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/html/html_documentimpl.cpp:249
#54 0xb41cc3fd in KHTMLPart::checkEmitLoadEvent (this=0x8427a50)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/khtml_part.cpp:2323
#55 0xb41cc707 in KHTMLPart::checkCompleted (this=0x8427a50)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/khtml_part.cpp:2244
#56 0xb41ced85 in KHTMLPart::slotLoaderRequestDone (this=0x8427a50, 
    dl=0x855f358, obj=0x87121d8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/khtml_part.cpp:2098
#57 0xb41d9087 in KHTMLPart::qt_metacall (this=0x8427a50, 
    _c=QMetaObject::InvokeMetaMethod, _id=69, _a=0xbfec122c)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/khtml/khtml_part.moc:314
#58 0xb73453bf in QMetaObject::activate (sender=0x83b0810, 
    from_signal_index=<value optimized out>, to_signal_index=5, 
    argv=<value optimized out>) at kernel/qobject.cpp:3001
#59 0xb7345b32 in QMetaObject::activate (sender=0x83b0810, m=0xb4574178, 
    local_signal_index=1, argv=0xbfec122c) at kernel/qobject.cpp:3071
#60 0xb435c4db in khtml::Loader::requestDone (this=0x83b0810, _t1=0x855f358, 
    _t2=0x87121d8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/khtml/loader.moc:150
#61 0xb435fa33 in khtml::Loader::slotFinished (this=0x83b0810, job=0x863b9f8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/khtml/misc/loader.cpp:1398
#62 0xb435fcec in khtml::Loader::qt_metacall (this=0x83b0810, 
    _c=QMetaObject::InvokeMetaMethod, _id=3, _a=0xbfec1390)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/khtml/loader.moc:129
#63 0xb73453bf in QMetaObject::activate (sender=0x863b9f8, 
    from_signal_index=<value optimized out>, to_signal_index=7, 
    argv=<value optimized out>) at kernel/qobject.cpp:3001
#64 0xb7345b32 in QMetaObject::activate (sender=0x863b9f8, m=0xb7c6a2e8, 
    local_signal_index=3, argv=0xbfec1390) at kernel/qobject.cpp:3071
#65 0xb7b7a017 in KJob::result (this=0x863b9f8, _t1=0x863b9f8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kdecore/kjob.moc:186
#66 0xb7b7a498 in KJob::emitResult (this=0x863b9f8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kdecore/jobs/kjob.cpp:290
#67 0xb7d27393 in KIO::SimpleJob::slotFinished (this=0x863b9f8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/job.cpp:496
#68 0xb7d2771a in KIO::TransferJob::slotFinished (this=0x863b9f8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/job.cpp:966
#69 0xb7d2dd34 in KIO::TransferJob::qt_metacall (this=0x863b9f8, 
    _c=QMetaObject::InvokeMetaMethod, _id=7, _a=0xbfec15d8)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kio/jobclasses.moc:336
#70 0xb73453bf in QMetaObject::activate (sender=0x865f140, 
    from_signal_index=<value optimized out>, to_signal_index=8, 
    argv=<value optimized out>) at kernel/qobject.cpp:3001
#71 0xb7345b32 in QMetaObject::activate (sender=0x865f140, m=0xb7e83f44, 
    local_signal_index=4, argv=0x0) at kernel/qobject.cpp:3071
#72 0xb7dc322d in KIO::SlaveInterface::finished (this=0x865f140)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kio/slaveinterface.moc:161
#73 0xb7dc4da8 in KIO::SlaveInterface::dispatch (this=0x865f140, _cmd=104, 
    rawdata=@0xbfec1764)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/slaveinterface.cpp:175
#74 0xb7dc5828 in KIO::SlaveInterface::dispatch (this=0x865f140)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/slaveinterface.cpp:90
#75 0xb7db8d71 in KIO::Slave::gotInput (this=0x865f140)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/slave.cpp:319
#76 0xb7dba05d in KIO::Slave::qt_metacall (this=0x865f140, 
    _c=QMetaObject::InvokeMetaMethod, _id=140629712, _a=0xbfec1868)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kio/slave.moc:75
#77 0xb73453bf in QMetaObject::activate (sender=0x865e798, 
    from_signal_index=<value optimized out>, to_signal_index=4, 
    argv=<value optimized out>) at kernel/qobject.cpp:3001
#78 0xb7345b32 in QMetaObject::activate (sender=0x865e798, m=0xb7e80ba0, 
    local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3071
#79 0xb7cfc9c3 in KIO::Connection::readyRead (this=0x865e798)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kio/connection.moc:84
#80 0xb7cfd5ef in KIO::ConnectionPrivate::dequeue (this=0x865ed48)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kio/kio/connection.cpp:82
#81 0xb7cfe4cd in KIO::Connection::qt_metacall (this=0x865e798, 
    _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x874ff68)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs_build/kio/connection.moc:72
#82 0xb733f0a9 in QMetaCallEvent::placeMetaCall (this=0x87ec630, 
    object=0x865e798) at kernel/qobject.cpp:535
#83 0xb7341169 in QObject::event (this=0x865e798, e=0x87ec630)
    at kernel/qobject.cpp:1131
#84 0xb693439c in QApplicationPrivate::notify_helper (this=0x805a2e0, 
    receiver=0x865e798, e=0x87ec630) at kernel/qapplication.cpp:3772
#85 0xb693857e in QApplication::notify (this=0xbfec2188, receiver=0x865e798, 
    e=0x87ec630) at kernel/qapplication.cpp:3366
#86 0xb7954786 in KApplication::notify (this=0xbfec2188, receiver=0x865e798, 
    event=0x87ec630)
    at /var/tmp/paludis/kde-base-kdelibs-scm/work/kdelibs-scm/kdeui/kernel/kapplication.cpp:311
#87 0xb732fc75 in QCoreApplication::notifyInternal (this=0xbfec2188, 
    receiver=0x865e798, event=0x87ec630) at kernel/qcoreapplication.cpp:587
#88 0xb7330ef7 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, 
    event_type=0, data=0x804c310) at kernel/qcoreapplication.h:215
#89 0xb7331215 in QCoreApplication::sendPostedEvents (receiver=0x0, 
    event_type=0) at kernel/qcoreapplication.cpp:1091
#90 0xb735cb7d in postEventSourceDispatch (s=0x805c198)
    at kernel/qcoreapplication.h:220
#91 0xb6198270 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#0  0xffffe410 in __kernel_vsyscall ()

Comment 7 Elias Probst 2008-06-27 01:43:51 UTC
*** Bug 159344 has been marked as a duplicate of this bug. ***
Comment 8 Oliver Putz 2008-07-06 19:31:32 UTC
Still valid with Version 4.00.84 (KDE 4.0.84 (KDE 4.1 >= 20080625)
Comment 9 Frank Reininghaus 2008-08-29 00:40:17 UTC
Created attachment 27118 [details]
First part of a test case (CSS style sheet)
Comment 10 Frank Reininghaus 2008-08-29 00:44:09 UTC
Created attachment 27119 [details]
Second part of the test case - HTML page

This reduced test case still crashes today's SVN trunk for me. I was unable to put it all into one file - including the CSS in the HTML page made the crash go away.
Comment 11 Frank Reininghaus 2008-08-29 00:47:37 UTC
I'm CC'ing Maksim - I hope the test case is good enough for him to fix it ;-)
Comment 12 Tommi Tervo 2008-10-02 11:39:00 UTC
*** Bug 171863 has been marked as a duplicate of this bug. ***
Comment 13 Ysangkok 2008-10-04 16:08:02 UTC
I am also getting this crash with KDE 4.1.2. Backtrace:

Program: Konqueror (konqueror), signal SIGSEGV
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread 0xb60c7940 (LWP 22015)]
[KCrash handler]
#6  0x086554ba in ?? ()
#7  0xb426aad6 in qDeleteAll<QList<khtml::CSSOrderedRule*>::const_iterator> (
    begin=@0xbfdecf1c, end=@0xbfdecf18)
    at /usr/include/qt4/QtCore/qalgorithms.h:352
#8  0xb426ab58 in qDeleteAll<khtml::CSSStyleSelectorList> (c=@0x8391290)
    at /usr/include/qt4/QtCore/qalgorithms.h:360
#9  0xb42590f0 in ~CSSStyleSelectorList (this=0x8391290)
    at /build/buildd/kde4libs-4.1.2/khtml/css/cssstyleselector.cpp:1887
#10 0xb4267d0e in ~CSSStyleSelector (this=0x8471c90)
    at /build/buildd/kde4libs-4.1.2/khtml/css/cssstyleselector.cpp:347
#11 0xb411d0c6 in DOM::DocumentImpl::rebuildStyleSelector (this=0x85f0c00)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_docimpl.cpp:2353
#12 0xb411dfdf in DOM::DocumentImpl::recalcStyleSelector (this=0x85f0c00)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_docimpl.cpp:2347
#13 0xb411e8cc in DOM::DocumentImpl::updateStyleSelector (this=0x85f0c00, 
    shallow=184)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_docimpl.cpp:2194
#14 0xb411ec22 in DOM::DocumentImpl::styleSheetLoaded (this=0x85b30d0)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_docimpl.cpp:2115
#15 0xb4176daf in DOM::HTMLLinkElementImpl::finished (this=0x853cef8)
    at /build/buildd/kde4libs-4.1.2/khtml/html/html_headimpl.cpp:272
#16 0xb4178772 in DOM::HTMLLinkElementImpl::setStyleSheet (this=0x853cef8, 
    url=@0x8902a88, sheetStr=@0x8902ac4, charset=@0xbfded214, 
    mimetype=@0xbfded20c)
    at /build/buildd/kde4libs-4.1.2/khtml/html/html_headimpl.cpp:263
#17 0xb427bfec in khtml::CachedCSSStyleSheet::ref (this=0x8902a80, 
    c=0x853cef8) at /build/buildd/kde4libs-4.1.2/khtml/misc/loader.cpp:267
#18 0xb4178e07 in DOM::HTMLLinkElementImpl::process (this=0x853cef8)
    at /build/buildd/kde4libs-4.1.2/khtml/html/html_headimpl.cpp:216
#19 0xb417926b in DOM::HTMLLinkElementImpl::parseAttribute (this=0x853cef8, 
    attr=0xbfded420)
    at /build/buildd/kde4libs-4.1.2/khtml/html/html_headimpl.cpp:134
#20 0xb4141198 in DOM::ElementImpl::parseAttribute (this=0x853cefc, 
    fullAttr=0x8aa5120)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_elementimpl.h:226
#21 0xb413f436 in DOM::AttrImpl::childrenChanged (this=0x8aa5120)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_elementimpl.cpp:192
#22 0xb41358d2 in DOM::NodeImpl::dispatchSubtreeModifiedEvent (this=0x8aa5120)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_nodeimpl.cpp:682
#23 0xb4135c28 in DOM::NodeBaseImpl::appendChild (this=0x8aa5120, 
    newChild=0x855c300, exceptioncode=@0xbfded548)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_nodeimpl.cpp:1649
#24 0xb413eb98 in DOM::AttrImpl::setValue (this=0x8aa5120, v=@0xbfded5c0, 
    exceptioncode=@0xbfded5cc)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_elementimpl.cpp:222
#25 0xb42b32dc in KJS::DOMNode::putValueProperty (this=0xb29430e0, 
    exec=0xbfdedadc, token=1, value=0xb29431e0)
    at /build/buildd/kde4libs-4.1.2/khtml/ecma/kjs_dom.cpp:428
#26 0xb42ba14e in KJS::lookupPut<KJS::DOMNode> (exec=0xbfdedadc, 
    propertyName=@0x848ae44, value=0xb29431e0, attr=0, table=0xb44a85d0, 
    thisObj=0xb29430e0) at /build/buildd/kde4libs-4.1.2/kjs/lookup.h:249
#27 0xb42ba1e8 in KJS::lookupPut<KJS::DOMNode, KJS::DOMObject> (
    exec=0xbfdedadc, propertyName=@0x848ae44, value=0xb29431e0, attr=0, 
    table=0xb44a85d0, thisObj=0xb29430e0)
    at /build/buildd/kde4libs-4.1.2/kjs/lookup.h:265
#28 0xb42b34e3 in KJS::DOMNode::put (this=0xb29430e0, exec=0xbfdedadc, 
    propertyName=@0x848ae44, value=0xb29431e0, attr=0)
    at /build/buildd/kde4libs-4.1.2/khtml/ecma/kjs_dom.cpp:418
#29 0xb42b3583 in KJS::DOMAttr::put (this=0xb29430e0, exec=0xbfdedadc, 
    propertyName=@0x848ae44, value=0xb29431e0, attr=0)
    at /build/buildd/kde4libs-4.1.2/khtml/ecma/kjs_dom.cpp:860
#30 0xb3f7530a in KJS::Machine::runBlock (exec=0xbfdedadc, 
    codeBlock=@0x86317d4, parentExec=0xbfdee00c) at codes.def:667
#31 0xb3f5778d in KJS::FunctionImp::callAsFunction (this=0xb2940bc0, 
    exec=0xbfdee00c, thisObj=0xb2950000, args=@0xbfdedfa0)
    at /build/buildd/kde4libs-4.1.2/kjs/function.cpp:143
#32 0xb3f5b9f5 in KJS::JSObject::call (this=0xb2940bc0, exec=0xbfdee00c, 
    thisObj=0xb2950000, args=@0xbfdedfa0)
    at /build/buildd/kde4libs-4.1.2/kjs/object.cpp:99
#33 0xb3f784fd in KJS::Machine::runBlock (exec=0xbfdee00c, 
    codeBlock=@0x86317d4, parentExec=0xbfdee53c) at codes.def:1206
#34 0xb3f5778d in KJS::FunctionImp::callAsFunction (this=0xb2940bc0, 
    exec=0xbfdee53c, thisObj=0xb2950000, args=@0xbfdee4d0)
    at /build/buildd/kde4libs-4.1.2/kjs/function.cpp:143
#35 0xb3f5b9f5 in KJS::JSObject::call (this=0xb2940bc0, exec=0xbfdee53c, 
    thisObj=0xb2950000, args=@0xbfdee4d0)
    at /build/buildd/kde4libs-4.1.2/kjs/object.cpp:99
#36 0xb3f784fd in KJS::Machine::runBlock (exec=0xbfdee53c, 
    codeBlock=@0x86317d4, parentExec=0xbfdeea6c) at codes.def:1206
#37 0xb3f5778d in KJS::FunctionImp::callAsFunction (this=0xb2940bc0, 
    exec=0xbfdeea6c, thisObj=0xb2950000, args=@0xbfdeea00)
    at /build/buildd/kde4libs-4.1.2/kjs/function.cpp:143
#38 0xb3f5b9f5 in KJS::JSObject::call (this=0xb2940bc0, exec=0xbfdeea6c, 
    thisObj=0xb2950000, args=@0xbfdeea00)
    at /build/buildd/kde4libs-4.1.2/kjs/object.cpp:99
#39 0xb3f784fd in KJS::Machine::runBlock (exec=0xbfdeea6c, 
    codeBlock=@0x86317d4, parentExec=0xbfdeef9c) at codes.def:1206
#40 0xb3f5778d in KJS::FunctionImp::callAsFunction (this=0xb2940bc0, 
    exec=0xbfdeef9c, thisObj=0xb2950000, args=@0xbfdeef30)
    at /build/buildd/kde4libs-4.1.2/kjs/function.cpp:143
#41 0xb3f5b9f5 in KJS::JSObject::call (this=0xb2940bc0, exec=0xbfdeef9c, 
    thisObj=0xb2950000, args=@0xbfdeef30)
    at /build/buildd/kde4libs-4.1.2/kjs/object.cpp:99
#42 0xb3f784fd in KJS::Machine::runBlock (exec=0xbfdeef9c, 
    codeBlock=@0x85ae21c, parentExec=0x8674518) at codes.def:1206
#43 0xb3f5778d in KJS::FunctionImp::callAsFunction (this=0xb2940b80, 
    exec=0x8674518, thisObj=0xb2950000, args=@0xbfdef0e8)
    at /build/buildd/kde4libs-4.1.2/kjs/function.cpp:143
#44 0xb3f5b9f5 in KJS::JSObject::call (this=0xb2940b80, exec=0x8674518, 
    thisObj=0xb2950000, args=@0xbfdef0e8)
    at /build/buildd/kde4libs-4.1.2/kjs/object.cpp:99
#45 0xb43068d8 in KJS::JSEventListener::handleEvent (this=0x8540708, 
    evt=@0xbfdef130)
    at /build/buildd/kde4libs-4.1.2/khtml/ecma/kjs_events.cpp:106
#46 0xb411bc48 in DOM::DocumentImpl::defaultEventHandler (this=0x85f0c00, 
    evt=0x846ad58)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_docimpl.cpp:2699
#47 0xb4136a5a in DOM::NodeImpl::dispatchWindowEvent (this=0x85f0c0c, _id=16, 
    canBubbleArg=<value optimized out>, cancelableArg=<value optimized out>)
    at /build/buildd/kde4libs-4.1.2/khtml/xml/dom_nodeimpl.cpp:566
#48 0xb4181300 in DOM::HTMLDocumentImpl::close (this=0x85f0c00)
    at /build/buildd/kde4libs-4.1.2/khtml/html/html_documentimpl.cpp:249
#49 0xb40d4ba2 in KHTMLPart::checkEmitLoadEvent (this=0x8450e70)
    at /build/buildd/kde4libs-4.1.2/khtml/khtml_part.cpp:2353
#50 0xb40d4db7 in KHTMLPart::checkCompleted (this=0x8450e70)
    at /build/buildd/kde4libs-4.1.2/khtml/khtml_part.cpp:2274
#51 0xb40d72af in KHTMLPart::slotLoaderRequestDone (this=0x8450e70, 
    dl=0x85b0500, obj=0x8573310)
    at /build/buildd/kde4libs-4.1.2/khtml/khtml_part.cpp:2128
#52 0xb40e15c7 in KHTMLPart::qt_metacall (this=0x8450e70, 
    _c=QMetaObject::InvokeMetaMethod, _id=69, _a=0xbfdef3f8)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/khtml/khtml_part.moc:314
#53 0xb74e9f79 in QMetaObject::activate (sender=0x8092ca8, 
    from_signal_index=5, to_signal_index=5, argv=0xbfdef3f8)
    at kernel/qobject.cpp:3016
#54 0xb74ea642 in QMetaObject::activate (sender=0x8092ca8, m=0xb44c6158, 
    local_signal_index=1, argv=0xbfdef3f8) at kernel/qobject.cpp:3086
#55 0xb427a889 in khtml::Loader::requestDone (this=0x8092ca8, _t1=0x85b0500, 
    _t2=0x8573310)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/khtml/loader.moc:150
#56 0xb427e0f0 in khtml::Loader::slotFinished (this=0x8092ca8, job=0x855b378)
    at /build/buildd/kde4libs-4.1.2/khtml/misc/loader.cpp:1382
#57 0xb427e389 in khtml::Loader::qt_metacall (this=0x8092ca8, 
    _c=QMetaObject::InvokeMetaMethod, _id=3, _a=0xbfdef57c)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/khtml/loader.moc:129
#58 0xb74e9f79 in QMetaObject::activate (sender=0x855b378, 
    from_signal_index=7, to_signal_index=7, argv=0xbfdef57c)
    at kernel/qobject.cpp:3016
#59 0xb74ea642 in QMetaObject::activate (sender=0x855b378, m=0xb7796868, 
    local_signal_index=3, argv=0xbfdef57c) at kernel/qobject.cpp:3086
#60 0xb769c673 in KJob::result (this=0x855b378, _t1=0x855b378)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kdecore/kjob.moc:186
#61 0xb769cb92 in KJob::emitResult (this=0x855b378)
    at /build/buildd/kde4libs-4.1.2/kdecore/jobs/kjob.cpp:290
#62 0xb7b78cdf in KIO::SimpleJob::slotFinished (this=0x855b378)
    at /build/buildd/kde4libs-4.1.2/kio/kio/job.cpp:498
#63 0xb7b79320 in KIO::TransferJob::slotFinished (this=0x855b378)
    at /build/buildd/kde4libs-4.1.2/kio/kio/job.cpp:967
#64 0xb7b7fb18 in KIO::TransferJob::qt_metacall (this=0x855b378, 
    _c=QMetaObject::InvokeMetaMethod, _id=7, _a=0xbfdef7d8)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kio/jobclasses.moc:336
#65 0xb74e9f79 in QMetaObject::activate (sender=0x853d7a0, 
    from_signal_index=8, to_signal_index=8, argv=0x0)
    at kernel/qobject.cpp:3016
#66 0xb74ea642 in QMetaObject::activate (sender=0x853d7a0, m=0xb7ce1c04, 
    local_signal_index=4, argv=0x0) at kernel/qobject.cpp:3086
#67 0xb7c1bac7 in KIO::SlaveInterface::finished (this=0x853d7a0)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kio/slaveinterface.moc:161
#68 0xb7c1dcab in KIO::SlaveInterface::dispatch (this=0x853d7a0, _cmd=104, 
    rawdata=@0xbfdef974)
    at /build/buildd/kde4libs-4.1.2/kio/kio/slaveinterface.cpp:175
#69 0xb7c1e0ed in KIO::SlaveInterface::dispatch (this=0x853d7a0)
    at /build/buildd/kde4libs-4.1.2/kio/kio/slaveinterface.cpp:90
#70 0xb7c10c67 in KIO::Slave::gotInput (this=0x853d7a0)
    at /build/buildd/kde4libs-4.1.2/kio/kio/slave.cpp:322
#71 0xb7c1203d in KIO::Slave::qt_metacall (this=0x853d7a0, 
    _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbfdefa88)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kio/slave.moc:75
#72 0xb74e9f79 in QMetaObject::activate (sender=0x8610018, 
    from_signal_index=4, to_signal_index=4, argv=0x0)
    at kernel/qobject.cpp:3016
#73 0xb74ea642 in QMetaObject::activate (sender=0x8610018, m=0xb7cde860, 
    local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3086
#74 0xb7b4b917 in KIO::Connection::readyRead (this=0x8610018)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kio/connection.moc:84
#75 0xb7b4c788 in KIO::ConnectionPrivate::dequeue (this=0x8586bb0)
    at /build/buildd/kde4libs-4.1.2/kio/kio/connection.cpp:82
#76 0xb7b4d5ce in KIO::Connection::qt_metacall (this=0x8610018, 
    _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x84fcf50)
    at /build/buildd/kde4libs-4.1.2/obj-i486-linux-gnu/kio/connection.moc:72
#77 0xb74e38ab in QMetaCallEvent::placeMetaCall (this=0x8a2fa70, 
    object=0x8610018) at kernel/qobject.cpp:535
#78 0xb74e4c31 in QObject::event (this=0x8610018, e=0x8a2fa70)
    at kernel/qobject.cpp:1140
#79 0xb69b6f9c in QApplicationPrivate::notify_helper (this=0x805cb80, 
    receiver=0x8610018, e=0x8a2fa70) at kernel/qapplication.cpp:3800
#80 0xb69bbbf9 in QApplication::notify (this=0xbfdf046c, receiver=0x8610018, 
    e=0x8a2fa70) at kernel/qapplication.cpp:3392
#81 0xb7953483 in KApplication::notify (this=0xbfdf046c, receiver=0x8610018, 
    event=0x8a2fa70)
    at /build/buildd/kde4libs-4.1.2/kdeui/kernel/kapplication.cpp:311
#82 0xb74d50b9 in QCoreApplication::notifyInternal (this=0xbfdf046c, 
    receiver=0x8610018, event=0x8a2fa70) at kernel/qcoreapplication.cpp:591
#83 0xb74d6469 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, 
    event_type=0, data=0x804b6b0)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#84 0xb74d668d in QCoreApplication::sendPostedEvents (receiver=0x0, 
    event_type=0) at kernel/qcoreapplication.cpp:1095
#85 0xb750062f in postEventSourceDispatch (s=0x805e730)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:220
#86 0xb6437dd6 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#87 0xb643b193 in ?? () from /usr/lib/libglib-2.0.so.0
#88 0xb643b74e in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#89 0xb75009f8 in QEventDispatcherGlib::processEvents (this=0x805caf0, 
    flags=@0xbfdf0188) at kernel/qeventdispatcher_glib.cpp:325
#90 0xb6a4aa25 in QGuiEventDispatcherGlib::processEvents (this=0x805caf0, 
    flags=@0xbfdf01b8) at kernel/qguieventdispatcher_glib.cpp:204
#91 0xb74d433d in QEventLoop::processEvents (this=0xbfdf0230, 
    flags=@0xbfdf01f4) at kernel/qeventloop.cpp:149
#92 0xb74d44cd in QEventLoop::exec (this=0xbfdf0230, flags=@0xbfdf0238)
    at kernel/qeventloop.cpp:200
#93 0xb74d674d in QCoreApplication::exec () at kernel/qcoreapplication.cpp:849
#94 0xb69b6897 in QApplication::exec () at kernel/qapplication.cpp:3330
#95 0xb7fa5abd in kdemain () from /usr/lib/kde4/lib/libkdeinit4_konqueror.so
#96 0x08048582 in _start ()
#0  0xb7fbf410 in __kernel_vsyscall ()
Comment 14 Viacheslav Tokarev 2008-11-18 16:42:46 UTC
SVN commit 886111 by vtokarev:

fix incorrect rule reference count problem by always calling ref() in append
it might be called from css parser at least (without ref) which caused crash
BUG: 150662

 M  +2 -3      css_ruleimpl.cpp  


WebSVN link: http://websvn.kde.org/?view=rev&revision=886111
Comment 15 Andrea Iacovitti 2008-11-19 10:10:15 UTC
Hi,
could someone suggests on how to fix on kde 3.5 ?
Thanks in advance.
Comment 16 Dario Andres 2008-12-05 16:07:55 UTC
*** Bug 169624 has been marked as a duplicate of this bug. ***
Comment 17 Andrea Iacovitti 2008-12-05 18:06:59 UTC
Created attachment 29070 [details]
kde 3.5 patch

I successfully used this patch on kde 3.5

Andrea.
Comment 18 Frank Reininghaus 2008-12-07 17:22:04 UTC
*** Bug 177111 has been marked as a duplicate of this bug. ***
Comment 19 Maksim Orlovich 2009-03-06 20:32:09 UTC
*** Bug 186384 has been marked as a duplicate of this bug. ***