Bug 159486

Summary: konqueror crashes visiting http://cybertiggyr.com/gene/dfx/ (QPixmap::isNull)
Product: [Applications] konqueror Reporter: Oliver Putz <Regnaron>
Component: generalAssignee: Konqueror Developers <konq-bugs>
Status: RESOLVED DUPLICATE    
Severity: crash    
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: unspecified   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Oliver Putz 2008-03-17 20:21:20 UTC 
Version:           4.00.66 (KDE 4.0.66 >= 20080313) (using 4.00.66 (KDE 4.0.66 >= 20080313), Gentoo)
Compiler:          i686-pc-linux-gnu-gcc
OS:                Linux (i686) release 2.6.23-gentoo-r9

Steps to reproduce:

1) Visit http://cybertiggyr.com/gene/dfx/

I use kdelibs r786249

The GDB Output is:

Undefined command: "konqueror".  Try "help".
Starting program: /usr/kde/svn/bin/konqueror http://cybertiggyr.com/gene/dfx/
[Thread debugging using libthread_db enabled]
[New Thread 0xb624aa20 (LWP 9803)]
[New Thread 0xb482eb90 (LWP 9809)]
[New Thread 0xb402db90 (LWP 9810)]
[New Thread 0xb382cb90 (LWP 9811)]
[Thread 0xb382cb90 (LWP 9811) exited]
[Thread 0xb482eb90 (LWP 9809) exited]
[Thread 0xb402db90 (LWP 9810) exited]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb624aa20 (LWP 9803)]
0xb68f67ca in QPixmap::isNull (this=0x861e28c) at image/qpixmapdata_p.h:103
103	image/qpixmapdata_p.h: No such file or directory.
	in image/qpixmapdata_p.h
#0  0xb68f67ca in QPixmap::isNull (this=0x861e28c) at image/qpixmapdata_p.h:103
#1  0xb693cc1b in QPainter::drawTiledPixmap (this=0xbfb88398, r=@0xbfb84c28, pixmap=@0x861e28c, sp=@0xbfb84c48)
    at painting/qpainter.cpp:5528
#2  0xb61c5484 in QPainter::drawTiledPixmap (this=0xbfb88398, x=1, y=29, w=1, h=-3, pm=@0x861e28c, sx=0, sy=0)
    at /usr/include/qt4/QtGui/qpainter.h:736
#3  0xb61c3b0a in TileSet::render (this=0x861e260, r=@0xbfb85630, p=0xbfb88398, t=@0xbfb86120)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/runtime/kstyles/oxygen/tileset.cpp:127
#4  0xb61de0c8 in OxygenStyle::drawKStylePrimitive (this=0x80b5a70, widgetType=KStyle::WT_ScrollBar, primitive=8, 
    opt=0xbfb873ac, r=@0xbfb86ac4, pal=@0xbfb86d44, flags=@0xbfb86f94, p=0xbfb88398, widget=0x8290928, kOpt=0x0)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/runtime/kstyles/oxygen/oxygen.cpp:922
#5  0xb78eac6f in KStyle::drawControl (this=0x80b5a70, element=QStyle::CE_ScrollBarSlider, option=0xbfb873ac, p=0xbfb88398, 
    widget=0x8290928) at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kstyle.cpp:1876
#6  0xb61e41d1 in OxygenStyle::drawControl (this=0x80b5a70, element=-9437329, option=0x1, p=0xbfb88398, widget=0x8290928)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/runtime/kstyles/oxygen/oxygen.cpp:311
#7  0xb6af7fce in QCommonStyle::drawComplexControl (this=0x80b5a70, cc=QStyle::CC_ScrollBar, opt=0xbfb88330, p=0xbfb88398, 
    widget=0x8290928) at styles/qcommonstyle.cpp:2977
#8  0xb78e3427 in KStyle::drawComplexControl (this=0x80b5a70, cc=QStyle::CC_ScrollBar, opt=0xbfb88330, p=0xbfb88398, 
    w=0x8290928) at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kstyle.cpp:3092
#9  0xb61e42b1 in OxygenStyle::drawComplexControl (this=0x80b5a70, control=QStyle::CC_ScrollBar, option=0xbfb88330, 
    painter=0xbfb88398, widget=0x8290928)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/runtime/kstyles/oxygen/oxygen.cpp:287
#10 0xb6c6bcbe in QScrollBar::paintEvent (this=0x8290928) at widgets/qscrollbar.cpp:544
#11 0xb688ea13 in QWidget::event (this=0x8290928, event=0xbfb888c4) at kernel/qwidget.cpp:6988
#12 0xb6bb7014 in QAbstractSlider::event (this=0x8290928, e=0xbfb888c4) at widgets/qabstractslider.cpp:843
#13 0xb6c6bbbc in QScrollBar::event (this=0x8290928, event=0xbfb888c4) at widgets/qscrollbar.cpp:524
#14 0xb683071f in QApplicationPrivate::notify_helper (this=0x80587b8, receiver=0x8290928, e=0xbfb888c4)
    at kernel/qapplication.cpp:3735
#15 0xb683225f in QApplication::notify (this=0xbfb8a3e8, receiver=0x8290928, e=0xbfb888c4) at kernel/qapplication.cpp:3329
#16 0xb78d6023 in KApplication::notify (this=0xbfb8a3e8, receiver=0x8290928, event=0xbfb888c4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kapplication.cpp:311
#17 0xb726ecf7 in QCoreApplication::notifyInternal (this=0xbfb8a3e8, receiver=0x8290928, event=0xbfb888c4)
    at kernel/qcoreapplication.cpp:586
#18 0xb689437e in qt_sendSpontaneousEvent (receiver=0x8290928, event=0xff6fff6f)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:218
#19 0xb688ce96 in QWidgetPrivate::drawWidget (this=0x82c0dd8, pdev=0x81272dc, rgn=@0xbfb88a7c, offset=@0xbfb88a74, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4421
#20 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x82c0cc0, pdev=0x81272dc, siblings=@0xbfb88c20, index=0, 
    rgn=@0xbfb88cec, offset=@0xbfb88ce4, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#21 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x82c0cc0, pdev=0x81272dc, rgn=@0xbfb88cec, offset=@0xbfb88ce4, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#22 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x82c0670, pdev=0x81272dc, siblings=@0xbfb88e90, index=2, 
    rgn=@0xbfb88f5c, offset=@0xbfb88f54, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#23 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x82c0670, pdev=0x81272dc, rgn=@0xbfb88f5c, offset=@0xbfb88f54, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#24 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x8296f20, pdev=0x81272dc, siblings=@0xbfb89100, index=1, 
    rgn=@0xbfb891cc, offset=@0xbfb891c4, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#25 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x8296f20, pdev=0x81272dc, rgn=@0xbfb891cc, offset=@0xbfb891c4, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#26 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x8292b00, pdev=0x81272dc, siblings=@0xbfb89370, index=1, 
    rgn=@0xbfb8943c, offset=@0xbfb89434, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#27 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x8292b00, pdev=0x81272dc, rgn=@0xbfb8943c, offset=@0xbfb89434, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#28 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x82929a0, pdev=0x81272dc, siblings=@0xbfb895e0, index=0, 
    rgn=@0xbfb896ac, offset=@0xbfb896a4, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#29 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x82929a0, pdev=0x81272dc, rgn=@0xbfb896ac, offset=@0xbfb896a4, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#30 0xb688d68c in QWidgetPrivate::paintSiblingsRecursive (this=0x8129420, pdev=0x81272dc, siblings=@0xbfb89850, index=47, 
    rgn=@0xbfb89934, offset=@0x805ee5c, flags=4, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4519
#31 0xb688c9ef in QWidgetPrivate::drawWidget (this=0x8129420, pdev=0x81272dc, rgn=@0xbfb89934, offset=@0x805ee5c, 
    flags=<value optimized out>, sharedPainter=0x84bc1a8) at kernel/qwidget.cpp:4462
#32 0xb69fdce3 in QWidgetBackingStore::cleanRegion (this=0x805ee50, rgn=@0xbfb89998, widget=0x8129230, 
    recursiveCopyToScreen=true) at painting/qbackingstore.cpp:1041
#33 0xb69fec08 in qt_syncBackingStore (widget=0x8129230) at painting/qbackingstore.cpp:315
#34 0xb688e7ed in QWidget::event (this=0x8129230, event=0x832c8a8) at kernel/qwidget.cpp:7132
#35 0xb6c2952f in QMainWindow::event (this=0x8129230, event=0x832c8a8) at widgets/qmainwindow.cpp:1252
#36 0xb7993b02 in KMainWindow::event (this=0x8129230, ev=0x832c8a8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/widgets/kmainwindow.cpp:1028
#37 0xb79c834c in KXmlGuiWindow::event (this=0x8129230, ev=0x832c8a8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/xmlgui/kxmlguiwindow.cpp:123
#38 0xb7f37024 in KonqMainWindow::event (this=0x8129230, e=0x832c8a8)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/apps/konqueror/src/konqmainwindow.cpp:5510
#39 0xb683071f in QApplicationPrivate::notify_helper (this=0x80587b8, receiver=0x8129230, e=0x832c8a8)
    at kernel/qapplication.cpp:3735
#40 0xb683225f in QApplication::notify (this=0xbfb8a3e8, receiver=0x8129230, e=0x832c8a8) at kernel/qapplication.cpp:3329
#41 0xb78d6023 in KApplication::notify (this=0xbfb8a3e8, receiver=0x8129230, event=0x832c8a8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kapplication.cpp:311
#42 0xb726ecf7 in QCoreApplication::notifyInternal (this=0xbfb8a3e8, receiver=0x8129230, event=0x832c8a8)
    at kernel/qcoreapplication.cpp:586
#43 0xb7270059 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x804cb68)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#44 0xb72703bd in QCoreApplication::sendPostedEvents (receiver=0x0, event_type=0) at kernel/qcoreapplication.cpp:1084
#45 0xb68c8b1e in QEventDispatcherX11::processEvents (this=0x8058788, flags=@0xbfb8a0f4)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:220
#46 0xb726de61 in QEventLoop::processEvents (this=0xbfb8a160, flags=@0xbfb8a128) at kernel/qeventloop.cpp:146
#47 0xb726df8f in QEventLoop::exec (this=0xbfb8a160, flags=@0xbfb8a168) at kernel/qeventloop.cpp:197
#48 0xb7270476 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:838
#49 0xb682fe37 in QApplication::exec () at kernel/qapplication.cpp:3267
#50 0xb7f7e647 in kdemain (argc=2, argv=0xbfb8a764)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/apps/konqueror/src/konqmain.cpp:218
#51 0x080487e2 in main (argc=Cannot access memory at address 0x1
) at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase_build/apps/konqueror/src/konqueror_dummy.cpp:3
#52 0xb6487fdc in __libc_start_main (main=0x80487c0 <main>, argc=2, ubp_av=0xbfb8a764, init=0x8048810 <__libc_csu_init>, 
    fini=0x8048800 <__libc_csu_fini>, rtld_fini=0xb7fa3100 <_dl_fini>, stack_end=0xbfb8a75c) at libc-start.c:229
#53 0x08048731 in _start ()
The program is running.  Exit anyway? (y or n)
Comment 1 Oliver Putz 2008-03-17 20:22:23 UTC 
Valgrind log:

==9682== Memcheck, a memory error detector.
==9682== Copyright (C) 2002-2007, and GNU GPL'd, by Julian Seward et al.
==9682== Using LibVEX rev 1732, a library for dynamic binary translation.
==9682== Copyright (C) 2004-2007, and GNU GPL'd, by OpenWorks LLP.
==9682== Using valgrind-3.2.3, a dynamic binary instrumentation framework.
==9682== Copyright (C) 2000-2007, and GNU GPL'd, by Julian Seward et al.
==9682== For more details, rerun with: -v
==9682== 
==9682== My PID = 9682, parent PID = 9552.  Prog and args are:
==9682==    konqueror
==9682==    http://cybertiggyr.com/gene/dfx/
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400A9B5: _dl_relocate_object (do-rel.h:65)
==9682==    by 0x400454C: dl_main (rtld.c:2214)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400A9BD: _dl_relocate_object (do-rel.h:68)
==9682==    by 0x400454C: dl_main (rtld.c:2214)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400B053: _dl_relocate_object (do-rel.h:104)
==9682==    by 0x400454C: dl_main (rtld.c:2214)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400AAF3: _dl_relocate_object (do-rel.h:117)
==9682==    by 0x400454C: dl_main (rtld.c:2214)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400A9B5: _dl_relocate_object (do-rel.h:65)
==9682==    by 0x4004169: dl_main (rtld.c:2284)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400A9BD: _dl_relocate_object (do-rel.h:68)
==9682==    by 0x4004169: dl_main (rtld.c:2284)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x400AAF3: _dl_relocate_object (do-rel.h:117)
==9682==    by 0x4004169: dl_main (rtld.c:2284)
==9682==    by 0x4013C45: _dl_sysdep_start (dl-sysdep.c:239)
==9682==    by 0x400124E: _dl_start (rtld.c:327)
==9682==    by 0x40008A6: (within /lib/ld-2.6.1.so)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x495415E: _XReply (XlibInt.c:1708)
==9682==    by 0x493D5B4: XGetWindowProperty (GetProp.c:64)
==9682==    by 0x493CA8D: XGetWMHints (GetHints.c:118)
==9682==    by 0x50FF8B7: QWidgetPrivate::setWindowIcon_sys(bool) (qwidget_x11.cpp:1160)
==9682==    by 0x50CCC48: QWidget::create(unsigned long, bool, bool) (qwidget.cpp:1227)
==9682==    by 0x50CD749: QWidgetPrivate::createWinId(unsigned long) (qwidget.cpp:1967)
==9682==    by 0x50CD857: QWidgetPrivate::setWindowTitle_helper(QString const&) (qwidget.cpp:4783)
==9682==    by 0x50CDD51: QWidget::setWindowTitle(QString const&) (qwidget.cpp:4814)
==9682==    by 0x47E6FCF: KMainWindowPrivate::init(KMainWindow*) (kmainwindow.cpp:266)
==9682==  Address 0x5F5A973 is 363 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x4939202: XFlush (Flush.c:41)
==9682==    by 0x50FE262: QWidgetPrivate::setCursor_sys(QCursor const&) (qwidget_x11.cpp:1077)
==9682==    by 0x50CB7C5: QWidget::setCursor(QCursor const&) (qwidget.cpp:4055)
==9682==    by 0x5461FA9: QLineEditPrivate::init(QString const&) (qlineedit.cpp:2657)
==9682==    by 0x546AFCA: QLineEdit::QLineEdit(QWidget*) (qlineedit.cpp:269)
==9682==    by 0x47E14CB: KLineEdit::KLineEdit(QWidget*) (klineedit.cpp:176)
==9682==    by 0x4082578: KonqComboLineEdit::KonqComboLineEdit(QWidget*) (konqcombo.cpp:824)
==9682==    by 0x4086C2C: KonqCombo::KonqCombo(QWidget*) (konqcombo.cpp:138)
==9682==    by 0x40943DF: KonqMainWindow::initCombo() (konqmainwindow.cpp:2949)
==9682==  Address 0x5F5AC81 is 1,145 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x490C4FF: _IceTransWrite (Xtrans.c:900)
==9682==    by 0x491104B: _IceWrite (misc.c:369)
==9682==    by 0x4911106: IceFlush (misc.c:82)
==9682==    by 0x48FFFAB: SmcSetProperties (sm_client.c:397)
==9682==    by 0x50D72A8: sm_setProperty(char const*, char const*, int, SmPropValue*) (qapplication_x11.cpp:5116)
==9682==    by 0x50DA859: sm_setProperty(QString const&, QString const&) (qapplication_x11.cpp:5131)
==9682==    by 0x50EA81C: sm_performSaveYourself(QSessionManagerPrivate*) (qapplication_x11.cpp:5195)
==9682==    by 0x50EB396: sm_saveYourselfCallback(_SmcConn*, void*, int, int, int, int) (qapplication_x11.cpp:5174)
==9682==    by 0x4903395: _SmcProcessMessage (sm_process.c:252)
==9682==    by 0x4914BF8: IceProcessMessages (process.c:344)
==9682==    by 0x50D7793: QSmSocketReceiver::socketActivated(int) (qapplication_x11.cpp:5313)
==9682==  Address 0x5EB6144 is 12 bytes inside a block of size 1,024 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x490AA94: IceOpenConnection (connect.c:211)
==9682==    by 0x49002DD: SmcOpenConnection (sm_client.c:135)
==9682==    by 0x50DD964: QSessionManager::QSessionManager(QApplication*, QString&, QString&) (qapplication_x11.cpp:5356)
==9682==    by 0x507DEC3: QApplicationPrivate::initialize() (qapplication.cpp:844)
==9682==    by 0x507EA30: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:738)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x4934859: XCheckTypedEvent (ChkTypEv.c:70)
==9682==    by 0x50E6295: QApplication::x11ProcessEvent(_XEvent*) (qapplication_x11.cpp:3159)
==9682==    by 0x510DC74: QEventDispatcherX11::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_x11.cpp:134)
==9682==    by 0x4D9BE60: QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:146)
==9682==    by 0x4D9BF8E: QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:197)
==9682==    by 0x4D9E475: QCoreApplication::exec() (qcoreapplication.cpp:838)
==9682==    by 0x5074E36: QApplication::exec() (qapplication.cpp:3267)
==9682==    by 0x40D2646: kdemain (konqmain.cpp:218)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682==  Address 0x5F5A82D is 37 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x4934979: XCheckTypedWindowEvent (ChkTypWEv.c:72)
==9682==    by 0x50DB195: QETWidget::translateConfigEvent(_XEvent const*) (qapplication_x11.cpp:4741)
==9682==    by 0x50E5903: QApplication::x11ProcessEvent(_XEvent*) (qapplication_x11.cpp:3119)
==9682==    by 0x510DC74: QEventDispatcherX11::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_x11.cpp:134)
==9682==    by 0x4D9BE60: QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:146)
==9682==    by 0x4D9BF8E: QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:197)
==9682==    by 0x4D9E475: QCoreApplication::exec() (qcoreapplication.cpp:838)
==9682==    by 0x5074E36: QApplication::exec() (qapplication.cpp:3267)
==9682==    by 0x40D2646: kdemain (konqmain.cpp:218)
==9682==  Address 0x5F5A82D is 37 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x4936779: _XFlushGCCache (CrGC.c:325)
==9682==    by 0x494D465: XSetClipMask (SetClMask.c:45)
==9682==    by 0x5224F88: QX11PaintEngine::updateBrush(QBrush const&, QPointF const&) (qpaintengine_x11.cpp:186)
==9682==    by 0x522BA2F: QX11PaintEngine::updateState(QPaintEngineState const&) (qpaintengine_x11.cpp:985)
==9682==    by 0x51786C4: QPainterPrivate::updateState(QPainterState*) (qpainter.cpp:891)
==9682==    by 0x5180B28: QPainter::drawRects(QRectF const*, int) (qpainter.cpp:2907)
==9682==    by 0x64DD3CC: QPainter::drawRect(QRectF const&) (qpainter.h:582)
==9682==    by 0x64DC75C: OxygenScrollbar::horizontal(int, int, int) const (scrollbar.cpp:253)
==9682==    by 0x64D5EEA: OxygenStyleHelper::horizontalScrollBar(QColor const&, int, int, int) (helper.cpp:699)
==9682==  Address 0x5F5A957 is 335 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x4BCB272: (within /lib/libz.so.1.2.3)
==9682== 
==9682== Conditional jump or move depends on uninitialised value(s)
==9682==    at 0x4BCB212: (within /lib/libz.so.1.2.3)
==9682== 
==9682== Syscall param write(buf) points to uninitialised byte(s)
==9682==    at 0x4E98FAB: (within /lib/libpthread-2.6.1.so)
==9682==    by 0x495A767: _X11TransWrite (Xtrans.c:900)
==9682==    by 0x4954066: _XFlushInt (XlibInt.c:675)
==9682==    by 0x4954B64: _XEventsQueued (XlibInt.c:743)
==9682==    by 0x4946ADB: XEventsQueued (Pending.c:44)
==9682==    by 0x510DD6B: QEventDispatcherX11::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_x11.cpp:81)
==9682==    by 0x4D9BE60: QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:146)
==9682==    by 0x4D9BF8E: QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:197)
==9682==    by 0x4D9E475: QCoreApplication::exec() (qcoreapplication.cpp:838)
==9682==    by 0x5074E36: QApplication::exec() (qapplication.cpp:3267)
==9682==    by 0x40D2646: kdemain (konqmain.cpp:218)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682==  Address 0x5F5AB87 is 895 bytes inside a block of size 16,384 alloc'd
==9682==    at 0x40207D3: calloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4945578: XOpenDisplay (OpenDis.c:289)
==9682==    by 0x50E928D: qt_init(QApplicationPrivate*, int, _XDisplay*, unsigned long, unsigned long) (qapplication_x11.cpp:1640)
==9682==    by 0x507EA28: QApplicationPrivate::construct(_XDisplay*, unsigned long, unsigned long) (qapplication.cpp:737)
==9682==    by 0x507F5C3: QApplication::QApplication(int&, char**, bool, int) (qapplication.cpp:698)
==9682==    by 0x472865E: KApplication::KApplication(bool) (kapplication.cpp:346)
==9682==    by 0x404B6F0: KonquerorApplication::KonquerorApplication() (konqapplication.cpp:29)
==9682==    by 0x40D0D00: kdemain (konqmain.cpp:67)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x40222FF: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E30E: png_combine_row (pngrutil.c:2305)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E748: png_push_process_row (pngpread.c:847)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EA1 is 0 bytes after a block of size 81 alloc'd
==9682==    at 0x402171D: operator new[](unsigned) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0xB0C163E: khtmlImLoad::PNGLoader::haveInfo() (pngloader.cpp:176)
==9682==    by 0xB0C16DF: khtmlImLoad::PNGLoader::dispHaveInfo(png_struct_def*, png_info_struct*) (pngloader.cpp:66)
==9682==    by 0x5B5DF91: png_push_have_info (pngpread.c:1536)
==9682==    by 0x5B5F65A: png_push_read_chunk (pngpread.c:301)
==9682==    by 0x5B5FB5D: png_process_some_data (pngpread.c:56)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==    by 0xB0BCA6F: khtmlImLoad::Image::processData(unsigned char*, int) (image.cpp:150)
==9682==    by 0xAFE216A: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:856)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x4022305: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E30E: png_combine_row (pngrutil.c:2305)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E748: png_push_process_row (pngpread.c:847)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EA2 is 1 bytes after a block of size 81 alloc'd
==9682==    at 0x402171D: operator new[](unsigned) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0xB0C163E: khtmlImLoad::PNGLoader::haveInfo() (pngloader.cpp:176)
==9682==    by 0xB0C16DF: khtmlImLoad::PNGLoader::dispHaveInfo(png_struct_def*, png_info_struct*) (pngloader.cpp:66)
==9682==    by 0x5B5DF91: png_push_have_info (pngpread.c:1536)
==9682==    by 0x5B5F65A: png_push_read_chunk (pngpread.c:301)
==9682==    by 0x5B5FB5D: png_process_some_data (pngpread.c:56)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==    by 0xB0BCA6F: khtmlImLoad::Image::processData(unsigned char*, int) (image.cpp:150)
==9682==    by 0xAFE216A: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:856)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x402230E: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E30E: png_combine_row (pngrutil.c:2305)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E748: png_push_process_row (pngpread.c:847)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EA3 is 2 bytes after a block of size 81 alloc'd
==9682==    at 0x402171D: operator new[](unsigned) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0xB0C163E: khtmlImLoad::PNGLoader::haveInfo() (pngloader.cpp:176)
==9682==    by 0xB0C16DF: khtmlImLoad::PNGLoader::dispHaveInfo(png_struct_def*, png_info_struct*) (pngloader.cpp:66)
==9682==    by 0x5B5DF91: png_push_have_info (pngpread.c:1536)
==9682==    by 0x5B5F65A: png_push_read_chunk (pngpread.c:301)
==9682==    by 0x5B5FB5D: png_process_some_data (pngpread.c:56)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==    by 0xB0BCA6F: khtmlImLoad::Image::processData(unsigned char*, int) (image.cpp:150)
==9682==    by 0xAFE216A: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:856)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x40222FA: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E30E: png_combine_row (pngrutil.c:2305)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E748: png_push_process_row (pngpread.c:847)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EA4 is 3 bytes after a block of size 81 alloc'd
==9682==    at 0x402171D: operator new[](unsigned) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0xB0C163E: khtmlImLoad::PNGLoader::haveInfo() (pngloader.cpp:176)
==9682==    by 0xB0C16DF: khtmlImLoad::PNGLoader::dispHaveInfo(png_struct_def*, png_info_struct*) (pngloader.cpp:66)
==9682==    by 0x5B5DF91: png_push_have_info (pngpread.c:1536)
==9682==    by 0x5B5F65A: png_push_read_chunk (pngpread.c:301)
==9682==    by 0x5B5FB5D: png_process_some_data (pngpread.c:56)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==    by 0xB0BCA6F: khtmlImLoad::Image::processData(unsigned char*, int) (image.cpp:150)
==9682==    by 0xAFE216A: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:856)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x402231E: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E30E: png_combine_row (pngrutil.c:2305)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E748: png_push_process_row (pngpread.c:847)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EF0 is not stack'd, malloc'd or (recently) free'd
==9682== 
==9682== Invalid write of size 1
==9682==    at 0x402231E: memcpy (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x5B4E58D: png_combine_row (pngrutil.c:2483)
==9682==    by 0x5B5E07B: png_progressive_combine_row (pngpread.c:1564)
==9682==    by 0xB0C1401: khtmlImLoad::PNGLoader::haveRow(unsigned, int, unsigned char*) (pngloader.cpp:196)
==9682==    by 0xB0C1474: khtmlImLoad::PNGLoader::dispHaveRow(png_struct_def*, unsigned char*, unsigned long, int) (pngloader.cpp:71)
==9682==    by 0x5B5DFDD: png_push_have_row (pngpread.c:1550)
==9682==    by 0x5B5E804: png_push_process_row (pngpread.c:878)
==9682==    by 0x5B5EBDF: png_process_IDAT_data (pngpread.c:798)
==9682==    by 0x5B5ED70: png_push_read_IDAT (pngpread.c:729)
==9682==    by 0x5B5FB6B: png_process_some_data (pngpread.c:61)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==  Address 0x6345EA8 is 7 bytes after a block of size 81 alloc'd
==9682==    at 0x402171D: operator new[](unsigned) (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0xB0C163E: khtmlImLoad::PNGLoader::haveInfo() (pngloader.cpp:176)
==9682==    by 0xB0C16DF: khtmlImLoad::PNGLoader::dispHaveInfo(png_struct_def*, png_info_struct*) (pngloader.cpp:66)
==9682==    by 0x5B5DF91: png_push_have_info (pngpread.c:1536)
==9682==    by 0x5B5F65A: png_push_read_chunk (pngpread.c:301)
==9682==    by 0x5B5FB5D: png_process_some_data (pngpread.c:56)
==9682==    by 0x5B5FBD3: png_process_data (pngpread.c:36)
==9682==    by 0xB0C125A: khtmlImLoad::PNGLoader::processData(unsigned char*, int) (pngloader.cpp:254)
==9682==    by 0xB0BCA6F: khtmlImLoad::Image::processData(unsigned char*, int) (image.cpp:150)
==9682==    by 0xAFE216A: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:856)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)

valgrind: m_mallocfree.c:194 (get_bszB_as_is): Assertion 'bszB_lo == bszB_hi' failed.
valgrind: Heap block lo/hi size mismatch: lo = 4285529967, hi = 4294880405.
Probably caused by overrunning/underrunning a heap block's bounds.

==9682==    at 0x38010D37: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38010F49: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38016AE6: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38016B2A: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38016B50: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38016D0B: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x3801796D: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x380016C3: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38027E79: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38029093: (within /usr/lib/valgrind/x86-linux/memcheck)
==9682==    by 0x38040938: (within /usr/lib/valgrind/x86-linux/memcheck)

sched status:
  running_tid=1

Thread 1: status = VgTs_Runnable
==9682==    at 0x4021454: realloc (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==9682==    by 0x4CA0893: qRealloc(void*, unsigned) (qmalloc.cpp:67)
==9682==    by 0x4CC6959: QListData::realloc(int) (qlistdata.cpp:113)
==9682==    by 0x4CC6AC6: QListData::append() (qlistdata.cpp:133)
==9682==    by 0x4CAE156: QList<QByteArray>::append(QByteArray const&) (qlist.h:427)
==9682==    by 0x4D2E027: QIODevice::close() (qlist.h:302)
==9682==    by 0x4D15FDC: QBuffer::close() (qbuffer.cpp:344)
==9682==    by 0xAFE2172: khtml::CachedImage::data(QBuffer&, bool) (loader.cpp:858)
==9682==    by 0xAFDFAD0: khtml::Loader::slotData(KIO::Job*, QByteArray const&) (loader.cpp:1360)
==9682==    by 0xAFE1960: khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) (loader.moc:128)
==9682==    by 0x4DB32C7: QMetaObject::activate(QObject*, int, int, void**) (qobject.cpp:2995)
==9682==    by 0x4DB3A43: QMetaObject::activate(QObject*, QMetaObject const*, int, void**) (qobject.cpp:3065)
==9682==    by 0x421EEE6: KIO::TransferJob::data(KIO::Job*, QByteArray const&) (jobclasses.moc:356)
==9682==    by 0x421F9C2: KIO::TransferJob::slotData(QByteArray const&) (job.cpp:921)
==9682==    by 0x422A1F9: KIO::TransferJob::qt_metacall(QMetaObject::Call, int, void**) (jobclasses.moc:337)
==9682==    by 0x4DB32C7: QMetaObject::activate(QObject*, int, int, void**) (qobject.cpp:2995)
==9682==    by 0x4DB3A43: QMetaObject::activate(QObject*, QMetaObject const*, int, void**) (qobject.cpp:3065)
==9682==    by 0x42CBBC0: KIO::SlaveInterface::data(QByteArray const&) (slaveinterface.moc:136)
==9682==    by 0x42CD5F8: KIO::SlaveInterface::dispatch(int, QByteArray const&) (slaveinterface.cpp:163)
==9682==    by 0x42CE2C5: KIO::SlaveInterface::dispatch() (slaveinterface.cpp:90)
==9682==    by 0x42C0926: KIO::Slave::gotInput() (slave.cpp:319)
==9682==    by 0x42C1E7C: KIO::Slave::qt_metacall(QMetaObject::Call, int, void**) (slave.moc:75)
==9682==    by 0x4DB32C7: QMetaObject::activate(QObject*, int, int, void**) (qobject.cpp:2995)
==9682==    by 0x4DB3A43: QMetaObject::activate(QObject*, QMetaObject const*, int, void**) (qobject.cpp:3065)
==9682==    by 0x41FBC62: KIO::Connection::readyRead() (connection.moc:84)
==9682==    by 0x41FCAE5: KIO::ConnectionPrivate::dequeue() (connection.cpp:82)
==9682==    by 0x41FD894: KIO::Connection::qt_metacall(QMetaObject::Call, int, void**) (connection.moc:72)
==9682==    by 0x4DACB78: QMetaCallEvent::placeMetaCall(QObject*) (qobject.cpp:535)
==9682==    by 0x4DAEEDD: QObject::event(QEvent*) (qobject.cpp:1131)
==9682==    by 0x507571E: QApplicationPrivate::notify_helper(QObject*, QEvent*) (qapplication.cpp:3735)
==9682==    by 0x50772F9: QApplication::notify(QObject*, QEvent*) (qapplication.cpp:3329)
==9682==    by 0x4729022: KApplication::notify(QObject*, QEvent*) (kapplication.cpp:311)
==9682==    by 0x4D9CCF6: QCoreApplication::notifyInternal(QObject*, QEvent*) (qcoreapplication.cpp:586)
==9682==    by 0x4D9E058: QCoreApplicationPrivate::sendPostedEvents(QObject*, int, QThreadData*) (qcoreapplication.h:215)
==9682==    by 0x4DCD7A7: QEventDispatcherUNIX::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_unix.cpp:867)
==9682==    by 0x510DCFD: QEventDispatcherX11::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventdispatcher_x11.cpp:154)
==9682==    by 0x4D9BE60: QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:146)
==9682==    by 0x4D9BF8E: QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (qeventloop.cpp:197)
==9682==    by 0x4D9E475: QCoreApplication::exec() (qcoreapplication.cpp:838)
==9682==    by 0x5074E36: QApplication::exec() (qapplication.cpp:3267)
==9682==    by 0x40D2646: kdemain (konqmain.cpp:218)
==9682==    by 0x80487E1: main (konqueror_dummy.cpp:3)

Note: see also the FAQ.txt in the source distribution.
It contains workarounds to several common problems.

If that doesn't help, please report this bug to: www.valgrind.org

In the bug report, send all the above text, the valgrind
version, and what Linux distro you are using.  Thanks.
Comment 2 Tommi Tervo 2008-03-18 14:44:10 UTC 

*** This bug has been marked as a duplicate of 156623 ***