Version: (using KDE KDE 3.5.0) Installed from: Fedora RPMs Compiler: gcc (GCC) 4.0.2 20051125 (Red Hat 4.0.2-8) OS: Linux Certain SVG files cause the KSVG renderer to go crazy, eating 100% CPU and quickly allocating as much memory as the system has to offer. This bug is serious. Someone could craft an SVG which triggers this bug, and put it on the web. It will grind the victim's system to a halt, before an eventual oom-kill happens, possibly causing data loss and other problems. I first encountered it while kio_thumbnail was working on SVG thumbs in a local directory, displayed with Konqueror. I had to reboot, because my HD is slow (laptop), my CPU is fast (which means memory allocation is also fast), and I've got 2GB swap space (1GB RAM). This combination made my system totally unresponsive, HD working full-time. I recently decided to track down the SVG file which caused it, and have accomplished this. I am attaching the SVG files. They are from the Open Clipart Library: http://www.openclipart.org/ The bug can easily be reproduced by running 'svgdisplay' on files. Be ready to kill off the process. I can confirm that it happens with the follwing apps: svgdisplay kio_thumbnail GIMP version 2.2.8 renders the offending SVG's without any problems. --- kdelibs-3.5.0-2.0.fc4.kde kdebase-3.5.0-1.2.fc4.kde qt-3.3.5-10.1.fc4.kde kdegraphics-3.5.0-1.4.fc4.kde $ svgdisplay --version Qt: 3.3.5 KDE: 3.5.0-2.0.fc4.kde KSVG test: 0.1
Created attachment 13951 [details] SVG file that crashes KSVG From http://www.openclipart.org/
Created attachment 13952 [details] SVG file #2 that crashes KSVG From http://www.openclipart.org/
Created attachment 21249 [details] SVGAnimatedPointsImpl.cc.patch.diff Hi! In the attachment you'll find a patch which fixes this crash.
This is a confirmation that the bug still exists in KDE 3.5.10.
This component has been replaced with the QtSvg based "svgpart" in KDE 4. If this issue still needs to be addressed, please add a comment.