37751 – Infinite recursion in WebCore::SVGPatternElement::buildPattern leads to stack exhaustion

RESOLVED DUPLICATE of bug 3217137751

Infinite recursion in WebCore::SVGPatternElement::buildPattern leads to stack exhaustion

https://bugs.webkit.org/show_bug.cgi?id=37751

Summary Infinite recursion in WebCore::SVGPatternElement::buildPattern leads to stack...

Tobias Klein

Reported 2010-04-17 02:32:48 PDT

Opening the attached SVG file causes infinite recursion in WebCore::SVGPatternElement::buildPattern, which leads to stack exhaustion. Code snippet: http://svn.webkit.org/repository/webkit/trunk/WebCore/svg/SVGPatternElement.cpp [..] void SVGPatternElement::buildPattern(const FloatRect& targetRect) const { [..] // Render subtree into ImageBuffer for (Node* n = attributes.patternContentElement()->firstChild(); n; n = n->nextSibling()) { if (!n->isSVGElement() || !static_cast<SVGElement*>(n)->isStyled() || !n->renderer()) continue; renderSubtreeToImage(patternImage.get(), n->renderer()); } [..]

Attachments
Testcase (346 bytes, application/xhtml+xml) 2010-04-17 02:33 PDT, Tobias Klein	no flags	Details
View All Add attachment proposed patch, testcase, etc.

Tobias Klein

Comment 1 2010-04-17 02:33:59 PDT

Created attachment 53595 [details] Testcase

Dirk Schulze

Comment 2 2010-04-19 03:26:23 PDT

Thanks for the test case. *** This bug has been marked as a duplicate of bug 32171 ***

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution DUPLICATE

of bug 32171

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware All

OS All

Product WebKit

Component SVG

Assignee

Nobody

Reported

2010-04-17 02:32 PDT

Modified

2010-04-19 03:26 PDT History

CC List

1 user Show

URL

Keywords

Depends on

Blocks