Bug#338756: konqueror: reproducable crash on specific url

Package: konqueror
Version: 4:3.5.4-2

I can also reproduce this crash with the two URLs in this report, and a
dump is attached.  Running 3.5.4 from testing.  Kaffeine (which isn't
in the auto-generated list of dependencies below but is at the top of
the dump) is at version 0.8.1-3.


Open http://www.maennerseiten.de/orgasmus.htm in konqui -
this will not crash.  Then in the same browser window go to
Konqueror will crash immediately.

Please let me know what other diags I can provide,


-- System Information:
Debian Release: testing/unstable
  APT prefers testing
  APT policy: (850, 'testing'), (600, 'stable'), (3, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.16-16bpo1.20060720.0-k7-njl
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)

Versions of packages konqueror depends on:
ii  kcontrol                    4:3.5.4-2    control center for KDE
ii  kdebase-kio-plugins         4:3.5.4-2    core I/O slaves for KDE
ii  kdelibs4c2a                 4:3.5.4-3    core libraries and binaries for al
ii  kdesktop                    4:3.5.4-2    miscellaneous binaries and files f
ii  kfind                       4:3.5.4-2    file-find utility for KDE
ii  libacl1                     2.2.41-1     Access control list shared library
ii  libart-2.0-2                2.3.17-1     Library of functions for 2D graphi
ii  libattr1                    2.4.32-1     Extended attribute shared library
ii  libaudio2                   1.8-1        The Network Audio System (NAS). (s
ii  libc6                       2.3.6-15     GNU C Library: Shared libraries
ii  libfontconfig1              2.3.2-7      generic font configuration library
ii  libfreetype6                2.2.1-2      FreeType 2 font engine, shared lib
ii  libgamin0 [libfam0]         0.1.7-3      Client library for the gamin file 
ii  libgcc1                     1:4.1.1-5    GCC support library
ii  libice6                     1:1.0.0-3    X11 Inter-Client Exchange library
ii  libidn11                    0.6.5-1      GNU libidn library, implementation
ii  libjpeg62                   6b-13        The Independent JPEG Group's JPEG 
ii  libkonq4                    4:3.5.4-2    core libraries for Konqueror
ii  libpng12-0                  1.2.8rel-5.2 PNG library - runtime
ii  libqt3-mt                   3:3.3.6-2    Qt GUI Library (Threaded runtime v
ii  libsm6                      1:1.0.0-4    X11 Session Management library
ii  libstdc++6                  4.1.1-5      The GNU Standard C++ Library v3
ii  libx11-6                    2:1.0.0-8    X11 client-side library
ii  libxcursor1           X cursor management library
ii  libxext6                    1:1.0.0-4    X11 miscellaneous extension librar
ii  libxft2               FreeType-based font drawing librar
ii  libxi6                      1:1.0.0-5    X11 Input extension library
ii  libxinerama1                1:1.0.1-4    X11 Xinerama extension library
ii  libxrandr2                  2:  X11 RandR extension library
ii  libxrender1                 1:  X Rendering Extension client libra
ii  libxt6                      1:1.0.0-5    X11 toolkit intrinsics library
ii  zlib1g                      1:1.2.3-13   compression library - runtime

konqueror recommends no packages.

-- no debconf information
Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread -1501206848 (LWP 3765)]
[KCrash handler]
#6  0xa58c1150 in KaffeinePart::slotStop ()
   from /usr/lib/kde3/libkaffeinepart.so
#7  0xa58b2c24 in KaffeinePart::closeURL ()
   from /usr/lib/kde3/libkaffeinepart.so
#8  0xa5dc3d5b in KHTMLPart::closeURL (this=0x9146e88)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./khtml/khtml_part.cpp:835
#9  0xa5da313b in KHTMLPart::openURL (this=0x9146e88, url=@0xafa143b0)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./khtml/khtml_part.cpp:673
#10 0xa65d95c2 in KonqView::openURL (this=0x9110d90, url=@0xafa143b0, 
    locationBarURL=@0xafa1443c, nameFilter=@0x91afd58, tempFile=false)
    at /home/sid-user/kdebase/kdebase-3.5.4/./konqueror/konq_view.cc:223
#11 0xa65db76c in KonqMainWindow::openView (this=0x8252ef8, 
    serviceType=@0xafa144f4, _url=@0x91afc98, childView=0x9110d90, 
    at /home/sid-user/kdebase/kdebase-3.5.4/./konqueror/konq_mainwindow.cc:888
#12 0xa65f1ac4 in KonqRun::foundMimeType (this=0x91afc70, _type=@0xafa14544)
    at /home/sid-user/kdebase/kdebase-3.5.4/./konqueror/konq_run.cc:91
#13 0xa7ec1bb5 in KParts::BrowserRun::slotBrowserMimetype (this=0x91afc70, 
    _job=0x91cd5e0, type=@0x91c8140)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kparts/browserrun.cpp:200
#14 0xa7ec1d1e in KParts::BrowserRun::qt_invoke (this=0x91afc70, _id=7, 
    _o=0xafa14610) at ./browserrun.moc:102
#15 0xa65ac728 in KonqRun::qt_invoke (this=0x91afc70, _id=7, _o=0xafa14610)
    at ./konq_run.moc:88
#16 0xa71f554b in QObject::activate_signal () from /usr/lib/libqt-mt.so.3
#17 0xa7a2ef50 in KIO::TransferJob::mimetype (this=0x91cd5e0, t0=0x91cd5e0, 
    t1=@0x91cd6f0) at ./jobclasses.moc:1050
#18 0xa7a2efd2 in KIO::TransferJob::slotMimetype (this=0x91cd5e0, 
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kio/kio/job.cpp:1084
#19 0xa7a6ca6d in KIO::TransferJob::qt_invoke (this=0x91cd5e0, _id=20, 
    _o=0xafa14748) at ./jobclasses.moc:1074
#20 0xa71f554b in QObject::activate_signal () from /usr/lib/libqt-mt.so.3
#21 0xa71f5a78 in QObject::activate_signal () from /usr/lib/libqt-mt.so.3
#22 0xa7a3a393 in KIO::SlaveInterface::mimeType (this=0x90458d8, 
    t0=@0xafa14940) at ./slaveinterface.moc:370
#23 0xa7a8c992 in KIO::SlaveInterface::dispatch (this=0x90458d8, _cmd=21, 
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kio/kio/slaveinterface.cpp:338
#24 0xa7a8aac8 in KIO::SlaveInterface::dispatch (this=0x90458d8)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kio/kio/slaveinterface.cpp:173
#25 0xa7a3bc1b in KIO::Slave::gotInput (this=0x90458d8)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kio/kio/slave.cpp:300
#26 0xa7a7a670 in KIO::Slave::qt_invoke (this=0x90458d8, _id=4, _o=0xafa14aa8)
    at ./slave.moc:113
#27 0xa71f554b in QObject::activate_signal () from /usr/lib/libqt-mt.so.3
#28 0xa71f5e52 in QObject::activate_signal () from /usr/lib/libqt-mt.so.3
#29 0xa7587f7f in QSocketNotifier::activated () from /usr/lib/libqt-mt.so.3
#30 0xa721580a in QSocketNotifier::event () from /usr/lib/libqt-mt.so.3
#31 0xa718b87a in QApplication::internalNotify () from /usr/lib/libqt-mt.so.3
#32 0xa718ba76 in QApplication::notify () from /usr/lib/libqt-mt.so.3
#33 0xa787152e in KApplication::notify (this=0xafa1513c, receiver=0x90450d8, 
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kdecore/kapplication.cpp:550
#34 0xa711d001 in QApplication::sendEvent () from /usr/lib/libqt-mt.so.3
#35 0xa717d435 in QEventLoop::activateSocketNotifiers ()
   from /usr/lib/libqt-mt.so.3
#36 0xa7130d06 in QEventLoop::processEvents () from /usr/lib/libqt-mt.so.3
#37 0xa71a4255 in QEventLoop::enterLoop () from /usr/lib/libqt-mt.so.3
#38 0xa71a417a in QEventLoop::exec () from /usr/lib/libqt-mt.so.3
#39 0xa718a38d in QApplication::exec () from /usr/lib/libqt-mt.so.3
#40 0xa65eefe5 in kdemain (argc=4, argv=0x81c1b48)
    at /home/sid-user/kdebase/kdebase-3.5.4/./konqueror/konq_main.cc:206
#41 0xa6650524 in kdeinitmain (argc=4, argv=0x81c1b48) at konqueror_dummy.cc:3
#42 0x0804e9d7 in launch (argc=4, _name=0x81c1cf4 "konqueror", 
    args=0x81c1d4f "", cwd=0x81c1d50 "/home/leveret", envc=33, 
    envs=0x81c2199 "", reset_env=true, tty=0x0, avoid_loops=false, 
    startup_id_str=0x81c219e "warren;1156441863;708231;5681_TIME1095660181")
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kinit/kinit.cpp:639
#43 0x0804f279 in handle_launcher_request (sock=4)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kinit/kinit.cpp:1206
#44 0x0804f785 in handle_requests (waitForPid=0)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kinit/kinit.cpp:1397
#45 0x08050019 in main (argc=3, argv=0xafa15be4, envp=0xafa15bf4)
    at /home/sid-user/kdelibs/kdelibs-3.5.4/./kinit/kinit.cpp:1863
#46 0xa7c5eeb0 in __libc_start_main () from /lib/tls/i686/cmov/libc.so.6
#47 0x0804b8a1 in _start () at ../sysdeps/i386/elf/start.S:119

