[Webkit-unassigned] [Bug 91273] New: Assertion failure/crash on Windows when using a font in an SVG element with an unreasonably large font size

Fri Jul 13 13:25:07 PDT 2012

https://bugs.webkit.org/show_bug.cgi?id=91273

           Summary: Assertion failure/crash on Windows when using a font
                    in an SVG element with an unreasonably large font size
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Unspecified
        OS/Version: Windows 7
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P2
         Component: SVG
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: roger_fong at apple.com
                CC: zimmermann at kde.org, timothy_horton at apple.com

If you create an SVG Element and put some text in it but specify the font size to be something like 10000000000000000pt, Webkit will crash.
The problem is that it's expected that at least one of the fall back fonts will always work if a font is invalid but a check for an unreasonable size is never made,
thus the fall back checks keep trying valid font types with the invalid font size. Only happens on windows.

The fix would be to cap the font size when it gets processed.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.