Common Vulnerabilities and Exposures assigned an identifier CVE-2010-1822 to the following vulnerability: WebKit, as used in Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to have an unknown impact via a malformed SVG document. References: [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1822 [2] http://code.google.com/p/chromium/issues/detail?id=55114 [3] http://googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_17.html [4] https://bugs.webkit.org/show_bug.cgi?id=45562
This doesn't affect webkitgtk 1.2.5: SVGGElement::rendererIsNeeded should return false when parent isn't SVG https://bugs.webkit.org/show_bug.cgi?id=45562 There is no renderIsNeeded() function in WebCore/svg/* (not in 1.2.3 either).
Upstream fix: http://trac.webkit.org/changeset/67236
Created qt tracking bugs for this issue Affects: fedora-all [bug 645918]
(In reply to comment #5) > Upstream fix: http://trac.webkit.org/changeset/67236 Works as expected - no crash.