[Webkit-unassigned] [Bug 9476] REGRESSION: Reproducible crash after closing window after viewing css2.1/t0803-c5501-imrgn-t-00-b-ag.html
bugzilla-daemon at opendarwin.org
bugzilla-daemon at opendarwin.org
Sat Jun 17 04:15:51 PDT 2006
http://bugzilla.opendarwin.org/show_bug.cgi?id=9476
------- Comment #11 from ddkilzer at kilzer.net 2006-06-17 04:15 PDT -------
Something was bothering me about KJS::Debugger::detach()--if the code always
updated the linked list (whose head was 'rep->interps') correctly, then why did
the second call to detach fail with a bad pointer dereference?
The answer is that KJS::Debugger::~Debugger() deletes 'rep' itself after
calling detach(0), thus '&rep->interps' will point to something invalid the
next time detach() is called.
--
Configure bugmail: http://bugzilla.opendarwin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list