[Webkit-unassigned] [Bug 18673] Crash in RenderImageGeneratedContent::imagePtr() using css content: with full page zoom

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jul 23 09:36:22 PDT 2008


------- Comment #6 from jchaffraix at webkit.org  2008-07-23 09:36 PDT -------
Taking a closer look at the code, it seems that
RenderImage::intrisicSizeChanged() is called before the m_styleImage is set in
RenderImageGeneratedContent which lead to the crash.

The null check I have added works because it is the only method that uses
m_styleImage called when executing RenderImage::intrisicSizeChanged(), which
means the current patch is not solving the core of the issue.

A solution could be to override intrisicSizeChanged() in
RenderImageGeneratedContent to do the null check.

Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list