[Webkit-unassigned] [Bug 18936] New: NULL dereference crash @ apple.com/startpage

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed May 7 23:36:32 PDT 2008


http://bugs.webkit.org/show_bug.cgi?id=18936

           Summary: NULL dereference crash @ apple.com/startpage
           Product: WebKit
           Version: 526+ (Nightly build)
          Platform: Macintosh
               URL: http://apple.com/startpage
        OS/Version: Mac OS X 10.5
            Status: NEW
          Keywords: SquirrelFishBlocker
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: ggaren at apple.com


TO REPRODUCE:
1. navigate to apple.com/startpage
-> crash

Top of backtrace:

#0  0x00626cc9 in KJS::JSValue::toObject (this=0xc, exec=0xbfffe66c) at
value.h:526
#1  0x0063f555 in KJS::Machine::privateExecute (this=0x682760,
flag=KJS::Machine::Normal, exec=0xbfffe66c, registerFile=0x180e5450,
r=0x42d49b4, scopeChain=0x19e7e870, codeBlock=0x1a3c32c0, exception=0xbfffe728)
at /Volumes/Big/ggaren/Labyrinth/OpenSource/JavaScriptCore/VM/Machine.cpp:1342
#2  0x00642193 in KJS::Machine::execute (this=0x682760,
functionBodyNode=0x19e6ade0, exec=0x1805005c, function=0x1a0f9b20,
thisObj=0x19fa0000, args=@0xbfffe7b8, registerFileStack=0x18050038,
scopeChain=0x1a1829f0, exception=0xbfffe728) at
/Volumes/Big/ggaren/Labyrinth/OpenSource/JavaScriptCore/VM/Machine.cpp:631
#3  0x00593698 in KJS::FunctionImp::callAsFunction (this=0x1a0f9b20,
exec=0x1805005c, thisObj=0x19fa0000, args=@0xbfffe7b8) at function.cpp:86
#4  0x005b71f7 in KJS::JSObject::call (this=0x1a0f9b20, exec=0x1805005c,
thisObj=0x19fa0000, args=@0xbfffe7b8) at object.cpp:101
#5  0x0239fe25 in WebCore::ScheduledAction::execute (this=0x1a150bd0,
windowWrapper=0x19fa0000) at
/Volumes/Big/ggaren/Labyrinth/OpenSource/WebCore/bindings/js/ScheduledAction.cpp:74
#6  0x02473255 in WebCore::JSDOMWindowBase::timerFired (this=0x19fa0020,
timer=0x1a13e7b0) at
/Volumes/Big/ggaren/Labyrinth/OpenSource/WebCore/bindings/js/JSDOMWindowBase.cpp:1362
#7  0x02473430 in WebCore::DOMWindowTimer::fired (this=0x1a13e7b0) at
/Volumes/Big/ggaren/Labyrinth/OpenSource/WebCore/bindings/js/JSDOMWindowBase.cpp:1415
#8  0x023d7332 in WebCore::TimerBase::fireTimers (fireTime=1210227882.1675861,
firingTimers=@0xbfffe94c) at
/Volumes/Big/ggaren/Labyrinth/OpenSource/WebCore/platform/Timer.cpp:347


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the webkit-unassigned mailing list