[Webkit-unassigned] [Bug 24172] New: Reproducible crash in CSSParser::parseFillImage copying contents of this page

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Feb 25 14:21:55 PST 2009 

https://bugs.webkit.org/show_bug.cgi?id=24172

           Summary: Reproducible crash in CSSParser::parseFillImage copying
                    contents of this page
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh
        OS/Version: Mac OS X 10.5
            Status: NEW
          Keywords: HasReduction, Regression, InRadar
          Severity: Normal
          Priority: P2
         Component: CSS
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: bdakin at apple.com


Thread 0 Crashed (i386):
>#0   com.apple.WebCore          0x00e30235  WebCore::CSSParser::parseFillImage(WTF::RefPtr<WebCore::CSSValue>&) + 437
  #1   com.apple.WebCore          0x00e30d8f 
WebCore::CSSParser::parseFillProperty(int, int&, int&,
WTF::RefPtr<WebCore::CSSValue>&, WTF::RefPtr<WebCore::CSSValue>&) + 2575
  #2   com.apple.WebCore          0x00e34b2c 
WebCore::CSSParser::parseValue(int, bool) + 7724
  #3   com.apple.WebCore          0x00e1a809  cssyyparse(void*) + 12953
  #4   com.apple.WebCore          0x00e2aa09 
WebCore::CSSParser::parseValue(WebCore::CSSMutableStyleDeclaration*, int,
WebCore::String const&, bool) + 89
  #5   com.apple.WebCore          0x00e218c5 
WebCore::CSSMutableStyleDeclaration::setProperty(int, WebCore::String const&,
bool, bool) + 213
  #6   com.apple.WebCore          0x014d0806 
WebCore::createMarkup(WebCore::Range const*, WTF::Vector<WebCore::Node*, 0ul>*,
WebCore::EAnnotateForInterchange, bool) + 7862
  #7   com.apple.WebCore          0x0127ee37 
WebCore::LegacyWebArchive::createFromSelection(WebCore::Frame*) + 135
  #8   com.apple.WebCore          0x012be382 
WebCore::Pasteboard::writeSelection(NSPasteboard*, WebCore::Range*, bool,
WebCore::Frame*) + 1442
  #9   com.apple.WebCore          0x00f96281  WebCore::Editor::copy() + 273
  #10  com.apple.WebCore          0x00f9e879 
__ZN7WebCoreL11executeCopyEPNS_5FrameEPNS_5EventENS_19EditorCommandSourceERKNS_6StringE
+ 25
  #11  com.apple.WebCore          0x00f9d48e 
WebCore::Editor::Command::execute(WebCore::String const&, WebCore::Event*)
const + 142
  #12  com.apple.WebKit           0x001c3cd1  -[WebHTMLView
executeCoreCommandBySelector:] + 129
  #13  com.apple.AppKit           0x9695cb03  -[NSApplication
sendAction:to:from:] + 112
  #14  com.apple.Safari           0x0002d458  -[BrowserApplication
sendAction:to:from:]
(/SourceCache/WebBrowser/WebBrowser-5525.20.1/mac/BrowserApplication.m:90)
  #15  com.apple.AppKit           0x96a0b540  -[NSMenu
performActionForItemAtIndex:] + 493
  #16  com.apple.AppKit           0x96a0b245  -[NSCarbonMenuImpl
performActionWithHighlightingForItemAtIndex:] + 220
  #17  com.apple.AppKit           0x96a0aecb  -[NSMenu performKeyEquivalent:] +
866
  #18  com.apple.AppKit           0x96a09770  -[NSApplication
_handleKeyEquivalent:] + 492
  #19  com.apple.AppKit           0x96926733  -[NSApplication sendEvent:] +
3999
  #20  com.apple.Safari           0x0002b5d8  -[BrowserApplication sendEvent:]
(/SourceCache/WebBrowser/WebBrowser-5525.20.1/mac/BrowserApplication.m:143)
  #21  com.apple.AppKit           0x96883d0f  -[NSApplication run] + 847
  #22  com.apple.AppKit           0x96850f14  NSApplicationMain + 574
  #23  com.apple.Safari           0x000ba4d6  start


-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list