[Webkit-unassigned] [Bug 26368] Crashes in JSC::RegExp::match()

Thu Jun 25 10:51:55 PDT 2009

https://bugs.webkit.org/show_bug.cgi?id=26368

danw at gnome.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |danw at gnome.org

------- Comment #3 from danw at gnome.org  2009-06-25 10:51 PDT -------
Backtrace of epiphany and http://www.apple.com/retail/locator/index.html

#0  0x00007ffff66c53c5 in JSC::RegExp::match (this=<value optimized out>)
   from /opt/jhbuild/lib64/libwebkit-1.0.so.2
#1  0x00007ffff66c543e in JSC::RegExpConstructor::performMatch (
    this=0x7fffe661dd40, r=0x7fffe6949dc8, s=@0x7fffffffb590, startOffset=78, 
    position=@0x7fffe66d8df8, length=@0x6, ovector=0x0)
    at JavaScriptCore/runtime/RegExpConstructor.cpp:125
#2  0x00007ffff671b918 in JSC::stringProtoFuncMatch(struct JSC::ExecState *,
struct JSC::JSObject *, JSC::JSValue, const struct JSC::ArgList &) (
    exec=<value optimized out>, thisValue=<value optimized out>, 
    args=<value optimized out>)
    at JavaScriptCore/runtime/StringPrototype.cpp:481
#3  0x00007ffff75a32e4 in ?? ()
#4  0x00007fffe6a36488 in ?? ()
#5  0x0000000000000001 in ?? ()
#6  0x0000000000000000 in ?? ()

Probably the same bug as bug 26390. Maybe the same as bug 26553 and bug 26116.
Possibly the same as bug 25819?

Given that the Apple Store locator triggers this bug, I am sure Apple is losing
millions of dollars in revenue due to all of the people running unstable WebKit
on x86_64 who are unable to locate their nearest Apple Store, so you should fix
this right away. ;-)

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.